Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

coolswitch (Trojan.FakeAlert.H)

Started by bob33 , Sep 09 2008 07:56 PM

  • Please log in to reply

#1
bob33
Posted 09 September 2008 - 07:56 PM

bob33

    New Member

  • Member
  • Pip
  • 2 posts
I installed tonight and updated Malwarebytes before running it:
Log:
Malwarebytes' Anti-Malware 1.27
Database version: 1134
Windows 5.1.2600 Service Pack 3

9/9/2008 9:35:35 PM
mbam-log-2008-09-09 (21-35-30).txt

Scan type: Full Scan (C:\|F:\|)
Objects scanned: 173879
Time elapsed: 55 minute(s), 58 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 1
Registry Data Items Infected: 2
Folders Infected: 0
Files Infected: 1

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\coolswitch (Trojan.FakeAlert.H) -> No action taken.

Registry Data Items Infected:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SecurityProviders (Broken.SecurityProviders) -> Bad: (msapsspc.dll schannel.dll digest.dll msnsspc.dll) Good: (msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll) -> No action taken.
HKEY_CLASSES_ROOT\scrfile\shell\open\command\ (Broken.OpenCommand) -> Bad: ("%1" %*) Good: ("%1" /S) -> No action taken.

Folders Infected:
(No malicious items detected)

Files Infected:
C:\WINDOWS\Downloaded Program Files\atmgr.exe (Trojan.Agent) -> No action taken.


I clicked on the correct/fix button and after doing it, I'm wondering what I do about the following entries:
1. coolswitch (Trojan.FakeAlert.H) -> No action taken.
2. SecurityProviders (Broken.SecurityProviders) -> Bad...>No action taken
3. atmgr.exe (Trojan.Agent) -> No action taken.

Do I need to be concerned and if so, what corrective action should I take?

TIA,
bob
  • 0

Advertisements

#2
emeraldnzl
Posted 15 September 2008 - 06:45 PM

emeraldnzl

    GeekU Instructor

  • GeekU Moderator
  • 20,051 posts
Hello bob33,

Welcome to Geekstogo.

Just noticed that you had been missed.

Are you still looking for help.?

If so have you been to the self help section?

You need to go there before you come here.Posted Image

If you read the thread there you will see step by step instructions to help fix your problem, in your case running the Malwarbytes program again and getting it to fix what it finds should help you.

If your machine still has problems after that you can come back here with your HijackThis log.

The link below will take you there.

http://www.geekstogo...-Log-t2852.html

Regards
emeraldnzl
  • 0

#3
bob33
Posted 16 September 2008 - 04:38 PM

bob33

    New Member

  • Topic Starter
  • Member
  • Pip
  • 2 posts
Emeraldz,
No help needed now. I waited a few days and reran malwarebytes.exe again and nothing showed so I guess I'm good to go.
Thanks anyhow,
bob
  • 0

#4
emeraldnzl
Posted 16 September 2008 - 05:55 PM

emeraldnzl

    GeekU Instructor

  • GeekU Moderator
  • 20,051 posts
Good to know everything is fine now.

emeraldnzl
  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP