Search:

Type: Posts; User: Nnewb; Keyword(s):

Page 1 of 2 1 2

Search: Search took 0.01 seconds.

  1. Need User Feedback: win32.runouce.sal on setup.exe file whilst trying to install Simpsons Hit & Run game

    Hi,

    So I went back to try and install an old game of mine because I never finished it and was met with: 13075

    Attached is the affected file.

    Virustotal:...
  2. Replies
    25
    Views
    36,052

    Okay, so it does no other activity besides modify...

    Okay, so it does no other activity besides modify some registers that are to do with the game and nothing else? ...which would mean all those scanners that picked this up as a trojan(including the...
  3. Replies
    25
    Views
    36,052

    *phew* THANKYOU! :):cool: The actual directory...

    *phew* THANKYOU! :):cool:

    The actual directory should be something like this:


    Trainer for Oil Rush.rar
    -\Trainer for Oil Rush
  4. Thread: bot-check

    by Nnewb
    Replies
    21
    Views
    25,477

    I did and this is what they said: And I...

    I did and this is what they said:



    And I replied with:



    And haven't heard back from them since....
  5. Replies
    25
    Views
    36,052

    What really?! :scratch: :slap::buried:I knew...

    What really?! :scratch: :slap::buried:I knew it!!! :laugh::laugh::laugh::rotfl::rotfl:

    *sigh* ...ok here's the file in question that's passworded:...
  6. Thread: bot-check

    by Nnewb
    Replies
    21
    Views
    25,477

    Yay finished!

    Ok so it looks like it finished.....checking the logs and it tells me it started on the 16th of Feb, not 31st of Jan as I thought.....wooops, well even 16th in Feb of the past till today, that's...
  7. Thread: bot-check

    by Nnewb
    Replies
    21
    Views
    25,477

    Ok thanks, will post the results of it after...

    Ok thanks, will post the results of it after they've resolved it.
  8. Replies
    25
    Views
    36,052

    This is what virustotal says:...

    This is what virustotal says: https://www.virustotal.com/en/file/46031b1e168ce7a38cf491065f7b751cf65029aab672c9d992273703cb56321c/analysis/ and this is what jotti says:...
  9. Thread: bot-check

    by Nnewb
    Replies
    21
    Views
    25,477

    Well it may appear to look like it's hanged on...

    Well it may appear to look like it's hanged on the scan, but after a while the digit goes up....



    Well here's what it says now: "Running bot-check (863055/858326: Please wait scanning download...
  10. Replies
    25
    Views
    36,052

    ...nothing? .......or have you forgot again....?

    ...nothing? .......or have you forgot again....?
  11. Thread: bot-check

    by Nnewb
    Replies
    21
    Views
    25,477

    Well, let me surprise you; it has been going on...

    Well, let me surprise you; it has been going on since Feb.... --actually 31st of Jan or somewhere around there when I got my PSU replacement.

    Anyways, is this not to be expected if you have large...
  12. Thread: bot-check

    by Nnewb
    Replies
    21
    Views
    25,477

    Ah yes, mine says something similar...been...

    Ah yes, mine says something similar...been scanning for the pass month and a half actually(and it's still going...)....and when I saw the counter go over the total, I thought doesn't look right........
  13. Thread: bot-check

    by Nnewb
    Replies
    21
    Views
    25,477

    Ok, so what happens if xxxxx is greater than...

    Ok, so what happens if xxxxx is greater than yyyyy...? Does it mean overscanning or it failed to scan correctly? But still resumes without giving any errors?:confused:
  14. Replies
    25
    Views
    36,052

    Okay....what about analysis on the trainer file?...

    Okay....what about analysis on the trainer file? Anything suspicious at all or know why it disappears after a certain period of time...?
  15. Replies
    25
    Views
    36,052

    Status update please. :thanks:

    I had upload a zip file to detections @ spybot.info called Trainer for Oil Rush.zip, in it should look like this: 12650 The two rar files contains the trainer, the extracted one with the brackets...
  16. So I don't waste more of your time on me that...

    So I don't waste more of your time on me that could have been better spent on helping more important matters like other people who need more help than me because they're seriously infected or...
  17. Oh the Delfix deleted itself Is that suppose to...

    Oh the Delfix deleted itself Is that suppose to happen?

    I'm guessing you don't know what GDI Objects are either or and have no experiences/knowledge about them?

    Also:




    So have you asked...
  18. Ooops, I just remembered I forgot to attach the...

    Ooops, I just remembered I forgot to attach the fixlog.txt, well here it is: 12673



    You're a she?! Sorry, I always presume any person I talk to on the internet is a guy until said 'guy' comes...
  19. It works!, I had to go into Device Manager and...

    It works!, I had to go into Device Manager and update the driver for each one that had a problem thanks to said policy. Restarted and laptop seems to be functioning like it should.

    Sorry for the...
  20. Wait, I think I just found the solution...

    Wait, I think I just found the solution! We shall see after a restart....
  21. So yeah, right now I actually do need someone who...

    So yeah, right now I actually do need someone who knows their way around Group Policy settings(and not just for preventing virus/malware) and know a way to fix what I borked(that spelling is...
  22. I'll just leave my laptop on until you get back...

    I'll just leave my laptop on until you get back to me.....
  23. Oh and I can't use system restore to restore it...

    Oh and I can't use system restore to restore it back before I applied your FRST64 fix because there was none to be found!! - Which is obvious because I disabled System Restore of course to save...
  24. My god, what did you do to my laptop(or maybe it...

    My god, what did you do to my laptop(or maybe it was me that stupidly removed the entry of "C:\windows"(or rather it was registry string but was still pointing to C:\windows) that was set to...
  25. All good, as long as you reply back. ...

    All good, as long as you reply back.


    Oh.....:sad:



    Oh ok, then explain to me why some of these processes are attempting to access those blocked addresses...? Ok just checked CurrPorts and...
  26. Replies
    25
    Views
    36,052

    ....soooooo anything or nothing....? Or too busy...

    ....soooooo anything or nothing....? Or too busy with more important matters to deal with than my trivial matter...?
  27. Hmmm, I have a question unrelated to this thread...

    Hmmm, I have a question unrelated to this thread post and thought you might be able to answer this for me, so when you reach the 10k limit for GDI Objects, the UI of whatever progam becomes screwed...
  28. And here's the last photo:12660 As you can...

    And here's the last photo:12660

    As you can see, the GDI Objects of that scanner was reaching 10k!! And Guess what, it's not supposed to, and according to this: ...
  29. Yes, that's the one, it looks like 12655 It...

    Yes, that's the one, it looks like 12655 It doesn't seem to come back on Admin account, but on the limited account it keeps popping even after trying a few times, I thought Group Policy might be to...
  30. Oh ok, according to Sharewatch...

    Oh ok, according to Sharewatch(Another program that was referred to by from one of those Bleeping computers thread post you referred me to), I have no users connected to my laptop so i guess I don't...
  31. However since the address is looped back to the...

    However since the address is looped back to the host computer, that would presume Spybot(with its immunization) or Spyware Blaster has saved me for the time being....
  32. Ok, so I've contacte ESET about our problem and...

    Ok, so I've contacte ESET about our problem and now awaiting their reply.

    Hm, I think I might have DNS poisoning, by the looks of this HTML report from Currports: (And of course your uploader...
  33. Ok, rebooted, and got into normal mode, got KIS...

    Ok, rebooted, and got into normal mode, got KIS 2016 to scan, then Malwarebytes Anti-Malware, then SUPERAntiSpyware, then Spybot Search and Destroy. They all came clean, here's my log from...
  34. Oh that's interesting, I see Tweak has purge the...

    Oh that's interesting, I see Tweak has purge the hosts file so all those IPs that were set by Spybot and Spyware Blaster are gone. Guess I'll need to re-immunize the system.

    Also, I'm not even...
  35. Tweak logs: ...

    Tweak logs:

    ┌────────────────────────────────────────────────────────────────────────────────┐
    │ Tweaking.com - Windows Repair v3.9.9 - Pre-Scan
    │ Computer: RAIKOU (Windows 7 Professional...
  36. Rkill log: Rkill 2.8.4 by Lawrence Abrams...

    Rkill log:


    Rkill 2.8.4 by Lawrence Abrams (Grinler)
    http://www.bleepingcomputer.com/
    Copyright 2008-2016 BleepingComputer.com
    More Information about Rkill can be found at this link:
    ...
  37. Hm I guess you don't know enough to tell me which...

    Hm I guess you don't know enough to tell me which of those processes from Currports look suspicious...

    I also tried running KIS 2016 last night to do a full scan but it appears it's now morning...
  38. Ok well I've stopped the ESET scan and then ran...

    Ok well I've stopped the ESET scan and then ran the Emsisoft kit. Found nothing, I even did a custom scan hoping it would scan all drives and apparently nothing....strange, either ESET items were...
  39. Replies
    25
    Views
    36,052

    The screenshot was taken *after* I fixed the...

    The screenshot was taken *after* I fixed the problem. I just wanted to make sure if I was still infected or not and hence I started this thread.

    I had upload a zip file to detections @ spybot.info...
  40. Oh well someone replied when I bumped my post. ...

    Oh well someone replied when I bumped my post.


    Right.


    Ok, well you saw the screenshot, which one of those processes you think is suspicious, since you're the pro here? I would take a guess...
  41. Here you go, another angle at why is the ESET...

    Here you go, another angle at why is the ESET Online scanner UI invisible?!?!?12649
  42. Just used Currports to check what possible hidden...

    Just used Currports to check what possible hidden processes that might be running and connected to the net: 1264712648

    So if there were to be any remote connections, whether hidden or not, it...
  43. Replies
    25
    Views
    36,052

    Analysis update?

    Hi, I would like to request an update on my analysis of suspected virus/malware file I have submitted sometime ago. What have you found out about it? What does it *really* do? Is it really a false...
  44. Oh ok, I can just add a reply to my original...

    Oh ok, I can just add a reply to my original thread in question over there asking what the progress is so I don't have to start another thread.


    The first one didn't come with any sign of...
  45. Alright, screw it, error 413 again, I'll just zip...

    Alright, screw it, error 413 again, I'll just zip up the remaining txt files for you so you can go download them all in one go to read, here's the link:...
  46. Sorry, I've been busy and haven't gotten around...

    Sorry, I've been busy and haven't gotten around to do this yet, well I have now.

    No no, Kaspersky didnt make this, I did, before this - Group Policy wasn't even enabled. Just wanted to see what...
  47. Oh alright, I'll go chase after them then. ...

    Oh alright, I'll go chase after them then.


    Yes, they didn't work for me as well, said it was an invalid attachment, I'll upload it again here: 12638 Oh hang I see what's going on, I had this...
  48. Ah ok. Well perhaps make a note on it...

    Ah ok.


    Well perhaps make a note on it stating on later release, you may not see the All Users checkbox, in which case you can ignore it...?

    So I've been following along and reading these...
  49. http://users.telenet.be/bluepatchy/miekiemoes/Link...

    http://users.telenet.be/bluepatchy/miekiemoes/Links.html#Online%20Scanners

    ^ Needs to be updated, ESET isn't on there as an online scanner Or maybe it doesn't do full system scans and is just a...
  50. Virustotal...

    Virustotal says it found a trojan? I'm guessing these are false positives? Well I've let those three companies know and hopefully add it to their whitelist if they deem it trojan free.

    I can't...
Results 1 to 50 of 65
Page 1 of 2 1 2