Jump to content

Rootkit.Dropper detected in one file and removed. Is my machine now clean?


HarryZ
 Share

Recommended Posts

Aloha,

I have a customer's machine that seemed to be infected. I installed / updated / ran a full scan with Malwarebytes, and it found and deleted the following file amongst other infections.

C:\Users\Owner\AppData\Local\Temp\C227.tmp (Rootkit.Dropper) -> Quarantined and deleted successfully.

This is the first time I've run across a rootkit. Since MWB was able to quarantine and delete the file, am I done? Or do I need to run more scans with different tools to make sure that this rootkit has been removed? I've updated and run a Quick Scan with MWB and it comes back clean.

Full log file is being uploaded.

mbam_log_2010_11_18__21_05_27_.txt

Thanks in advance, for your assistance!

Harry Z.

Link to post
Share on other sites

Aloha,

This computer belongs to an individual, not a business. Please assist.

Mahalo.

Harry Z.

Hi,

As a business computer you need to have a license for use of MBAM. Please send a private message with your Cleverbridge order reference number to AdvancedSetup (Manager of Online Support) and they can assist you from the Corporate Support. :)

Link to post
Share on other sites

  • 2 months later...
  • Staff

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.