Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Not sure If My Computer has a virus


  • Please log in to reply
2 replies to this topic

#1 Tarboro

Tarboro

  • Members
  • 40 posts
  • OFFLINE
  •  
  • Local time:12:57 PM

Posted 29 April 2010 - 08:00 PM

I ran a full system scan on Norton Antivirus 2010 and came up with no errors whatsoever. The computer was totally clean there. Then I ran, Malwarebytes Anti-Malware, and got the 4 errors. I wanted to attach the log but the option isn't available. I posted the log attachment in a seperate message, and it can be found there: http://www.bleepingcomputer.com/forums/ind...t&p=1737958

Are these errors/malware significant and do I need to remove them? I was uncertain since they seem to be registry related.

BC AdBot (Login to Remove)

 


#2 Tarboro

Tarboro
  • Topic Starter

  • Members
  • 40 posts
  • OFFLINE
  •  
  • Local time:12:57 PM

Posted 29 April 2010 - 09:23 PM

Here is the log of the Malwarebytes Anti-malware scan:

Malwarebytes' Anti-Malware 1.45
www.malwarebytes.org

Database version: 3930

Windows 5.1.2600 Service Pack 2
Internet Explorer 7.0.5730.13

4/29/2010 8:46:16 AM
mbam-log-2010-04-29 (08-46-16).txt

Scan type: Quick scan
Objects scanned: 116149
Time elapsed: 58 minute(s), 51 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 2
Registry Values Infected: 0
Registry Data Items Infected: 2
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\{c48635ad-d6b5-3ee4-aaa2-540d5a173658} (Backdoor.Bot) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\{4776c4dc-e894-7c06-2148-5d73cef5f905} (Backdoor.Bot) -> No action taken.

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Security Center\UpdatesDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Security Center\FirewallDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> No action taken.

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)

#3 Tarboro

Tarboro
  • Topic Starter

  • Members
  • 40 posts
  • OFFLINE
  •  
  • Local time:12:57 PM

Posted 30 April 2010 - 07:02 AM

I also used tdsskiller.exe recently to remove a rootkit issue. I have been told that that Backdoor bot items are the ones to be concerned about:

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\{c48635ad-d6b5-3ee4-aaa2-540d5a173658} (Backdoor.Bot) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\{4776c4dc-e894-7c06-2148-5d73cef5f905} (Backdoor.Bot) -> No action taken.


I hope to salvage and save my computer, but I really need assistance on this. Thanks in advance!




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users