Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Malware.Trace Registry Value


  • Please log in to reply
11 replies to this topic

#1 Jove

Jove

  • Members
  • 2,739 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Very South Jersey
  • Local time:01:19 PM

Posted 27 November 2009 - 03:11 AM

I scanned with Malwarebytes and found this;


Vendor
Malware.Trace

Category
Registry Value

Items
HKEY_LOCAL_MACHINE\System\CurrentCon...

Other
Wait to Kill

Does anyone know what this is, I googled it and information is vague, . . I haven't removed this yet.


Since it is a Registry item, I like to get some advice on what to do ?

Edited by Jove, 27 November 2009 - 04:03 AM.

When you don't have to worry about your computer anymore, you can start
living again !

vrwqzc.gif
Success is a result, not a goal. . . . Flaubert


BC AdBot (Login to Remove)

 


#2 Jove

Jove
  • Topic Starter

  • Members
  • 2,739 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Very South Jersey
  • Local time:01:19 PM

Posted 27 November 2009 - 04:26 PM

I am not a staff member, but the person who answered this post is, . .
It may give you some insight concerning the, "redirect problem"

It was not solved, but makes informative reading.

http://www.theeldergeek.com/forum/index.php?showtopic=39177

When you don't have to worry about your computer anymore, you can start
living again !

vrwqzc.gif
Success is a result, not a goal. . . . Flaubert


#3 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,493 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:01:19 PM

Posted 27 November 2009 - 05:57 PM

Hi Jove,
do you remember installing an Application "Wait to Kill"?

Please post the MBAM log
The log is automatically saved and can be viewed by clicking the Logs tab in MBAM.
Copy and paste the contents of that report in your next reply. Be sure to post the complete log to include the top portion which shows MBAM's database version and your operating system.

Edited by boopme, 27 November 2009 - 06:07 PM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#4 Jove

Jove
  • Topic Starter

  • Members
  • 2,739 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Very South Jersey
  • Local time:01:19 PM

Posted 27 November 2009 - 07:16 PM

Hello Boopme,

Malwarebytes' Anti-Malware 1.41
Database version: 2775
Windows 5.1.2600 Service Pack 3

11/27/2009 12:19:46 PM
mbam-log-2009-11-27 (12-19-38).txt

Scan type: Quick Scan
Objects scanned: 96586
Time elapsed: 10 minute(s), 17 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 1
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\WaitToKillServiceT (Malware.Trace) -> No action taken.

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)

When you don't have to worry about your computer anymore, you can start
living again !

vrwqzc.gif
Success is a result, not a goal. . . . Flaubert


#5 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,493 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:01:19 PM

Posted 27 November 2009 - 08:25 PM

Jove remove it then update and rescan.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#6 Jove

Jove
  • Topic Starter

  • Members
  • 2,739 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Very South Jersey
  • Local time:01:19 PM

Posted 27 November 2009 - 11:02 PM

Looks clean ?

Malwarebytes' Anti-Malware 1.41
Database version: 2775
Windows 5.1.2600 Service Pack 3

11/27/2009 10:11:53 PM
mbam-log-2009-11-27 (22-11-53).txt

Scan type: Quick Scan
Objects scanned: 96376
Time elapsed: 7 minute(s), 56 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)

Wait to Kill sounded vaguely familiar, but i can not recall exactly what occurred, Possibly a web visit and I may have toggled something just to peer at it. but I do not think I D/L anything ?

Mare Cee Bakoo !

Edited by Jove, 28 November 2009 - 12:15 AM.

When you don't have to worry about your computer anymore, you can start
living again !

vrwqzc.gif
Success is a result, not a goal. . . . Flaubert


#7 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,493 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:01:19 PM

Posted 28 November 2009 - 02:40 PM

OK, that does happen. Yep looks good Jove :thumbsup:
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#8 Jove

Jove
  • Topic Starter

  • Members
  • 2,739 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Very South Jersey
  • Local time:01:19 PM

Posted 29 November 2009 - 10:12 PM

Reboot into normal mode.


Hi Boopme,

I have one of my dumb questions for you, . .

I assume that the MBAM scan is in the Safe Mode ?

I didn't do that when I scanned, should I go back and rescan ?

When you don't have to worry about your computer anymore, you can start
living again !

vrwqzc.gif
Success is a result, not a goal. . . . Flaubert


#9 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,493 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:01:19 PM

Posted 29 November 2009 - 10:16 PM

Hi Jove, MBAM is the Odd one better in Normal. If you install and run a scan in safe mode. Doing this is usually not advised as MBAM is designed to be at full power when running in normal mode and loses some effectiveness for detection & removal when used in safe mode. Therefore, after completing a scan it is recommended to uninstall MBAM, then reinstall it in normal mode and perform another Quick Scan.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#10 Jove

Jove
  • Topic Starter

  • Members
  • 2,739 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Very South Jersey
  • Local time:01:19 PM

Posted 29 November 2009 - 10:27 PM

OK, Let me see if I have this right,

You are saying, . . in some cases MBAM can be used in safe mode after it is installed in the safe Mode, if that is correct then you would be on line in the safe mode ?

I'm not sure if I have you correct on that one, If I am not mistaken, I have never been able to
get connected on-line when in the safe mode, I may be wrong, haven't tried it a long time, and am using a reinstalled system.

You are also saying to Un-install after using it the safe mode, you are meaning actually go to A/R and uninstall it ?

If that is correct then, . . what would be the reason for using it in the safe mode in the first place.

Thanks much for your time and efforts.

Edited by Jove, 29 November 2009 - 10:29 PM.

When you don't have to worry about your computer anymore, you can start
living again !

vrwqzc.gif
Success is a result, not a goal. . . . Flaubert


#11 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,493 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:01:19 PM

Posted 30 November 2009 - 12:05 AM

Yes it can be run in Safe Mode if one can only use safe mode. Once safe mode is corrected . It is wise to reinstall MBAM and rescan.

I have never been able to get connected on-line when in the safe mode

It can be installed thru Safe Mode with Networking Option.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#12 Jove

Jove
  • Topic Starter

  • Members
  • 2,739 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Very South Jersey
  • Local time:01:19 PM

Posted 30 November 2009 - 02:53 PM

I'll give that a try,

TYVM

When you don't have to worry about your computer anymore, you can start
living again !

vrwqzc.gif
Success is a result, not a goal. . . . Flaubert





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users