(Rootkit.Agent) -> Delete on reboot problem.

View previous topic View next topic Go down

(Rootkit.Agent) -> Delete on reboot problem.

Post by recovered on 6th January 2010, 8:57 pm

Hey guys, I've been surfing these forums for quite sometime now and love the great support the technicians give, however I finally ran into an issue myself and now I was forced to register and post my issue...

On my laptop (Windows XP Home) I've been receiving some slow Internet issues while using Mozilla. I've tried running several Spyware software to detect the issues, and everything was cleaned up except for one, which was detected by Malwarebyte, it displays the following below that it will delete upon reboot, however it never does, and can still be detected when scanned again. I tried doing the Combofix route which was suggested from most on this forum, but when I run Combofix, it shows a status bar attempting to load, and doesn't load anything, however I can load Spyware bot AND CMD, so I'm wondering what kind of virus/malware is this? Malwarebytes did detect a Mundo upon scanning, but was removed successfully, wondering if this is still apart of it? How can I fix my problem to be able to run Combofix successfully? Thanks

Malwarebytes' Anti-Malware 1.43
Database version: 3503
Windows 5.1.2600 Service Pack 2
Internet Explorer 8.0.6001.18702

1/6/2010 12:38:25 PM
mbam-log-2010-01-06 (12-38-25).txt

Scan type: Quick Scan
Objects scanned: 119533
Time elapsed: 9 minute(s), 29 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 1

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
C:\WINDOWS\system32\drivers\bexde.sys (Rootkit.Agent) -> Delete on reboot.

recovered
Beginner
Beginner

Posts Posts : 1
Joined Joined : 2010-01-06
OS OS : Windows XP
Points Points : 25293
# Likes # Likes : 0

View user profile

Back to top Go down

Re: (Rootkit.Agent) -> Delete on reboot problem.

Post by Belahzur on 6th January 2010, 9:59 pm

Hello.

  • Please download DDS by sUBs to your Desktop (Important!!) from one of these locations:
    [You must be registered and logged in to see this link.]
    [You must be registered and logged in to see this link.]
  • Double click DDS.scr to run.
  • When complete, two logs will open. Save both of the report to your Desktop.
  • Copy and paste BOTH LOGS back here, use more than one post if needed.


[You must be registered and logged in to see this link.] - [You must be registered and logged in to see this link.] - Please PM me if I fail to respond within 24hrs.


Belahzur
Administrator
Administrator

Posts Posts : 34918
Joined Joined : 2008-08-03
Gender Gender : Male
OS OS : 7 Home Premium x64
Points Points : 245101
# Likes # Likes : 1

View user profile

Back to top Go down

View previous topic View next topic Back to top

- Similar topics

 
Permissions in this forum:
You cannot reply to topics in this forum