Jump to content

Ran MBAM, DDS, GMER - Please Advise


Recommended Posts

Things are running smoothly I suppose, I have been able to run all the tasks you requested and post my results here without interruption. What would indicate that there are still issues to wrestle with?

As unpleasant an experience this has been, it has been comforting - knowing that this forum has such outstanding contributors such as you Borislav.

Link to post
Share on other sites

Thanks for the compliment!

If you do not have another problem, I think it will be all from me. Let us just in case, do a final check:

  • Launch Malwarebytes' Anti-Malware
  • Go to "Update" tab and select "Check for Updates". If an update is found, it will download and install the latest version.
  • Go to "Scanner" tab and select "Perform Quick Scan", then click Scan.
  • The scan may take some time to finish,so please be patient.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Make sure that everything is checked, and click Remove Selected.
  • When disinfection is completed, a log will open in Notepad and you may be prompted to Restart.(See Extra Note)
  • The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
  • Copy&Paste the entire report in your next reply.

Extra Note:

If MBAM encounters a file that is difficult to remove,you will be presented with 1 of 2 prompts,click OK to either and let MBAM proceed with the disinfection process,if asked to restart the computer,please do so immediatly.

Link to post
Share on other sites

Followup questions:

What about Defogger? Turn back on/off?

Where did this nasty stuff originate and how did I get it?

Would MB upgrades have prevented this nonsense?

Will I ever know if the comp is 100% secure?

FYI- going to donate when I get to work - when I can access PayPal without wondering if it is safe. :-)

Thanks again for the support, great job!

Malwarebytes' Anti-Malware 1.46

www.malwarebytes.org

Database version: 4172

Windows 5.1.2600 Service Pack 3

Internet Explorer 8.0.6001.18702

6/6/2010 11:38:15 AM

mbam-log-2010-06-06 (11-38-15).txt

Scan type: Quick scan

Objects scanned: 160518

Time elapsed: 18 minute(s), 24 second(s)

Memory Processes Infected: 0

Memory Modules Infected: 0

Registry Keys Infected: 0

Registry Values Infected: 0

Registry Data Items Infected: 0

Folders Infected: 0

Files Infected: 0

Memory Processes Infected:

(No malicious items detected)

Memory Modules Infected:

(No malicious items detected)

Registry Keys Infected:

(No malicious items detected)

Registry Values Infected:

(No malicious items detected)

Registry Data Items Infected:

(No malicious items detected)

Folders Infected:

(No malicious items detected)

Files Infected:

(No malicious items detected)

Link to post
Share on other sites

Where did this nasty stuff originate and how did I get it?

Your system was infected with TDSS rootkit. A lot of information here:

http://www.kernelmode.info/forum/viewtopic...=19&start=0

How? Initially, your system was infected with a rogue application, which brings this TDSS rootkit.

Would MB upgrades have prevented this nonsense?

Yes, Malwarebytes' Anti-Malware is always one step ahead. :P

Will I ever know if the comp is 100% secure?

Your system is clean, nothing to worry. 100% no one can guarantee, but I think you can freely operate.

Last steps:

Step 1

* Go to start > run and copy and paste next command in the field:

ComboFix /uninstall

Make sure there's a space between Combofix and /

Then hit enter.

This will uninstall Combofix, delete its related folders and files, reset your clock settings, hide file extensions, hide the system/hidden files and resets System Restore again.

Step 2

To enable CD Emulation programs using DeFogger please perform these steps:

  1. Please download DeFogger to your desktop.
  2. Once downloaded, double-click on the DeFogger icon to start the tool.
  3. The application window will now appear. You should now click on the Enable button to enable your CD Emulation drivers
  4. When it prompts you whether or not you want to continue, please click on the Yes button to continue
  5. When the program has completed you will see a Finished! message. Click on the OK button to exit the program.
  6. If CD Emulation programs are present and have been enabled, DeFogger will now ask you to reboot the machine. Please allow it to do so by clicking on the OK button.

Step 3

Please manually delete TDSSKiller, DDS, GMER and Defogger.

Step 4

Please download and install the latest version of Adobe Reader from:

www.adobe.com

Step 5

Some malware preventions:

http://miekiemoes.blogspot.com/2008/02/how...nt-malware.html

Safe surfing! :)

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.