.:`=-~rANdOm~`-=:. Game Servers (Read Only) > Guides

How to massacre a virus!

<< < (2/7) > >>

Dale Feles:
Doing a scan now. Will post log later on.

blαh2355:
I have always used MBAM. Can detect and destroy any viruses like no other anti-virus programs. :thumbsup:

So rkill pretty much stops viruses interfering with scans?nvm I figured it out. My log shows no processes ;D

Deelpeel:
rkill doesnt work for meh, i get an odd error and my anti-virus says it has a virus D:

Peetah:
Very nice. I use Rkill and Malwarebytes a lot for my work.
You should do this in safemode, not too hard to get in there.


--- Quote from: Dillpill The Nerd on April 26, 2011, 12:12:48 PM ---rkill doesnt work for meh, i get an odd error and my anti-virus says it has a virus D:

--- End quote ---
Disable antivirus, or do it in safemode.
Some antivirus will detect Rkill as virus but I assure you, its not.

Also Silent, check out Emsisoft's Emergency Kit.
Amazing Portable antivirus scanner, has like 99.8% detection I believe.

Dale Feles:

--- Quote from: Peetah on April 26, 2011, 12:24:40 PM ---Very nice. I use Rkill and Malwarebytes a lot for my work.
You should do this in safemode, not too hard to get in there.
Disable antivirus, or do it in safemode.
Some antivirus will detect Rkill as virus but I assure you, its not.

Also Silent, check out Emsisoft's Emergency Kit.
Amazing Portable antivirus scanner, has like 99.8% detection I believe.

--- End quote ---

Alright, and Dillpill, rkill might be detected as virus, but it's not. Try adding an exception to it on your anti-virus

Anyways I finished my scan and it picked up 3 viruses. Here's the log: Spoiler (click to show/hide)Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org

Database version: 6443

Windows 6.1.7600
Internet Explorer 8.0.7600.16385

2011-04-25 21:12:16
mbam-log-2011-04-25 (21-12-16).txt

Scan type: Full scan (C:\|D:\|E:\|)
Objects scanned: 895149
Time elapsed: 2 hour(s), 13 minute(s), 57 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 3
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\FIREFOX.EXE\shell\open\command\(default) (Hijack.StartMenuInternet) -> Bad: ("C:\Users\Mathieu\AppData\Local\mdx.exe" -a "C:\Program Files (x86)\Mozilla Firefox\firefox.exe") Good: (firefox.exe) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\FIREFOX.EXE\shell\safemode\command\(default) (Hijack.StartMenuInternet) -> Bad: ("C:\Users\Mathieu\AppData\Local\mdx.exe" -a "C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -safe-mode) Good: (firefox.exe -safe-mode) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command\(default) (Hijack.StartMenuInternet) -> Bad: ("C:\Users\Mathieu\AppData\Local\mdx.exe" -a "C:\Program Files (x86)\Internet Explorer\iexplore.exe") Good: (iexplore.exe) -> Quarantined and deleted successfully.

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)


Navigation

[0] Message Index

[#] Next page

[*] Previous page

Go to full version