KernelFaultCheck

moparman · May 5, 2011

Okay first hi everyone,
I would just like to say that i am not positive that this is malware, but its something that i don't feel comfortable seeing in the start up.
It started when i was playin battlefield bc2 and it froze and said "nv4_disp for the display device \Device\Video0 got stuck in an infinite loop" so i checked for updates and did so.

Well after installing them and restarted it i went to ccleaner and was gonna delete the nvidia update checker.rolleyes "i no no need to hear it"
and that's when i saw "Yes HKLM:Run KernelFaultCheck %systemroot%\system32\dumprep 0 -k"

Now i no what all those folders are and do, and i have never seen or heard of dumprep showin on the system start up? And not to mention that i do get the occasional bsod...

Kestrel13! · May 5, 2011

Usually happens when your machine has had a BSOD. If you DO wish to check further for any possible malware then you would need to follow the below.

READ & RUN ME FIRST. Malware Removal Guide

moparman · May 5, 2011

Okay this is gonna sound like im being an *** but, I am a very picky person when it comes to my pc. So of course if clean the registry and keep my shiz up to date. Granted i didn't read all of it "very little patience and hate reading" but i searched bsod on the page and nothin...

i don't no what you want me to see their but maybe a in depth explanation?

Kestrel13! · May 5, 2011

Basically you posted in the malware forum. I told you that HKLM:Run KernelFaultCheck %systemroot%\system32\dumprep 0 -k" is usually seen when you are having BSOD's, which you even said you are. So unless you are having any actual malware problems I would not worry about following the procedures in the link I gave you. If you ARE having malware problems, then regardless of your patience levels and whether you can be bothered to read the info or not, it IS something you would have to work through.

moparman · May 5, 2011

well i dont know if i do or dont, and the last virus that i no of was the one where my brother had many tabs opened. and didn't notice that 1 of them was that scanner, and it finished and i than wanted to slap him but. Oh GOD MY EYES ARE BURNING! what ever you do dont update to firefox 4.0 uke

Kestrel13! · May 5, 2011

well i dont know if i do or dont
Click to expand...

Well let me know soon! We are very busy at the moment.

what ever you do dont update to firefox 4.0 uke
Click to expand...

Yes I have experienced it and do not like it personally.

moparman · May 9, 2011

Well not to shoot you down but it feels awesome to be right!:celebrate
But being that i was not satisfied with your answer i took matters into my own hands. And opened up spybot search and destroy and went to the startup tab.
Read all the info on it......in till i scrolled down! it send Added by the LEGMIR-BN TROJAN! Which makes a exe called ptool32 in the registry, well i started regedit poped that puppy in their and sure enough theirs 2 of um in there...

Know you might be thinking why is he so happy about finding a virus? well simply because ive gotten and seen so many people like you "high posts" not really give a serious response. No offense

Kestrel13! · May 10, 2011

Well first of all I never cease to be amazed by how many ungrateful people there are out there. Granted, most people here who come seeking my help are very appreciative and thankful for what I do (on a daily basis in MY OWN FREE TIME) Yes, I have a high post count, but that is something I have to say I am rather proud of, each of those posts are part of threads in malware removal, and here at Majorgeeks we take the utmost pride in working a thread to completion. We do not give up like most forums, we persevere. Each of those finished threads = a fixed computer (fixed for free, not taken into PC world and charged through the nose for)

So for you to say I did not give a serious response is absolutely ridiculous and small minded. I gave you advice to follow if you wanted, but you chose not to, obviously it was too much information for you to absorb. What Spybot found I would have found had you heeded my advice...but you chose not to.

Because you are so clever at removing malware all on your own, independently armed with Spybot search and destroy, I hope you never need my assistance in the future, because people with attitudes like yours... I have every right to refuse to help.

Thread closed. Too busy to indulge in forum drama and pettiness.

If you ARE having malware problems, then regardless of your patience levels and whether you can be bothered to read the info or not, it IS something you would have to work through.
Click to expand...

chaslang · May 10, 2011

moparman said: ↑

Well not to shoot you down but it feels awesome to be right!:celebrate
Click to expand...

WRONG!!!!! What you found is not what you posted in your first message. You stated you had a kernal fault check and the process which is dumprep which is the normal process one would see when a Windows crash has occurred ( as Kestrel13! stated). A LEGMIR-BN trojan would have had the below registry entry which is not what you posted:

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run
KernelFaultCheck
<System>\ptool32.exe

Either way if you would have followed the instructions that Kestrel13! took the time to give you, we could have told you whether you really had any malware problems and we could have fixed them. Please do not bother posting here again unless you are going to follow instructions properly and you lose the attitude.

Log in or Sign up

KernelFaultCheck

moparman Private E-2

Kestrel13! Super Malware Fighter - Major Dilemma Staff Member

moparman Private E-2

Kestrel13! Super Malware Fighter - Major Dilemma Staff Member

moparman Private E-2

Kestrel13! Super Malware Fighter - Major Dilemma Staff Member

moparman Private E-2

Kestrel13! Super Malware Fighter - Major Dilemma Staff Member

chaslang MajorGeeks Admin - Master Malware Expert Staff Member