5 replies to this topic

[shikhir]

Hello

I am another victim of the Uacinit.dll issue, it just never goes off on reboot, i am not sure whether this dll is cause of BSOD appearences, freezing of my OS ( windows XP) . I am posting my latest mbam log , i ould really appreciate if you could help me out with this

Uacinit.dll and the UAC entry on the register never goes off

Malwarebytes' Anti-Malware 1.39
Database version: 2466
Windows 5.1.2600 Service Pack 2

7/20/2009 3:59:42 PM
mbam-log-2009-07-20 (15-59-42).txt

Scan type: Quick Scan
Objects scanned: 94056
Time elapsed: 5 minute(s), 57 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 1
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 1

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
HKEY_LOCAL_MACHINE\SOFTWARE\UAC (Rootkit.Trace) -> Quarantined and deleted successfully.

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
C:\WINDOWS\system32\uacinit.dll (Trojan.Agent) -> Delete on reboot.



Regards
Shikhir

[shikhir]

shikhir, on Jul 20 2009, 04:24 PM, said:

Hello

I am another victim of the Uacinit.dll issue, it just never goes off on reboot, i am not sure whether this dll is cause of BSOD appearences, freezing of my OS ( windows XP) . I am posting my latest mbam log , i ould really appreciate if you could help me out with this

Uacinit.dll and the UAC entry on the register never goes off

Malwarebytes' Anti-Malware 1.39
Database version: 2466
Windows 5.1.2600 Service Pack 2

7/20/2009 3:59:42 PM
mbam-log-2009-07-20 (15-59-42).txt

Scan type: Quick Scan
Objects scanned: 94056
Time elapsed: 5 minute(s), 57 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 1
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 1

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
HKEY_LOCAL_MACHINE\SOFTWARE\UAC (Rootkit.Trace) -> Quarantined and deleted successfully.

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
C:\WINDOWS\system32\uacinit.dll (Trojan.Agent) -> Delete on reboot.



Regards
Shikhir

I forgot to mention that i had to rename mbam.exe to make it run.

[shikhir]

shikhir, on Jul 20 2009, 04:27 PM, said:

I forgot to mention that i had to rename mbam.exe to make it run.

Any help will be appreciated.

[shikhir]

shikhir, on Jul 20 2009, 10:31 PM, said:

Any help will be appreciated.

Can anybody help me here?

[K.Sutherland]

shikhir, on Jul 21 2009, 06:55 PM, said:

Can anybody help me here?

I have the same problem, looking for help also.

[K.Sutherland]

K.Sutherland, on Jul 22 2009, 08:01 AM, said:

I have the same problem, looking for help also.

I just ran avenger here is my results

Logfile of The Avenger Version 2.0, © by Swandog46
http://swandog46.geekstogo.com

Platform: Windows XP

*******************

Script file opened successfully.
Script file read successfully.

Backups directory opened successfully at C:\Avenger

*******************

Beginning to process script file:

Rootkit scan active.

Hidden driver "ahk0yxy8" found!
Start Type: 3 (Manual)

Rootkit scan completed.


Completed script processing.

*******************

Finished! Terminate.