Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

fixdamage.exe


  • Please log in to reply
7 replies to this topic

#1 sikntired

sikntired

  • Members
  • 1,021 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:USA
  • Local time:12:57 PM

Posted 09 April 2013 - 12:26 PM

Found this to be associated with MBAR, Just wondering what exactly fixdamage.exe is and does it do as it suggests? There are some advocates from well respected companies who have stated:I will not even try to clean up a rootkit or bootkit. The computer has been extremely compromised and it will never be stable again without a total wipe and clean install.

 

I do not have the credentials nor experience to dispute veterans in this industry. However it is hard for me to believe in light of the fact that members and staff give of themselves all this is done for naught.

 

I for one thank BC for being here to assist those of us who are at wits end in trying to keep our systems secure.

 

Best Regards.................... :thumbsup:



BC AdBot (Login to Remove)

 


#2 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,596 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:01:57 PM

Posted 09 April 2013 - 01:11 PM

FixDamage.exe is a utility included with the Malwarebytes Anti-Rootkit package. It is useful to repair collateral damage (broken firewall, Windows updates, Action center, User Account control, etc.) to a computer caused by rootkit infection. The utility can be applied after a successful rootkit cleanup to restore damaged settings to their default state.


Many experts in the security community believe that once infected with this type of malware, the best course of action is to wipe the drive clean, reformat and reinstall the OS. Please read:

Whenever a system has been compromised by a backdoor payload, it is impossible to know if or how much the backdoor has been used to affect your system...There are only a few ways to return a compromised system to a confident security configuration. These include:
Reimaging the system
Restoring the entire system using a full system backup from before the backdoor infection
Reformatting and reinstalling the system


.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#3 sikntired

sikntired
  • Topic Starter

  • Members
  • 1,021 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:USA
  • Local time:12:57 PM

Posted 09 April 2013 - 01:22 PM

@quietman7

 

Thanks for the explanation and added information. I have MBAR saved and happened to notice it while doing a system backup and was curious.



#4 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,596 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:01:57 PM

Posted 09 April 2013 - 02:55 PM

You're welcome.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#5 vulcain

vulcain

  • Members
  • 165 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:France
  • Local time:06:57 PM

Posted 21 June 2013 - 04:21 PM

Hello

 

there he has a tutorial FixDamage

 

 to avoid trouble in case.
thank you
cordially


#6 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,596 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:01:57 PM

Posted 24 June 2013 - 06:56 AM

When you unzip (extract) MBAMAntiRootkit there is a ReadMe.rtf file created inside its folder. Read page 6 for info on fixdamage.exe.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#7 vulcain

vulcain

  • Members
  • 165 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:France
  • Local time:06:57 PM

Posted 24 June 2013 - 09:47 AM

Hello, thank you, very informative, his newspaper remains faithful to Malwarebytes all know. And its interpretation is easy.
when a use we have to wait the final version.
sincerely,


#8 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,596 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:01:57 PM

Posted 24 June 2013 - 09:53 AM

You're welcome.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users