Posted 14 January 2010 - 07:53 PM
Hello all, I'm one of those lurkers who has known about Bleeping Computer for some time, I just never registered.
I am having a problem w/ a friend's computer, I seen that a similar post had been made here and thought I'd try it out.
He downloaded a "Registry Cleaner" & is now infected.
So here's the scoop, I've tried turning System Restore off to resolve this problem without any luck.
The problem is in:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Desktop\Components\0\friendlyname (Trojan.FakeAlert) -> Delete on reboot.
But MBAM won't remove upon reboot.
I have updated MBAM since my last log and am currently scanning the pc so I don't have an up to date log as of 1/14/2010.
I will post one tomorrow if needed.
I wondered about backing up the registry and physically removing this bugger or if there is a more simple solution.
I did get this information on the infection:
Windows Registry Editor Version 5.00
Thank you for your help & time.
(If MBAM gets done scanning before I leave his home, I'll post the updated log, I am a member at another help forum and have this posted there for as well)