Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

malware/ virus, Geek U


  • This topic is locked This topic is locked

#1
Hauslfer

Hauslfer

    Member

  • Member
  • PipPip
  • 49 posts
after researching for Geek U I picked up a couple infections, I think its just some programs from your malware removal, but I'm going to post this because I just want to be safe rather than sorry

all scans were disabled except the program doing the scan



MSE - 0 found




comando v scan caught this

[email protected]#u9phuzvzboiw C:\Users\Johnathan\Desktop\Tech\dds.com

ESET caught this
C:\Users\Johnathan\Desktop\Tech\cnet2_winamp5623_full_emusic-7plus_en-us_exe.exe

a variant of Win32/InstallCore.D application
ial) 1.61.0.1400 0 found


Malwarebytes Anti-Malware (Trial) 1.61.0.1400
www.malwarebytes.org

Database version: v2012.05.28.03

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Johnathan :: AJ [administrator]

Protection: Disabled

29/05/2012 12:14:21 PM
mbam-log-2012-05-29 (12-14-21).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System |

Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 203820
Time elapsed: 2 minute(s), 50 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)
  • 0

Advertisements


#2
Hauslfer

Hauslfer

    Member

  • Topic Starter
  • Member
  • PipPip
  • 49 posts
after researching for Geek U I picked up a couple infections, I think its just some programs from your malware removal, but I'm going to post this because I just want to be safe rather than sorry

all scans were disabled except the program doing the scan



MSE - 0 found

also i came across C:\BOOTSECT.BAK AND C:\BOOTMGR.BAK



comando v scan caught this

[email protected]#u9phuzvzboiw C:\Users\Johnathan\Desktop\Tech\dds.com (this is just a program G2G uses right)

ESET caught this
C:\Users\Johnathan\Desktop\Tech\cnet2_winamp5623_full_emusic-7plus_en-us_exe.exe

a variant of Win32/InstallCore.D application
ial) 1.61.0.1400 0 found


Malwarebytes Anti-Malware (Trial) 1.61.0.1400
www.malwarebytes.org

Database version: v2012.05.28.03

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Johnathan :: AJ [administrator]

Protection: Disabled

29/05/2012 12:14:21 PM
mbam-log-2012-05-29 (12-14-21).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System |

Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 203820
Time elapsed: 2 minute(s), 50 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)
  • 0

#3
Noviciate

Noviciate

    Confused Helper

  • Malware Removal
  • 1,566 posts
Good evening. :)

comando v scan caught this
[email protected]#u9phuzvzboiw C:\Users\Johnathan\Desktop\Tech\dds.com (this is just a program G2G uses right)

This would depend on where you got the file from. If it is a known legitimate link, such as http://www.bleepingc...m/download/dds/, then you are fine and this is a false-positive but if you acquired it from somewhere else it could be malicious.

ESET caught this
C:\Users\Johnathan\Desktop\Tech\cnet2_winamp5623_full_emusic-7plus_en-us_exe.exe

a variant of Win32/InstallCore.D application
ial) 1.61.0.1400 0 found

Cnet have been supplying files for download that have been wrapped in code that upsets certain security scanners. I suggest that you download from the original sites where possible and perhaps consider finding a different source for any others - http://forums.cnet.c...in32-opencandy/

also i came across C:\BOOTSECT.BAK AND C:\BOOTMGR.BAK

And these bother you because?
  • 0

#4
Hauslfer

Hauslfer

    Member

  • Topic Starter
  • Member
  • PipPip
  • 49 posts
Sorry for the inconvenience,Noviciate Posted Image,
Have a good day

  • 0

#5
Noviciate

Noviciate

    Confused Helper

  • Malware Removal
  • 1,566 posts
Not a problem, but remember that Google is there to serve you. A little research on Win32/InstallCore.D, BOOTSECT.BAK and BOOTMGR.BAK would have perhaps put your mind at rest, or at least given you an idea of what you needed to worry about.
  • 0

#6
Noviciate

Noviciate

    Confused Helper

  • Malware Removal
  • 1,566 posts
As this issue appears to have been resolved, this thread is now closed.
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP