New thread as requested, Malware picked up smart scan,cleaned,then picked up fulls sc

Discussion in 'Malware Help - MG (A Specialist Will Reply)' started by mladyraven, Aug 19, 2011.

  1. mladyraven

    mladyraven Corporal

    HI again rolleyes

    Malware Fighter picked this up during smart scan, then I ran a full scan and it picked it up again.
    We have gone through the Remove Malware process twice.
    Is Malware Fighter picking up stuff that is not malware, could my Malware fighter be corrupted?

    Thanks K, I am not sure what to do at this point.
    Scans attached.
    Thanks again.....
    I am not concerned when it picks things up and cleans them, I get concerned when it says it cleaned them and then I run a full scan and they are still showing up.
     

    Attached Files:

    mladyraven, Aug 19, 2011
    #1
  2. mladyraven

    mladyraven Corporal

    Re: New thread as requested, Malware picked up smart scan,cleaned,then picked up full

    Where on the site is there an explanation re uploading and taking screen shots. I follow the directions, put them in paint, ( which is what windows directions told me to do) however, when I try to upload the screen shot it fails to upload.
    I ran the malware through VT and am trying to get a screen shot to upload.
    Thanks

    OK< I tried cut and pasting and putting it in an Open Office file but that came up as no valid.
     
    mladyraven, Aug 19, 2011
    #2
  3. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Re: New thread as requested, Malware picked up smart scan,cleaned,then picked up full

    I'm leaning towards a false detection. See:http://forums.iobit.com/showthread.php?p=66083

    However, open the Windows Registry Editor by running regedit.exe.

    Nvaigate to below registry key:

    HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\BrowserEmulation

    Then in the right window pane you should see a TLDUpdates under the Name column. What do you see in the Data column corresponding to TLDUpdates. The normal values seen are either 0x00000000 (0) or 0x00000001 (1)
     
    chaslang, Aug 19, 2011
    #3
  4. mladyraven

    mladyraven Corporal

    Re: New thread as requested, Malware picked up smart scan,cleaned,then picked up full

    Chaslang
    What I see is: 0x00000001 (1)
    And thank you for the very clear directions... I am a slow learner, teaching myself .... and never go into the registry unless I am sent there by one of the experts on the site.

    Unless you say otherwise I am going to assume this is a false positive.
    Thank you, again
     
    Last edited: Aug 20, 2011
    mladyraven, Aug 20, 2011
    #4
  5. mladyraven

    mladyraven Corporal

    Re: New thread as requested, Malware picked up smart scan,cleaned,then picked up full

    Well, Malware Fighter did another smart scan while the computer was idle and it showed up again.
    Not sure why it keeps showing up or what it is. VT has not gotten back to me yet with an answer.
     

    Attached Files:

    mladyraven, Aug 21, 2011
    #5
  6. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Re: New thread as requested, Malware picked up smart scan,cleaned,then picked up full

    It is showing up because it is a normal registry setting and it is false detection by IObit. Ignore it and wait for IObit to fix it. Also complain to them. ;)
     
    chaslang, Aug 21, 2011
    #6
  7. mladyraven

    mladyraven Corporal

    Re: New thread as requested, Malware picked up smart scan,cleaned,then picked up full

    It showed up again, so, it is a normal setting.
    :-D I did just complain to them!
     
    mladyraven, Aug 21, 2011
    #7
  8. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Re: New thread as requested, Malware picked up smart scan,cleaned,then picked up full

    Good. You will not be the first nor the last to complain to them. Perhaps they will even fix it soon.
     
    chaslang, Aug 21, 2011
    #8
  9. mladyraven

    mladyraven Corporal

    Re: New thread as requested, Malware picked up smart scan,cleaned,then picked up full

    That would be nice- if they would fix it soon. :)

    I only get the message several times a day when smart scan runs when my computer has been idle too long! <sigh>

    Sorry one more questions, I am attaching an SAS log. I received this message before I reformatted. I have run SAS since then. I downloaded Google Chrome today and now I have the message again. I have researched the issue and I cannot tell if this is a malware problem or a false positive.
    If I need to do a full Malware Read and Run I will, however, being I just did several last week and this item showed up after I loaded Chrome I am wondering if they are connected.
    Thanks...:-o
     

    Attached Files:

    • SAS.log
      File size:
      12.5 KB
      Views:
      4
    mladyraven, Aug 22, 2011
    #9
  10. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Re: New thread as requested, Malware picked up smart scan,cleaned,then picked up full

    Nothing to worry about in that log. The Security Center items are not problems at all and neither are cookies ( which is why our intructions tell you to disable looking for cookies ). And the Adware.CouponBar is also really not an issue of concern. You probably installed or had installed one of those online coupon printing programs. This is not really what you would call a false detection since it really had been considered adware, but adware is the least of your worries these days and many free programs are adware driven.
     
    chaslang, Aug 22, 2011
    #10
  11. mladyraven

    mladyraven Corporal

    Re: New thread as requested, Malware picked up smart scan,cleaned,then picked up full

    I was not worried about the coupon bar this is what I was concerned about:

    Disabled.SecurityCenterOption
    HKLM\SOFTWARE\MICROSOFT\SECURITY CENTER#ANTIVIRUSDISABLENOTIFY
    HKLM\SOFTWARE\MICROSOFT\SECURITY CENTER#FIREWALLDISABLENOTIFY

    I researched online and several articles said this is malware that is disabling the MS Security Center. That is why I was concerned. If it's not a problem I will just delete if from SAS quarantine. Thanks again.
     
    mladyraven, Aug 22, 2011
    #11
  12. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Re: New thread as requested, Malware picked up smart scan,cleaned,then picked up full

    As I stated. They are not problem. They are settings you have changed to how security center is being used to notify about your Antivirus and FIrewall. These are not infections. They are notifications of settings that are no longer set to the Windows defaults. There are hundreds if not thousands of things that people do not leave set to Windows defaults. That does not make them an infection. For example, suppose you had on purpose locked your Desktop setting so that they could not be changed. Or suppose you on purpose made a system change to stop a user from running Task Manager or RegEdit. You would get warnings from most scanners about this and many would just automatically set the your system back to defaults changing what you had configured.

    Malware can make changes to these settings too and scanners cannot tell the difference between malware making changes and you making changes. Thus they just declare them to be non-standard and attempt to set them back to Windows defaults.


    In your previous malware forum thread, you can see in your ComboFix log that you had the below settings:
    This indicated that you did not want Windows Security center to monitor your antivirus and firewall. Sometimes, your security software even will make changes like this itself because it wants to be your security center. If you had SAS fix this, it may have just set it back to the normal Windows default. Either way it was not really a "malware" problem. It is a setting that you may or may not have set.

    You already ran more than enough scans in your previous thread. You are clean. You need to stop being paranoid. ;)
     
    Last edited: Aug 23, 2011
    chaslang, Aug 23, 2011
    #12
  13. mladyraven

    mladyraven Corporal

    Re: New thread as requested, Malware picked up smart scan,cleaned,then picked up full

    Sorry, I am paranoid. I try to practice safe computing, I realize I need to take a computer class even if I am 60 ish.. I got my first computer a few years ago and have been teaching myself and using the site to learn.
    I have had several viruses and had to reformat three times in 3 years, so, I am being extra careful. I watch TV shows on the computer. ( NO TV ! ) - I know it is not really safe. I do not download bit torrents and I use site adviser to check the site before I watch. Megavideo, etc...
    I promise to stop being paranoid! We are still trying to get Iobit to fix that false positive ;) Thanks for your patience. The low income classes are full but I will keep trying.
     
    mladyraven, Aug 23, 2011
    #13
  14. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Re: New thread as requested, Malware picked up smart scan,cleaned,then picked up full

    You're welcome. Keep surfing safely. ;)
     
    chaslang, Aug 23, 2011
    #14

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds