Malware consistently changing, cannot be detected

Discussion in 'Malware Help (A Specialist Will Reply)' started by kmh1892, Jul 8, 2012.

  1. kmh1892

    kmh1892 Private E-2

    Hey everyone,

    I've had previous trouble with this exact malware which manifested itself in form of drvinst.exe in my Sys32 folder. (I posted something like this a while ago)

    It doesn't appear to be much of the problem again, but it's probably the source of others.

    But, my system is still in havoc right now. I have no idea what to do. WerFault.exe continuously wants permission to Comodo Firewall, and it somehow infected my Logitech Gamepad files which also try and do the same thing. Along with a few other issues. Luckily, Comodo is on top of it all.

    Malwarebyes, Avira, Rouge, Spybot S&D, all of them come up with no detections. None. Not even warnings. I ran them in their own environments, with no other running/installed at the time.

    Here's a screenshot from what Comodo is blocking. I have no idea what this all means, and I don't know how to fix it.

    I am also still having issues with dinotify.exe. It pops up every time I start my computer that it can't find it's path, or the like.

    (Links to me previous thread to give you an idea of the issues i'm having still)
    http://forums.majorgeeks.com/showthread.php?p=1746066#post1746066

    I'll also post the Comodo Defense Logs so you have a better idea of what else is going on.

    Thank you
     

    Attached Files:

    kmh1892, Jul 8, 2012
    #1
  2. kmh1892

    kmh1892 Private E-2

    Sorry for the double post, editing time expired and needed to post the Comodo defense logs.

    Perhaps it'll give you more insight as to what is happening.
     

    Attached Files:

    kmh1892, Jul 8, 2012
    #2
  3. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    I'm sorry but you are supposed to attach ALL of the logs we requested. This includes RogueKiller, Hitman Pro and Malwarebytes. And in addtion you need to attach a complet MGlogs.zip. Your is totally useless because it is basically almost empty. Possibly because you either did not allow it to finish or you did not shutdown Comodo so that it would run properly to complete. However none of the items you mentioned are problems.

    The below are all Windows system files and that is why they are in the system32 folder.
    newdev.dll
    drvinst.exe
    dinotify.exe

    You are not getting detections from anything else because like CCleaner64 seen in your logs too, the above are not problems.
     
    chaslang, Jul 10, 2012
    #3

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds