Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

need help with bug issues


  • This topic is locked This topic is locked
9 replies to this topic

#1 bughater

bughater

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:02:33 AM

Posted 13 April 2014 - 10:17 AM

Dear experts, please help me with my bug issues per below (Eset nod32 AV4 is not able to clean completely). Many thanks,

Eset nod32 AV4 log:

4/13/2014 6:06:07 AM    Startup scanner                file          Operating memory » svchost.exe(1240)                probably a variant of Win32/Olmasco.Otrojan          cleaned by deleting                       

4/13/2014 6:06:07 AM    Startup scanner                file          Operating memory » svchost.exe(1240)                probably a variant of Win32/Olmasco.Otrojan          cleaned by deleting                       

4/12/2014 5:05:49 AM    Startup scanner                file          Operating memory » svchost.exe(1240)                probably a variant of Win32/Olmasco.Otrojan          cleaned by deleting                       

4/12/2014 5:05:44 AM    Startup scanner                file          C:\Users\user\AppData\Roaming\Identities\WINF49C.exe                Win32/Delf.RZAtrojan   cleaned by deleting - quarantined                           

4/12/2014 12:41:35 AM  Real-time file system protection               file          C:\Users\user\AppData\Local\Temp\fivxxxxle.exe                a variant of Win32/Injector.BBSTtrojan  cleaned by deleting - quarantined            Event occurred on a new file created by the application: C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\H9O6YEI4\55[1].mp3.

4/10/2014 1:38:15 PM    HTTP filter           file         

4/8/2014 2:55:29 PM       Startup scanner                file          C:\Users\user\AppData\Roaming\Macromedia\WIND7CF.exe  a variant of Win32/Kryptik.BYXOtrojan      cleaned by deleting - quarantined                           

4/8/2014 11:54:51 AM    Startup scanner                file          Operating memory » WIND7CF.exe(2568)            a variant of Win32/Agent.QDLtrojan               cleaned by deleting                       

4/7/2014 6:54:56 PM       Startup scanner                file          Operating memory » C:\Users\user\AppData\Local\Temp\vxxxxile.exe           a variant of Win32/Injector.BBKWtrojan                cleaned by deleting - quarantined                   

4/7/2014 6:54:54 PM       Startup scanner                file          Operating memory » hhhiii.exe(6168)    a variant of Win32/Agent.QDLtrojan               cleaned by deleting                       

4/7/2014 1:43:53 PM       HTTP filter           file         


Edited by hamluis, 13 April 2014 - 02:07 PM.
Moved from Win 7 to Am I Infected - Hamluis.


BC AdBot (Login to Remove)

 


#2 bughater

bughater
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:02:33 AM

Posted 13 April 2014 - 10:20 AM

continued log from prior topic:

 

               

 

 

My computer was attacked when I was research NYC parking ticket information online and i clicked a link thought was safe. Please help!!! i am frustrated. Many Thanks,


Edited by bughater, 13 April 2014 - 10:33 AM.


#3 dc3

dc3

    Bleeping Treehugger


  • Members
  • 30,391 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Sierra Foothills of Northern Ca.
  • Local time:11:33 PM

Posted 13 April 2014 - 02:28 PM

 
Please download Malwarebytes Anti-Malware.
 
1)  Double-click on mbam-setup.exe, then click on Run to install the application, follow the prompts through the installation.
 
2)  Malwarebytes will automatically open.  If this is the first time you have run this version of Malwarbytes you will see an image like the one below.
 
mbam1_zps95cc812c.png
 
Click on Update Now, after Malwarebytes is updated click on Scan.
 
If this isn't the first time you have run this version, then you will see an image like the one below.  Click on Scan
 
mbam1_zps98e7fba9.png
 
You will be prompted to update Malwarebytes, to do so click on Update Now.
 
 mbam2_zps85f38f0c.png
 
3)  The scan will automatically run now.
 
mbamreplace_zps3ead4824.png
 
 
4)  When the scan is complete the results will be displayed.  Click on Quarantine All, then click on Apply Actions
 
mbam4_zps23e52ad4.png
 
 
5)  To complete any actions taken you will be asked if you want to restart your computer, click on Yes
 
 mbam4_zps490948cc.png
 
6)  Please post the Malwarebytes log.
 
To find your Malwarebytes log,download mbam-check.exe from here and save it to your desktop.
 
To open the log double click on mbam-check.exe on your desktop.  When the log opens, scroll down toward the bottom of the log to Quarantined Items.  Copy and paste this in your next post.

Family and loved ones will always be a priority in my daily life.  You never know when one will leave you.

 

 

 

 


#4 bughater

bughater
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:02:33 AM

Posted 13 April 2014 - 10:57 PM

The threatscan Malwarebytes (trial 2.0.1.1004 database v2014.04.14.02) did not find anything, please see log below:

 

C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\Quarantine

Malware Exclusions:
===================
Web Exclusions:
================
Quarantined Items:
===================
===============================================================
END OF FILE

 

should i use custom scan on the entire c drive?



#5 dc3

dc3

    Bleeping Treehugger


  • Members
  • 30,391 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Sierra Foothills of Northern Ca.
  • Local time:11:33 PM

Posted 14 April 2014 - 10:54 AM

Did you run the Eset online scan or their antivirus?

 

Did you download and run the version of Malwarebytes I suggested?


Family and loved ones will always be a priority in my daily life.  You never know when one will leave you.

 

 

 

 


#6 bughater

bughater
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:02:33 AM

Posted 14 April 2014 - 12:02 PM

I did run the Eset NOD32 Antivirus 4 which could not completely clean the bug.

I downloaded the Malwarebytes from the link above and when i update it automatically download the (trial 2.0.1.1004 database v2014.04.14.02). i did another update and run the Malwarebytes but it did not find any bug.

Could this be some new bug?


Edited by bughater, 14 April 2014 - 12:02 PM.


#7 dc3

dc3

    Bleeping Treehugger


  • Members
  • 30,391 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Sierra Foothills of Northern Ca.
  • Local time:11:33 PM

Posted 14 April 2014 - 12:11 PM

I want you to run the online scan, not their antivirus.

Please scan your computer with ESET OnlineScan
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.

Family and loved ones will always be a priority in my daily life.  You never know when one will leave you.

 

 

 

 


#8 bughater

bughater
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:02:33 AM

Posted 14 April 2014 - 08:26 PM

ESET ONLINE SCANNER did not find any bug either (i did select all the advanced settings):

 

scan results:

No threats found

scanner files: 201645

infected files:  0

cleaned files:  0

total scan time:  01:35:40

scan status:   Finished

 

I also scanned the entire C:/drive using Malwarebytes for 3 hours without any result(cancelled at 3 hours).

I also tried system recover to the date before the computer was attacked.

The annoying bugs always comes back.

This is as worse as the bedbugs!


Edited by bughater, 14 April 2014 - 09:48 PM.


#9 dc3

dc3

    Bleeping Treehugger


  • Members
  • 30,391 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Sierra Foothills of Northern Ca.
  • Local time:11:33 PM

Posted 15 April 2014 - 10:59 AM

Your computer is badly infected, the tools needed to clean these infections can not be used in this forum.  For this reason you will need to open a topic in the  Virus, Trojan, Spyware, and Malware Removal Logs forum where a member of the Malware Removal Team member will help you with the process of cleaning your computer.

 

Please read the instructions and do what is requested in the Preparation Guide For Use Before Using Malware Removal Tools and Requesting Help.

 

You should include the first post you made in this topic.


Edited by dc3, 15 April 2014 - 11:01 AM.

Family and loved ones will always be a priority in my daily life.  You never know when one will leave you.

 

 

 

 


#10 Elise

Elise

    Bleepin' Blonde


  • Malware Study Hall Admin
  • 60,976 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Romania
  • Local time:09:33 AM

Posted 17 April 2014 - 01:25 PM

Now that you have posted your topic, this one will be closed to avoid confusion.


regards, Elise


"Now faith is the substance of things hoped for, the evidence of things not seen."

 

Follow BleepingComputer on: Facebook | Twitter | Google+ | lockerdome

 

Malware analyst @ Emsisoft





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users