Jump to content

KerndDrv.dll


Recommended Posts

  • Root Admin

Hello elveez and Welcome to Malwarebytes

According to Threat Expert

Infostealer.Gampass [symantec]

A keylogger program that can capture all user keystrokes (including confidential details such username, password, credit card number, etc.)

* There was application-defined hook procedure installed into the hook chain (e.g. to monitor keystrokes). The installed hook is handled by the following module:

o %System%\KerndDrv.dll

Highly recommend that you follow the directions below (do not bypass the online Panda scan)

Please read and follow the instructions provided here: Pre- HJT Post Instructions

When ready please post your logs here: Malware Removal - HijackThis Logs

Someone will be happy to assist you further with cleaning your system.

During this scan and cleanup process you should not install any other software unless requested to do so.

Link to post
Share on other sites

Thanks a lot! I had some on of my passwords stolen and I figured it's gotta be some keylogger. I wish I could figure out how I got this one! I had Norton Realtime protection and SpyBot with TeaTimer running all the time!

I just scanned my system with Norton + Malwarebytes + SpyBot + SuperAntiSpyware and it seems that I'm clean now. Malwarebytes was the only one program that reported this!!

I will run it again and post the logs here. Do I just copy and paste them here or should I include them as an attachment?

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.