Last coupla days, since the update to Malwarebyte's 1.39 (for Vista HP x64), it's been finding this "threat" HKEY_LOCAL_MACHINESOFTWAREMicrosoftActive SetupInstalled Components{y479c6d0-otrw-u5gh-s1ee-e0ac10b4e555} (Generic.Bot.H) Does anyone recognize this? Is it a false positive, or something I should allow it to "repair"?
View 7 RepliesI navigated to:
C:UsersJayAppDataLocalMicrosoftWindows MailLocal FoldersInbox
and found over 1,000 files with .eml extension. The names where unrecognizable.
The size of all these files is over 100 gb
What are these email files and why are there so many and can I safely remove them?
Also in the Outbox I have over 100 gb of .nws files.
Just when you might have thought it was safe to start using USB flash drives at work again, the third, and by all accounts, most fiendish version of the Conficker worm that's infected millions of PCs already is set to attack on April 1st, Ars Technica reports. Conficker.C's designed to hide itself even more thoroughly than its older siblings Conficker.A and Conficker.B, using tricks such as:
•Inserting itself into as many as five Windows-related folders such as System, Movie Maker, Internet Explorer, and others (under a random name, of course)
•Creating access control entries and locking the file(s)
•Registers dummy services using a "one (name) from column A, one from column B, and two from column C" method
To find out what happens when Conficker.C strikes, join us after the jump.
Conficker.C's payload makes it harder than ever to recover from being infected:
•Deactivates Windows Security Center notifications
•Prevents restart in Safe Mode
•Prevents Windows Defender from running at system startup
•Deletes all system restore points
•Disables various error-reporting and security services
•Terminates over twenty security-related processes
•Blocks DNS queries
•Blocks access to security and antivirus websites
•And, to top it all off, Conficker.C can choose from a list of 500 domains to contact out of a pool of 50,000 (way up from Conficker.B's 32 out of 250).
Link:This is No Joke: Conficker.C to Strike on April Fools' Day | Maximum PC
Removal Tool: How to use the Downadup removal tools - BDTools.net
+++++++++++++++++++++
I can't say much else, as I don't know much else, though I read about this on another Forum I belong to. I have all my Updates in place as always, ran MS Malware Removal Tool, Ran complete system Scan, my PC turned up clean of
Conflicker A and B as well as C, but then C has not been released as yet.
+++++++++++++++++++++
I do know MS has a bounty out on the individual responsible, $250,000 BUCKS!!
That should give you guys an Idea of how SERIOUS this THREAT is!!
I am not sure about the removal tool either, but that's the only one I found.
Thus far.
I just did a quick scan on my PC with Malwarebytes. Everything turned out clean except for a registry data ( refer to attachment )
Should it be removed or ignored? I see regedit.exe in the mix and i got confused on what to do.
In XP i can select a folder - key inthe file name approx and bang it finds it. vista has to have that slow thing along the top. the green slime of death slowly creeps along the top of the screen while Vista finds the file - maybe.
View 7 Replies View RelatedWe were so very very happy and pleased that Malwarebytes free version helped clean out the InternetSecurity2010 virus/trojan infection, thereby resurrecting this Toshiba Satellite (WinXPMediaEdition2002,Sp3).
That.... we purchased a key code enabling Malwarebytes to run all the time
We did this despite some warnings by one or two posters on this site... '
well,
we have found out that Malwarebytes ... first...blocked access to one of our email IP host sites. After over an hour of searching, we found out how to add that site to the program's "ignore list' so that it stopped blocking that access.
Now we have discovered that Malwarebytes has disabled com port 3, which our internal modem was using to reach the internet.
SO, we have disabled Malwarebytes. We still appreciate the fine programmers at that company ... but the keycode fee to enable realtime operation of their program is, we regret to say, best donated to St. Vincent de Paul (or Goodwill or Starvation Army) instead.
Does anyone just happen to know how to fix this easily in Malwarebytes, (the Device manager is no help) or else we will defer buying all the additional licenses were were planning for our other computers....
iv been looking or a bootdisk that is up to date to remove virus's and malaware but i keep finding out that they are out of date and iv tried allot of them and they haven't removed anything or found anything when there is a virus and malaware on the computer here is a list of what i have tried Bit Defender Kaspersky F-protect Avira Ultimate Bootdisk 5
View 8 Replies View RelatedI am still unable to install X2 the Threat on my PC. When installing I accept the terms in the licence agreement, select destination folder. select default folder and hit Install. X2 does not install and the following message is displayed:
Quote: X2 The Threat - InstallShield Wizard
InstallShield Wizard Completed
The wizard was interrupted before X2 - The Threat could be completely installed.
Your system has not been modified. To complete installation at another time, please run setup again.
Click Finish to exit the wizard. Why is the InstallShield Wizard interrupted?