Yikes! Malware detected...

Discussion in 'Malware Help (A Specialist Will Reply)' started by kwmnitram, Dec 20, 2008.

  1. kwmnitram

    kwmnitram Private E-2

    Yesterday I somehow managed to download the malware from hell. I came here and followed malware removal for vista, ran all my tests, etc. Everything seemed fine afterwards but now my Avira AntiVir keeps warning me about some lssa.exe bug. I moved it to quarantine.

    Below is my log. If needed, I can provide all my logs for all the malware tools I was instructed to used in the malware removal thread. Any help/assistance would be greatly appreciated!

    SUPERAntiSpyware Scan Log
    http://www.superantispyware.com

    Generated 12/20/2008 at 06:07 PM

    Application Version : 4.23.1006

    Core Rules Database Version : 3661
    Trace Rules Database Version: 1641

    Scan type : Quick Scan
    Total Scan Time : 00:45:28

    Memory items scanned : 704
    Memory threats detected : 0
    Registry items scanned : 540
    Registry threats detected : 3
    File items scanned : 21391
    File threats detected : 0

    Unclassified.Unknown Origin
    HKCR\CLSID\{C5BF49A2-94F3-42BD-F434-3604812C897D}
    HKCR\CLSID\{C5BF49A2-94F3-42BD-F434-3604812C897D}\InProcServer32
    HKCR\CLSID\{C5BF49A2-94F3-42BD-F434-3604812C897D}\InProcServer32#ThreadingModel
     
    kwmnitram, Dec 20, 2008
    #1
  2. kwmnitram

    kwmnitram Private E-2

    Okay thought I'd attach my logs from my scans I did earlier today. Thanks!
     

    Attached Files:

    kwmnitram, Dec 20, 2008
    #2
  3. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Welcome to Major Geeks!

    You are way out of date with your updates for SUPERAntiSpyware. And in fact you actually need the new just release version so read and follow the below instructions

    Important Notice: A new version of SUPERAntiSpyware is out that should help with this problem from Vundo.
    • Please uninstall your current version (this is necessary).
    • Then download this SUPERAntiSpyware
    • Install this new version. It may tell you that you need to reboot to complete the installation. You must reboot at this time.
    • After the reboot, run SUPERAntiSpyware and immediately click the Check for Updates button to get more updates for the database.
    • Now run a new full scan of your system. And attach this first log later.
    • Since this infection has been reappearing after a reboot, you will have to reboot again and then run an additional scan to make sure it comes back clean. Attach this second log too.
    Then you need to go thru proper full cleaning procedures to make sure you are clean. So please follow the instructions in the below link and attach the requested logs when you finish these instructions.


    READ & RUN ME FIRST. Malware Removal Guide
    • If something does not run, write down the info to explain to us later but keep on going.
    • Do not assume that because one step does not work that they all will not.
    Notes:

    1. If you run into problems trying to run the READ & RUN ME or any of the scans in normal boot mode. You can run steps in safe boot mode but make sure you tell us what you did later when you post logs. See the below if you do not know how to boot in safe mode:
    2. If you have problems downloading on the problem PC, download the tools on another PC and burn to a CD. Then copy them to the problem PC. You will have to skip getting updates if (and only if) your internet connection does not work. Yes you could use a flash drive too but flash drives are writeable and infections can spread to them.
     
    chaslang, Dec 23, 2008
    #3

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds