Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Cannot delete registry keys found by GMER


  • Please log in to reply
1 reply to this topic

#1 Shauran

Shauran

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:12 AM

Posted 26 October 2013 - 12:22 AM

Hello!
My name is Shauran, got this problem deleting what GMER detected. Tried deleting it in the cmd promp provided by GMER but got an access denied error. Search the registry and found a lot of 001f8100011c. I've already search the net and seemed like there is no common fix for this. I look forward for your help guys..
TIA
 
GMER 2.1.19163 - http://www.gmer.net
Rootkit scan 2013-10-26 12:17:15
Windows 5.1.2600 Service Pack 3 \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP1T0L0-e ExcelStor_Technology_J340 rev.V22OA63A 38.35GB
Running: Axo0n0skq.exe; Driver: C:\DOCUME~1\Siyak\LOCALS~1\Temp\kwldqkog.sys
 
 
---- Kernel code sections - GMER 2.1 ----
 
?    C:\WINDOWS\system32\Drivers\RKREVEAL150.SYS                                                      The system cannot find the file specified. !
 
---- Registry - GMER 2.1 ----
 
Reg  HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\001f8100011c                      
Reg  HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\001f8100011c@a007985f7000         0x5F 0xB9 0x1A 0x98 ...
Reg  HKLM\SYSTEM\ControlSet003\Services\BTHPORT\Parameters\Keys\001f8100011c (not active ControlSet)  
 
---- EOF - GMER 2.1 ----

Edited by hamluis, 26 October 2013 - 06:37 AM.
Moved from XP to Am I Infected - Hamluis.


BC AdBot (Login to Remove)

 


#2 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,738 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:04:12 PM

Posted 26 October 2013 - 02:08 PM

Welcome aboard p22002758.gif

 

It's not a good to idea to start messing with registry id you're not sure what you're doing.

There is absolutely no reason to remove anything since there is nothing malicious in GMER log.

 

Are you having any computer issues?


My Website

My help doesn't cost a penny, but if you'd like to consider a donation, click DONATE

 





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users