Jump to content

xchris95x

Members
  • Posts

    11
  • Joined

  • Last visited

Reputation

0 Neutral
  1. Thanks. so does it seem like Malware bytes did automatically delete everything in my quarantine?
  2. Results of screen317's Security Check version 0.99.81 Windows 7 Service Pack 1 x64 (UAC is enabled) Internet Explorer 11 ``````````````Antivirus/Firewall Check:`````````````` Windows Firewall Enabled! Windows Firewall Disabled! avast! Antivirus Antivirus up to date! `````````Anti-malware/Other Utilities Check:````````` Adobe Flash Player 12.0.0.77 Mozilla Thunderbird (24.4.0) Google Chrome 33.0.1750.146 Google Chrome 33.0.1750.154 ````````Process Check: objlist.exe by Laurent```````` WinPatrol winpatrol.exe Malwarebytes Anti-Malware mbamservice.exe Malwarebytes Anti-Malware mbam.exe Comodo Firewall cmdagent.exe Google Chrome Application AvastSvc.exe -?- AVAST Software Avast AvastUI.exe BillP Studios WinPatrol WinPatrol.exe `````````````````System Health check````````````````` Total Fragmentation on Drive C: ````````````````````End of Log``````````````````````
  3. Hi, sorry for the lateness, been exhausted and busy with work. here is the log. Malwarebytes Anti-Malwarewww.malwarebytes.org Scan Date: 27/03/2014Scan Time: 18:05:37Logfile: Administrator: No Version: 2.00.0.1000Malware Database: v2014.03.27.05Rootkit Database: v2014.03.25.01License: PremiumMalware Protection: EnabledMalicious Website Protection: EnabledChameleon: Disabled OS: Windows 7 Service Pack 1CPU: x64File System: NTFSUser: Chris Scan Type: Threat ScanResult: CompletedObjects Scanned: 229283Time Elapsed: 8 min, 11 sec Memory: EnabledStartup: EnabledFilesystem: EnabledArchives: EnabledRootkits: EnabledShuriken: EnabledPUP: WarnPUM: Enabled Processes: 0(No malicious items detected) Modules: 0(No malicious items detected) Registry Keys: 0(No malicious items detected) Registry Values: 0(No malicious items detected) Registry Data: 0(No malicious items detected) Folders: 0(No malicious items detected) Files: 0(No malicious items detected) Physical Sectors: 0(No malicious items detected) (end)
  4. Alright here is the ADWcleaner report. I found something in the Registry but I didn't touch it this time. thanks, C
  5. Thank you for your reply. For your information comodo anti virus isn't installed, I don't know why the service is still installed. Here are the two logs which you wanted me to give to you using these two programs. TDSSKiller.3.0.0.26_25.03.2014_20.22.20_log.txt ComboFix.txt
  6. I pressed the delete button and it said it had replaced it. was that the right thing?
  7. Okay I have ran that.. I think it found 2 infected reg keys...? RogueKiller V8.8.12 [Mar 20 2014] by Adlice Softwaremail : http://www.adlice.com/contact/Feedback : http://forum.adlice.comWebsite : http://www.adlice.com/softwares/roguekiller/Blog : http://www.adlice.com Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits versionStarted in : Normal modeUser : Sys_Administrator [Admin rights]Mode : Scan -- Date : 03/24/2014 17:13:55| ARK || FAK || MBR | ¤¤¤ Bad processes : 0 ¤¤¤ ¤¤¤ Registry Entries : 2 ¤¤¤[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> FOUND[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND ¤¤¤ Scheduled tasks : 0 ¤¤¤ ¤¤¤ Startup Entries : 0 ¤¤¤ ¤¤¤ Web browsers : 0 ¤¤¤ ¤¤¤ Browser Addons : 0 ¤¤¤ ¤¤¤ Particular Files / Folders: ¤¤¤ ¤¤¤ Driver : [NOT LOADED 0x0] ¤¤¤ ¤¤¤ External Hives: ¤¤¤ ¤¤¤ Infection : ¤¤¤ ¤¤¤ HOSTS File: ¤¤¤--> %SystemRoot%\System32\drivers\etc\hosts ¤¤¤ MBR Check: ¤¤¤ +++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) Hitachi HDS721064CLA332 ATA Device +++++--- User ---[MBR] b4f75959ddae53a6b1f2f2b824c83382[bSP] dd12ff9ea11df558bfc9cb6203591b4c : Empty MBR CodePartition table:0 - [XXXXXX] UNKNOWN (0x00) [VISIBLE] Offset (sectors): 1 | Size: 2097151 MBUser = LL1 ... OK!User = LL2 ... OK! +++++ PhysicalDrive1: (\\.\PHYSICALDRIVE1 @ USB) +++++--- User ---[MBR] 23246d2248d2064c944b9fc02714056d[bSP] 4fd03f1cdd1036bc14af125c546f5215 : Linux MBR CodePartition table:0 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 37109760 | Size: 458818 MBUser = LL1 ... OK!Error reading LL2 MBR! ([0x32] The request is not supported. ) Finished : << RKreport[0]_S_03242014_171355.txt >>
  8. Hey, I have posted a couple of days ago in this topic: https://forums.malwarebytes.org/index.php?showtopic=144692&hl= Daledoc1 said I maybe infected and intructed me to get two logs from the DDS.scr file which I downloaded. the files are attached. here is the story is short. I downloaded a Chinese video codec (like flash) to watch a movie but when I scanned the PC is found about 26 objects.. the screenshot is in the topic. but after about 2 boot ups the logs for the scans were gone and the quarantine was empty. I did say to Malware bytes to remove them but shouldn't they have already been removed on the first boot up? I have scanned recently I found nothing else. so what do I do? Attach.txt DDS.txt
  9. Well when I found the viruses I selected them all so that Malware bytes can remove them all. Does that mean Malware bytes have removed them now? it's just that my last 2 boot ups they hadn't been removed.
  10. As you can see in the picture below, I had 20+ detections but when I finished my other full scan this morning I checked with both user accounts and all the quarantined items were gone! where did they go? did Malware Bytes remove them after my full scan? Here is what I did over the course of last night to today 1. quick scan. Found 20 items 2. full scan found 5 items 3. in the morning did another quick scan, found 1 item 4. full scan. found nothing afterwards I checked the quarantined items and they were gone. did Malware bytes delete them? For your information: I am running Windows 7 Home 64 bit 3 user accounts, Admin account for installing things and using Malware bytes, my own account and a guest account.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.