Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Possible gamarue?


  • Please log in to reply
1 reply to this topic

#1 s-cars

s-cars

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:04:07 AM

Posted 08 March 2013 - 12:15 PM

Outward email started to bounce, as our IP has been added to the CBL list. CBL site indicated a positive infection on the IP for Gamarue.

 

Checked firewall traffic and one machine appears does to be connecting on it's own to various sites on port 80, checked the computer and no browser windows were open.

 

The computer is "protected" by Symantec Endpoint.

 

Tried running full scan on Endpoint - nothing found.

Rebooted into safe mode, scanned again, nothing.

Downloaded fresh Mbam in safemode - full scan nothing found

Downloaded fresh Combofix again nothing found.

 

Running out of ideas :/

 

 



BC AdBot (Login to Remove)

 


#2 s-cars

s-cars
  • Topic Starter

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:04:07 AM

Posted 08 March 2013 - 12:38 PM

Win7 pro




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users