lordpake

Honorary Members
  • Content count

    210
  • Joined

  • Last visited

About lordpake

  • Rank
    Advanced Member

Contact Methods

  • Website URL
    http://lordpake.spaces.live.com/
  • ICQ
    0

Profile Information

  • Location
    Helsinki / European Union
  • Interests
    Anime / Manga / Comp. security
  1. Yes, you are safe. By deleting it from Quarantine you removed it permanently. There is also restore-function, that would have restored the infection to your machine The restore is there in case of false positives.
  2. Are those the only signs of malware? If yes, do you have other security software which might lock down these settings? Is this your computer, or work computer with Group Policies in place? As it is possible systems administrator has disabled both Task Manager and registry editing.
  3. What Buttons said. Yes it is compatible with MBAM free. Free version is nice addition, it offers basically same functionality as MBAM free, that is manual updating and scanning and fully functional threat removal. Besides that it does have some repair functions too to help restore system functions after malware attack.
  4. Regarding autoexec.bat, in my Windows XP Home that file is empty, with no content and filesize 0. File is dated to the day OS was installed. HTH Note: it is possible some software in your system has entered custom commands and environmental variables to autoexec.bat.
  5. Hi, without seeing the actual scan log it's not possible to say what important file(s) might have been deleted. Log file can usually be found in All users - Application data - Malwarebytes folder IIRC.
  6. I have no idea about the function of that registry key, however I have never had any infection in this system to my knowledge
  7. +1. It's a good addition to your PC If you have two PCs but only want one license you could always install MBAM paid to the PC that is most at risk. Ie. which one has more "random"/underage users or which one sees more 'Net usage.
  8. @MrSlotTech: AFAIK we are talking about TDL-3 rootkit when dealing with infected atapi.sys. Would you rather have MBAM hosing/bricking clean systems here? As that file can be difficult to clean/replace with clean copy.
  9. Darrin, give them only limited rights. Normal user account if possible makes it so they can't infect your entire machine.
  10. I seem to be getting awfully lot of IP protection alerts in FB, regarding IPs in that range (like .34 and .41). Robtex indicates it's a Teliasonera IP range with no blacklistings? I also have Fx with Adblock + Easylist, so there shouldn't be any ads triggering the alerts.
  11. Unless you use P2P software in that PC, no it is not typical in my experience to have so many notifications.
  12. I too admit being curious as to what comes to Firefox extensions. I don't recall any built-in Mozilla defences against malicious extensions though. I recall there is built-in mechanism to stop extensions being installed in browser main dir, and thus getting used automatically/hidden in background? This is what I mean http://blog.mozilla.com/security/2009/11/1...in-firefox-3-6/ It'd be nice to know MBAM protects against known malicious extensions if/when such exist.
  13. They likely won't be fixing it. See the reply to my thread regarding f/p and Krunchy packer here.
  14. Purpose of MBAM is NOT to replace AV. MBAM is there to support your AV when it itself fails By using only MBAM as active protection you would leave your system vulnerable.
  15. I have user in Finnish forum who has issues with Super Pi Mod getting detected when he right-click scans it in Explorer. He is obviously concerned super_pi_mod.exe (Malware.Packer.Krunchy) <-- detection Virustotal Is this intended behaviour? To detect that file as malicious based on packer? File is available here hxxp://www.techpowerup.com/downloads/366/mirrors.php