Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Rootkit ??


  • This topic is locked This topic is locked
3 replies to this topic

#1 Techguy27

Techguy27

  • Members
  • 54 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:26 PM

Posted 04 May 2010 - 02:54 PM

Hello,

I have removed spyware using combofix and malwarebytes, However, I've noticed that the IE icon is being renamed and I have had difficulty repairing the NOD32 AV installation.

Attached is a copy of the GMER log. I would appreicate if anyone can identify anything.

Thank you for your time.

Thought this would be more help.

-Thanks again for helping me identify what needs removed.

Attached Files

  • Attached File  gmer.log   1.53KB   9 downloads
  • Attached File  OTL.Txt   68.21KB   4 downloads

Edited by hamluis, 05 May 2010 - 05:42 PM.
Edited to add additional post by OP ~ Hamluis.


BC AdBot (Login to Remove)

 


#2 m0le

m0le

    Can U Dig It?


  • Malware Response Team
  • 34,527 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:London, UK
  • Local time:01:26 AM

Posted 06 May 2010 - 08:44 PM

Hi,

Welcome to Bleeping Computer. My name is m0le and I will be helping you with your log.
  • Please subscribe to this topic, if you haven't already. You can subscribe by clicking the Options box to the right of your topic title and selecting Track This Topic.

  • Please avoid installing/uninstalling or updating any programs and attempting any unsupervised fixes or scans. This can make helping you impossible.

  • Please reply to this post so I know you are there.
The forum is busy and we need to have replies as soon as possible. If I haven't had a reply after 3 days I will bump the topic and if you do not reply by the following day after that then I will close the topic.

Once I receive a reply then I will return with your first instructions.

Thanks thumbup2.gif
Posted Image
m0le is a proud member of UNITE

#3 Techguy27

Techguy27
  • Topic Starter

  • Members
  • 54 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:26 PM

Posted 10 May 2010 - 08:31 AM

M0le,

I appreciate the response. I understand the forums are busy and always appreciate the help when it can be given.

This thread can be closed.

While waiting I decided to clone the drive and attempt to research and fix the issue myself. I found a nice site System Lookup that helped me identify where the possible issues were.

I could be wrong, but I did not see any rootkits in the logs I posted. I did however find several entries that I fixed and now the system appears to be running as it should.

-Thank you

#4 m0le

m0le

    Can U Dig It?


  • Malware Response Team
  • 34,527 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:London, UK
  • Local time:01:26 AM

Posted 10 May 2010 - 09:51 AM

Hi,

There was no rootkit in Gmer as you said.

If you are happy to close the thread then I will.

Thanks for letting me know. thumbup2.gif

---------------------------------------------------------------

This topic has been closed.

If you're the topic starter, and need this topic reopened, please contact me via pm with the address of the thread.

Everyone else please begin a New Topic.
Posted Image
m0le is a proud member of UNITE




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users