Author Topic: XP Guardian 2010  (Read 14312 times)

0 Members and 1 Guest are viewing this topic.

Offline essexboy

  • Malware removal instructor
  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 40589
  • Dragons by Sasha
    • Malware fixes
Re: XP Guardian 2010
« Reply #15 on: February 25, 2010, 11:50:58 PM »
Could you rename the MBAM extension from .exe to .com and then retry

Offline essexboy

  • Malware removal instructor
  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 40589
  • Dragons by Sasha
    • Malware fixes
Re: XP Guardian 2010
« Reply #16 on: February 25, 2010, 11:55:03 PM »
If that should fail then download this Programme to your desktop, right click and select install, nothing will appear to happen it will just do its job

tbint

  • Guest
Re: XP Guardian 2010
« Reply #17 on: February 26, 2010, 12:41:24 AM »
.com worked but when it updated it updated the program and would not exe the setup file, I did a search for it in temp and copy to desktop change file extention and thank god. scanning now.


heres the mbam log
« Last Edit: February 26, 2010, 09:11:36 PM by tbint »

Offline Pondus

  • Probably Bot
  • ****
  • Posts: 37507
  • Not a avast user
Re: XP Guardian 2010
« Reply #18 on: February 26, 2010, 01:30:31 AM »
Your log says " no action taken " you should scan again and click the button REMOVE SELECTED to quarantine the infections

tbint

  • Guest
Re: XP Guardian 2010
« Reply #19 on: February 26, 2010, 02:14:05 AM »
ran scan again said no infections found, upgraded to avast 5, found some, wanted boot scan doing now. things are working again at least, have not connect to Internet yet, after boot scan going to update avast date base and scan again. then update to xpsp3, disk clean. defrag, etc. post back after awhile.

Offline essexboy

  • Malware removal instructor
  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 40589
  • Dragons by Sasha
    • Malware fixes
Re: XP Guardian 2010
« Reply #20 on: February 26, 2010, 06:57:13 PM »
Nice - did you need to run the .inf file ?

tbint

  • Guest
Re: XP Guardian 2010
« Reply #21 on: February 26, 2010, 09:10:15 PM »
no the com worked. till it up dated.

Ok I ran mbam till clean. then avast 5. shutdown woke up this morn, ran avast found av.exe. moved to chest, ran again found some 2 trogin, moved to chest. then I deleted them ran avast one more time found 1 malware32 something. avast says its clean now. running a full with mbam right now. then going to reboot and run again. Do you think there mite be something these two programs don't know about.

have not put the laptop on Internet after updated, as not to let it loose.

Offline essexboy

  • Malware removal instructor
  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 40589
  • Dragons by Sasha
    • Malware fixes
Re: XP Guardian 2010
« Reply #22 on: February 26, 2010, 10:11:19 PM »
Possibly I would like to see a GMER run

Download the GMER Rootkit Scanner. Unzip it to your Desktop.

Before scanning, make sure all other running programs are closed and no other actions like a scheduled antivirus scan will occur while the scan is being performed. Do not use your computer for anything else during the scan.

Double-click gmer.exe. The program will begin to run.

**Caution**
These types of scans can produce false positives. Do NOT take any action on any
"<--- ROOKIT" entries unless advised!

If possible rootkit activity is found, you will be asked if you would like to perform a full scan.
  • Click NO
  • In the right panel, you will see a bunch of boxes that have been checked ... leave everything checked and ensure the Show all box is un-checked.
  • Now click the Scan button.
Once the scan is complete, you may receive another notice about rootkit activity.
  • Click OK.
  • GMER will produce a log. Click on the [Save..] button, and in the File name area, type in "GMER.txt"
  • Save it where you can easily find it, such as your desktop.
Post the contents of GMER.txt in your next reply.

tbint

  • Guest
Re: XP Guardian 2010
« Reply #23 on: February 26, 2010, 10:28:41 PM »
it was not a very long scan time.

i have had 2 clean scans from both avast and mbam after reboot. I felt safe enough to connect to internet.

heres the file
« Last Edit: February 26, 2010, 10:35:21 PM by tbint »

Offline essexboy

  • Malware removal instructor
  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 40589
  • Dragons by Sasha
    • Malware fixes
Re: XP Guardian 2010
« Reply #24 on: February 26, 2010, 10:40:50 PM »
Looks good - all problems clear now ?

tbint

  • Guest
Re: XP Guardian 2010
« Reply #25 on: February 26, 2010, 10:52:22 PM »
Looks good - all problems clear now ?

Thank you essexboy for the easy instructions, live win disk, mbam, the information, I will know were to start. Hope to give something back to you, and this forum.

I would like to become a member of UNITE. But I have a lot to learn

cheers
« Last Edit: February 26, 2010, 10:58:25 PM by tbint »

Offline essexboy

  • Malware removal instructor
  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 40589
  • Dragons by Sasha
    • Malware fixes
Re: XP Guardian 2010
« Reply #26 on: February 26, 2010, 11:01:35 PM »
My pleasure - apart from Virut most computers can be recovered intact if you have the right tools

Do you repair computers for a living ?

tbint

  • Guest
Re: XP Guardian 2010
« Reply #27 on: February 27, 2010, 01:01:00 AM »
Not main income, Started out Building my own pc's got into Satellite Internet (Hughes). Then Web sites. Quiet Shine is my newest site not sure just what to do with it. Maybe protection tips or something. I have a few more. The first site I sold is Kim's Kitchen. Good BBQ source. all html not very well coded but it works. I have improved since then.  But from collecting parts from dead PC and Making a working PC and selling, I get a few infected and broke repairs. Hobby I guess, self learned. I make a little money.

Viruses or malware.  That gets me. I mean people just browsing the web and then there pc taken hostage for ransom. They have to pay to get rid of it, pay to hopefully stay protected. Or learn how to their self. Someone like you is a blessing to have met. I find it worth the effort to learn, and interesting.

         "Virut" Have to look that up.

Thanks again for the help essexboy, thanks Pondus .  
« Last Edit: February 27, 2010, 01:12:28 AM by tbint »

Offline essexboy

  • Malware removal instructor
  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 40589
  • Dragons by Sasha
    • Malware fixes
Re: XP Guardian 2010
« Reply #28 on: February 27, 2010, 01:47:59 PM »
have a read of miekiemoes blog here.

tbint

  • Guest
Re: XP Guardian 2010
« Reply #29 on: February 27, 2010, 03:24:25 PM »
Very interesting. But leads to so many questions. I had dun a search earlier, and obviously came up with a lot of different removal tools. A definition on Virut, and some others. These questions can be rhetorical. Because I think the answers could be different in different cases. But,
is it limited to .EXE and .SCR files? I saw the html iframe way to spread.

Does the writer attach home users? I don't have any finances to profit from. That just mean and destructive.

I have 4 drives. 2 for storage, xp, 7. Will it hide? Man to lose all 4 of my drives.

can it be detected real time? So you would know not to backup after that point.

Why would someone need a virus like that, Kicks? What if the virus activated on the writers pc and he lost all his data, that was a dumb question.

Same precautions be taken to protect from infection or is it total hopeless to protect from infection? Sounds hopeless if infected.