Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Please Help Me. incredibar malware


  • Please log in to reply
1 reply to this topic

#1 Cihan

Cihan

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:04:01 PM

Posted 25 June 2012 - 05:56 AM

Mystart incredibar infected my computer.. what do i do?



AVG Antivirus Scan Report


"Scan ""Whole computer scan"" completed."
"Spyware";"1";"1";"0"
"Rootkits";"28";"0";"28"
"Information";"4"
"Folders selected for scanning:";"Whole computer scan"
"Scan started:";"25 Haziran 2012 Pazartesi, 09:12:19"
"Scan finished:";"25 Haziran 2012 Pazartesi, 10:10:37 (58 minute(s) 18 second(s))"
"Total object scanned:";"2668251"
"User who launched the scan:";"badburn"

"Spyware"
"";"File";"Infection";"Result"
"";"C:\Users\badburn\Downloads\crack.for.a.d.o.b.e\crack.for.a.d.o.b.e\adobe-master-cs4-keygen.exe";"Potentially harmful program Crack.EB";"Moved to Virus Vault"

"Rootkits"
"";"File";"Infection";"Result"
"";"C:\Windows\system32\DRIVERS\storport.sys";"IRP hook, \Driver\vsmraid IRP_MJ_POWER -> storport.sys StorPortExtendedFunction+0x33F0";"Object is white-listed (critical/system file that should not be removed)"
"";"C:\Windows\system32\DRIVERS\storport.sys";"IRP hook, \Driver\vsmraid IRP_MJ_CLOSE -> storport.sys StorPortInitialize+0x3CC70";"Object is white-listed (critical/system file that should not be removed)"
"";"C:\Windows\system32\DRIVERS\storport.sys";"IRP hook, \Driver\vsmraid IRP_MJ_DEVICE_CONTROL -> storport.sys StorPortInitialize+0x37C00";"Object is white-listed (critical/system file that should not be removed)"
"";"C:\Windows\system32\DRIVERS\storport.sys";"IRP hook, \Driver\vsmraid IRP_MJ_PNP -> storport.sys StorPortInitialize+0x3E640";"Object is white-listed (critical/system file that should not be removed)"
"";"C:\Windows\system32\DRIVERS\storport.sys";"IRP hook, \Driver\vsmraid IRP_MJ_SYSTEM_CONTROL -> storport.sys StorPortInitialize+0x3DA80";"Object is white-listed (critical/system file that should not be removed)"
"";"C:\Windows\system32\DRIVERS\storport.sys";"IRP hook, \Driver\vsmraid IRP_MJ_CREATE -> storport.sys StorPortInitialize+0x3CD50";"Object is white-listed (critical/system file that should not be removed)"
"";"C:\Windows\system32\DRIVERS\storport.sys";"IRP hook, \Driver\vsmraid IRP_MJ_INTERNAL_DEVICE_CONTROL -> storport.sys memset+0xF0";"Object is white-listed (critical/system file that should not be removed)"
"";"C:\Windows\system32\DRIVERS\PCIIDEX.SYS";"IRP hook, \Driver\pciide IRP_MJ_PNP -> PCIIDEX.SYS DllUnload+0x68";"Object is white-listed (critical/system file that should not be removed)"
"";"C:\Windows\system32\DRIVERS\PCIIDEX.SYS";"IRP hook, \Driver\pciide IRP_MJ_SYSTEM_CONTROL -> PCIIDEX.SYS DllUnload+0x9C";"Object is white-listed (critical/system file that should not be removed)"
"";"C:\Windows\system32\DRIVERS\PCIIDEX.SYS";"IRP hook, \Driver\pciide IRP_MJ_POWER -> PCIIDEX.SYS AtaPortEtwTraceLog+0xBD4";"Object is white-listed (critical/system file that should not be removed)"
"";"C:\Windows\system32\drivers\CLASSPNP.SYS";"IRP hook, \Driver\Disk IRP_MJ_READ -> CLASSPNP.SYS +0x1700";"Object is white-listed (critical/system file that should not be removed)"
"";"C:\Windows\system32\drivers\CLASSPNP.SYS";"IRP hook, \Driver\Disk IRP_MJ_SYSTEM_CONTROL -> CLASSPNP.SYS +0x1700";"Object is white-listed (critical/system file that should not be removed)"
"";"C:\Windows\system32\drivers\CLASSPNP.SYS";"IRP hook, \Driver\Disk IRP_MJ_POWER -> CLASSPNP.SYS +0x1700";"Object is white-listed (critical/system file that should not be removed)"
"";"C:\Windows\system32\drivers\CLASSPNP.SYS";"IRP hook, \Driver\Disk IRP_MJ_SHUTDOWN -> CLASSPNP.SYS +0x1700";"Object is white-listed (critical/system file that should not be removed)"
"";"C:\Windows\system32\drivers\CLASSPNP.SYS";"IRP hook, \Driver\Disk IRP_MJ_INTERNAL_DEVICE_CONTROL -> CLASSPNP.SYS +0x1700";"Object is white-listed (critical/system file that should not be removed)"
"";"C:\Windows\system32\drivers\CLASSPNP.SYS";"IRP hook, \Driver\Disk IRP_MJ_DEVICE_CONTROL -> CLASSPNP.SYS +0x1700";"Object is white-listed (critical/system file that should not be removed)"
"";"C:\Windows\system32\drivers\CLASSPNP.SYS";"IRP hook, \Driver\Disk IRP_MJ_FLUSH_BUFFERS -> CLASSPNP.SYS +0x1700";"Object is white-listed (critical/system file that should not be removed)"
"";"C:\Windows\system32\drivers\CLASSPNP.SYS";"IRP hook, \Driver\Disk IRP_MJ_CREATE -> CLASSPNP.SYS +0x1700";"Object is white-listed (critical/system file that should not be removed)"
"";"C:\Windows\system32\drivers\CLASSPNP.SYS";"IRP hook, \Driver\Disk IRP_MJ_CLOSE -> CLASSPNP.SYS +0x1700";"Object is white-listed (critical/system file that should not be removed)"
"";"C:\Windows\system32\drivers\CLASSPNP.SYS";"IRP hook, \Driver\Disk IRP_MJ_PNP -> CLASSPNP.SYS +0x1700";"Object is white-listed (critical/system file that should not be removed)"
"";"C:\Windows\system32\drivers\CLASSPNP.SYS";"IRP hook, \Driver\Disk IRP_MJ_WRITE -> CLASSPNP.SYS +0x1700";"Object is white-listed (critical/system file that should not be removed)"
"";"C:\Windows\system32\DRIVERS\ataport.SYS";"IRP hook, \Driver\atapi IRP_MJ_CREATE -> ataport.SYS DllUnload+0x53D8";"Object is white-listed (critical/system file that should not be removed)"
"";"C:\Windows\system32\DRIVERS\ataport.SYS";"IRP hook, \Driver\atapi IRP_MJ_CLOSE -> ataport.SYS DllUnload+0x53D8";"Object is white-listed (critical/system file that should not be removed)"
"";"C:\Windows\system32\DRIVERS\ataport.SYS";"IRP hook, \Driver\atapi IRP_MJ_DEVICE_CONTROL -> ataport.SYS AtaPortInitialize+0x18C";"Object is white-listed (critical/system file that should not be removed)"
"";"C:\Windows\system32\DRIVERS\ataport.SYS";"IRP hook, \Driver\atapi IRP_MJ_INTERNAL_DEVICE_CONTROL -> ataport.SYS AtaPortInitialize+0x164";"Object is white-listed (critical/system file that should not be removed)"
"";"C:\Windows\system32\DRIVERS\ataport.SYS";"IRP hook, \Driver\atapi IRP_MJ_POWER -> ataport.SYS AtaPortInitialize+0x1B4";"Object is white-listed (critical/system file that should not be removed)"
"";"C:\Windows\system32\DRIVERS\ataport.SYS";"IRP hook, \Driver\atapi IRP_MJ_SYSTEM_CONTROL -> ataport.SYS DllUnload+0x40";"Object is white-listed (critical/system file that should not be removed)"
"";"C:\Windows\system32\DRIVERS\ataport.SYS";"IRP hook, \Driver\atapi IRP_MJ_PNP -> ataport.SYS DllUnload+0xC";"Object is white-listed (critical/system file that should not be removed)"

"Information"
"";"File";"Information";"Result"
"";"D:\programlar\Sothink.SWF.Decompiler\612\SWFDecompiler.exe";"The file is signed with a broken digital signature, issued by: SourceTec Software Co..";""
"";"D:\programlar\PS Suite\Winrar 3.70 TR\keygen wrar370tr.exe";"Runtime packed fsg";""
"";"D:\programlar\PS Suite\Crack & Keygen\CS4MCLG.EXE";"Runtime packed upack";""
"";"C:\Users\badburn\Desktop\Gecici\crack\CS4MCLG.EXE";"Runtime packed upack";""

Edited by Cihan, 25 June 2012 - 06:13 AM.


BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,934 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:04:01 PM

Posted 25 June 2012 - 10:13 AM

Hello, if in Firefox do this.

remove IncrediMail MyStart from my Firefox Internet Browser
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users