Sign in to follow this  
Followers 0
Netizen

I am infected with rootkit or worse

34 posts in this topic

I wonder if the problem is Comodo. Let's try first to add in Avira exceptions - Comodo. On the Main GUI of Avira, click on Configuration then tick Expert Mode, then click on Guard and expand the menu, then click on Scan and then on Exception and add the exceptions to be omitted for the Guard, click on Add and choose exe files of Comodo that are in:

C:\Program Files\Comodo

Reboot and let me know how are things.

Share this post


Link to post
Share on other sites

Here is a ESET Online scanner result.

Still, cpu usage is 100% most of time.

ESETSmartInstaller@High as CAB hook log:

OnlineScanner.ocx - registred OK

# version=7

# iexplore.exe=8.00.6001.18702 (longhorn_ie8_rtm(wmbla).090308-0339)

# OnlineScanner.ocx=1.0.0.6419

# api_version=3.0.2

# EOSSerial=40cb11f6049c504dbab9735ef5d49b3a

# end=stopped

# remove_checked=true

# archives_checked=true

# unwanted_checked=true

# unsafe_checked=true

# antistealth_checked=true

# utc_time=2011-01-25 09:36:22

# local_time=2011-01-25 04:36:22 )

# country="Korea"

# lang=1033

# osver=5.1.2600 NT Service Pack 3

# compatibility_mode=512 16777215 100 0 9244451 9244451 0 0

# compatibility_mode=1797 16775141 100 93 0 31582483 0 0

# compatibility_mode=3073 16777213 80 75 0 12050346 0 0

# compatibility_mode=3841 16777215 0 100 53829018 70585660 0 0

# compatibility_mode=5893 16776574 0 7 79864 79864 0 0

# compatibility_mode=8192 67108863 100 0 0 0 0 0

# scanned=2021

# found=1

# cleaned=1

# scan_time=2330

C:\unlocker1.8.7.exe a variant of Win32/Adware.ADON application (deleted - quarantined) 00000000000000000000000000000000 C

esets_scanner_update returned -1 esets_gle=53251

# version=7

# iexplore.exe=8.00.6001.18702 (longhorn_ie8_rtm(wmbla).090308-0339)

# OnlineScanner.ocx=1.0.0.6419

# api_version=3.0.2

# EOSSerial=40cb11f6049c504dbab9735ef5d49b3a

# end=stopped

# remove_checked=true

# archives_checked=false

# unwanted_checked=true

# unsafe_checked=false

# antistealth_checked=true

# utc_time=2011-01-25 11:03:41

# local_time=2011-01-25 06:03:41 )

# country="Korea"

# lang=1033

# osver=5.1.2600 NT Service Pack 3

# compatibility_mode=512 16777215 100 0 9247214 9247214 0 0

# compatibility_mode=1797 16775141 100 93 0 31585246 0 0

# compatibility_mode=3073 16777213 80 75 0 12053109 0 0

# compatibility_mode=3841 16777215 0 100 53831781 70588423 0 0

# compatibility_mode=5893 16776574 0 7 82627 82627 0 0

# compatibility_mode=8192 67108863 100 0 0 0 0 0

# scanned=4358

# found=0

# cleaned=0

# scan_time=4785

esets_scanner_update returned -1 esets_gle=53251

# version=7

# iexplore.exe=8.00.6001.18702 (longhorn_ie8_rtm(wmbla).090308-0339)

# OnlineScanner.ocx=1.0.0.6419

# api_version=3.0.2

# EOSSerial=40cb11f6049c504dbab9735ef5d49b3a

# end=stopped

# remove_checked=true

# archives_checked=true

# unwanted_checked=true

# unsafe_checked=true

# antistealth_checked=true

# utc_time=2011-01-26 12:36:44

# local_time=2011-01-25 07:36:44 )

# country="Korea"

# lang=1033

# osver=5.1.2600 NT Service Pack 3

# compatibility_mode=512 16777215 100 0 9256642 9256642 0 0

# compatibility_mode=1797 16775125 100 93 0 31594674 0 0

# compatibility_mode=3073 16777213 80 75 0 12062537 0 0

# compatibility_mode=3841 16777215 0 100 53841209 70597851 0 0

# compatibility_mode=5893 16776574 0 7 92055 92055 0 0

# compatibility_mode=8192 67108863 100 0 0 0 0 0

# scanned=2020

# found=0

# cleaned=0

# scan_time=917

esets_scanner_update returned -1 esets_gle=53251

esets_scanner_update returned -1 esets_gle=53251

# version=7

# iexplore.exe=8.00.6001.18702 (longhorn_ie8_rtm(wmbla).090308-0339)

# OnlineScanner.ocx=1.0.0.6419

# api_version=3.0.2

# EOSSerial=40cb11f6049c504dbab9735ef5d49b3a

# end=finished

# remove_checked=true

# archives_checked=false

# unwanted_checked=true

# unsafe_checked=false

# antistealth_checked=true

# utc_time=2011-01-30 02:18:27

# local_time=2011-01-30 09:18:27 )

# country="Korea"

# lang=1033

# osver=5.1.2600 NT Service Pack 3

# compatibility_mode=512 16777215 100 0 9539150 9539150 0 0

# compatibility_mode=1797 16775129 100 93 0 31877182 0 0

# compatibility_mode=3073 16777213 80 75 0 12345045 0 0

# compatibility_mode=3841 16777215 0 100 54123717 70880359 0 0

# compatibility_mode=5893 16776574 0 7 374563 374563 0 0

# compatibility_mode=8192 67108863 100 0 212450 212450 0 0

# scanned=74509

# found=1

# cleaned=1

# scan_time=26805

C:\WINDOWS\system32\uninst_everyclean.exe a variant of Win32/Adware.Kraddare.P application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C

DLL:pipe not connected. attempts=120

can not get scanner. e_gle=1001

can not get scanner. e_gle=1001

esets_scanner_update returned -1 esets_gle=0

Share this post


Link to post
Share on other sites
Did you read my instructions for Comodo?

Yes, I did it. Using expert mode on processes to be omitted by the guard I included all exe files of comodo

Share this post


Link to post
Share on other sites

Anyway, this is too long to fix. It has been several weeks since i have problems. I think I need to buy new computer.

I am really appreciate for your help. I will donate some.

Thanks.

Share this post


Link to post
Share on other sites

Glad we could help. :)

If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

Share this post


Link to post
Share on other sites
Guest
This topic is now closed to further replies.
Sign in to follow this  
Followers 0

  • Recently Browsing   0 members

    No registered users viewing this page.