Jump to content

elbmd

Members
  • Posts

    12
  • Joined

  • Last visited

Reputation

0 Neutral
  1. Hi I had a bad crash of my computer on restart - both hard drives would not boot. I had to take both out of the computer and run chkdsk from another system to correct many errors to get one of them to boot. The computer is somewhat functional but there is still an obvious problem. I cannot run internet explorer or panda antivirus and I cannot cut and paste. WHen I try to run malwarebytes I get the run time error 372 message. I have tried the clean and reload process but still get the same error. I have attached a hijackthis scan report along with the 2 results from dds (I cannot cut and paste so I cannot include in this message). Any other ideas? Thanks, Eric hijackthis.log attach.txt dds.txt
  2. Hi I had a bad crash of my computer on restart - both hard drives would not boot. I had to take each out of the conmputer and run chkdsk to correct many errors in order to get one of them to boot. The computer is somewhat functional but there is still an obvoius problem. I cannot run internet explorer or panda antivirus. When I try to run malwarebytes I get the run-time error 372 message. I have tried doing the clean and reload process but I still get the error messages. I have attached a hijackthis scan result. Any further ideas? Thanks, Eric hijackthis.log
  3. Everything seems to be working great. Thanks! What do I need to do about all these programs I downloaded - do I just delete them? Eric _______________________________________________________________________ Great. Stick with the beta then; seems to have been a bug with version 1.46. Are you experiencing any other issues?
  4. I ran with new version and file not found. 11/19/2010 6:21:11 AM mbam-log-2010-11-19 (06-21-11).txt Scan type: Quick scan Objects scanned: 178616 Time elapsed: 14 minute(s), 21 second(s) Memory Processes Infected: 0 Memory Modules Infected: 0 Registry Keys Infected: 0 Registry Values Infected: 0 Registry Data Items Infected: 0 Folders Infected: 0 Files Infected: 0 Memory Processes Infected: (No malicious items detected) Memory Modules Infected: (No malicious items detected) Registry Keys Infected: (No malicious items detected) Registry Values Infected: (No malicious items detected) Registry Data Items Infected: (No malicious items detected) Folders Infected: (No malicious items detected) Files Infected: (No malicious items detected) Anything else I need to do? Thanks, Eric _________________________________________________________________-- Hi, I would like you to try our MBAM version 1.50 Public Beta and see if the issue persists there.
  5. Reboot your computer into Safe Mode. See if the file exists there. Let me know if it does. No file found Also run a Quick Scan again from there; see if the file is detected. No file detected Combofix: ComboFix 10-11-12.01 - doctor berman 11/16/2010 19:54:36.5.2 - x86 Microsoft Attach1.zip
  6. I ran MBAM/developer as requested - here is the log - it found the same file. Malwarebytes' Anti-Malware 1.46 www.malwarebytes.org Database version: 5111 Windows 6.0.6002 Service Pack 2 Internet Explorer 8.0.6001.18975 11/16/2010 6:31:04 AM mbam-log-2010-11-16 (06-31-04).txt Scan type: Quick scan Objects scanned: 180325 Time elapsed: 9 minute(s), 17 second(s) Memory Processes Infected: 0 Memory Modules Infected: 0 Registry Keys Infected: 0 Registry Values Infected: 0 Registry Data Items Infected: 0 Folders Infected: 0 Files Infected: 1 Memory Processes Infected: (No malicious items detected) Memory Modules Infected: (No malicious items detected) Registry Keys Infected: (No malicious items detected) Registry Values Infected: (No malicious items detected) Registry Data Items Infected: (No malicious items detected) Folders Infected: (No malicious items detected) Files Infected: C:\Users\doctor berman\AppData\Local\Temp\u32.exe (Trojan.Downloader) -> Delete on reboot. [1C91A68F95877E8229DFDE81888B06C9]
  7. When I try to upload the file it is not listed in that folder - I looked in windows explorer and I can't find it. What to do next? Eric ________________________________________________________________________________ ____________--
  8. Thanks for your reply 1st - I have tried rebooting with and without allowing the blocked program to run and it has not seemed to make any difference. I have also rebooted into safe mode where the blocked message error does not pop up and run the scan and it still comes up. 2nd - I ran MBAM here is the log: Malwarebytes' Anti-Malware 1.46 www.malwarebytes.org Database version: 5111 Windows 6.0.6002 Service Pack 2 Internet Explorer 8.0.6001.18975 11/14/2010 5:51:47 AM mbam-log-2010-11-14 (05-51-47).txt Scan type: Quick scan Objects scanned: 179592 Time elapsed: 9 minute(s), 59 second(s) Memory Processes Infected: 0 Memory Modules Infected: 0 Registry Keys Infected: 0 Registry Values Infected: 0 Registry Data Items Infected: 0 Folders Infected: 0 Files Infected: 1 Memory Processes Infected: (No malicious items detected) Memory Modules Infected: (No malicious items detected) Registry Keys Infected: (No malicious items detected) Registry Values Infected: (No malicious items detected) Registry Data Items Infected: (No malicious items detected) Folders Infected: (No malicious items detected) Files Infected: C:\Users\doctor berman\AppData\Local\Temp\u32.exe (Trojan.Downloader) -> No action taken. 3rd - I ran CCleaner as requested. What to do next? Thanks, Eric ________________________________________________________________________________ _______________________
  9. Hi When I run either the quick or full scan of my laptop (Vista) I am told there is an infection; AppData\Local\Temp\u32.exe (Trojan.Downloader) -> Delete on reboot. When I reboot I get an error from windows defender blocking the program from reloading - I give permission for the program to run. WHen I restart MBAM it finds the file again. The file does appear in windows explorer when I look in the folder. Is this real? How can I get the program to delete it? I tried running program and deleting in safe mode but it did not make a difference. Thanks, Eric I am posting my DDS file and MBAM log and attaching the attach zipped file. When I try to run GMER it runs partly through the scan and then goes to blue screen and restarts the computer ________________________________________________________________________________ ____________________ Malwarebytes' Anti-Malware 1.46 www.malwarebytes.org Database version: 5110 Windows 6.0.6002 Service Pack 2 Internet Explorer 8.0.6001.18975 11/13/2010 9:39:40 PM mbam-log-2010-11-13 (21-39-40).txt Scan type: Quick scan Objects scanned: 179365 Time elapsed: 11 minute(s), 43 second(s) Memory Processes Infected: 0 Memory Modules Infected: 0 Registry Keys Infected: 0 Registry Values Infected: 0 Registry Data Items Infected: 0 Folders Infected: 0 Files Infected: 1 Memory Processes Infected: (No malicious items detected) Memory Modules Infected: (No malicious items detected) Registry Keys Infected: (No malicious items detected) Registry Values Infected: (No malicious items detected) Registry Data Items Infected: (No malicious items detected) Folders Infected: (No malicious items detected) Files Infected: C:\Users\doctor berman\AppData\Local\Temp\u32.exe (Trojan.Downloader) -> Delete on reboot. ________________________________________________________________________________ ________________ DDS (Ver_10-11-10.01) - NTFSx86 Run by doctor berman at 21:53:49.24 on Sat 11/13/2010 Internet Explorer: 8.0.6001.18975 BrowserJavaVersion: 1.6.0_22 Microsoft Attach.zip
  10. Hi When I run either the quick or full scan of my laptop (Vista) I am told there is an infection; AppData\Local\Temp\u32.exe (Trojan.Downloader) -> Delete on reboot. When I reboot I get an error from windows defender blocking the program from reloading - I give permission for the program to run. WHen I restart MBAM it finds the file again. The file does appear in windows explorer when I look in the folder. Is this real? How can I get the program to delete it? I tried running program and deleting in safe mode but it did not make a difference. Thanks, Eric
  11. This worked perfectly - Thanks! The program worked extremely well and I think I am well on my way to being free of Virtumonde on my computer! Eric
  12. Hi I have downloaded your program from cnet and majorgeeks sites and have this problem: the exe file mbam.exe is not present - so the program won't load. Any ideas on how to fix this? Thanks, Eric
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.