Search : in
By :

Registry Keys Infected

Last answer on Nov 30, 2008 5:16:17 am GMT Disa, on Nov 4, 2008 8:41:19 am GMT 
 Report this message to moderators

Hello,

I have a problem with my labtop, window XP, i scanned it with Malwarebytes' Anti-Malware and it detects 1 infected object, but when i remove it, it will say the infected object has successfully been removed or deleted. then if i repeat the scan, i will find it again still not been removed. i updated Malwarebytes' Anti-Malware again before i can scan but nothing happen. please help, below is the scan log after scanning.

Malwarebytes' Anti-Malware 1.30
Database version: 1355
Windows 5.1.2600 Service Pack 2

02/11/2008 14:50:11
mbam-log-2008-11-02 (14-50-04).txt

Scan type: Quick Scan
Objects scanned: 69681
Time elapsed: 11 minute(s), 12 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 1
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{28abc5c0-4fcb-11cf-aax5-21cx1c642131} (Trojan.Agent) -> No action taken.

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)

I clicked remove infected object, but when i repeat the scan, the infected object is still not been removed.

Configuration: Windows XP
Firefox 3.0.3

Best answers for « Registry Keys Infected » in :
The main registry keys Show The main registry keys Intro Accessing the Registry Note Intro The Windows Registry is a database which stores settings and options for Microsoft OS It contains information and settings for hardware, operating system software,...
Registry Keys Infected: Show
Microsoft Windows - The registry Show What is the registry? In version 3.1 of Microsoft Windows, applications that had been installed were configured in Windows with configuration files (which had the extension .ini). There were also two configuration files for Windows itself:...
Completely remove a program ShowCompletely remove a program Upon uninstalling a program, it is possible that the registry keys or files are still present on the PC. If the Add/remove program feature is not enough then simply use the registry editor. Note that...
How to open Registry ShowHow to open Registry The registry is a directory path that stores option and settings for windows operating system. The registry allows you to access difficult file to track in the background. All changes that are made in the control panel are...
[Warcraft 3] Registry error loading key Warcraft IIIInstallPath Show[Warcraft 3] Registry error loading key Warcraft III\InstallPath While updating Warcraft 3, the following message appears and the update fails: Registry error loading key Warcraft III\InstallPath Here's how to fix it: Open the...
Download Registry Fix Pro Show
Download CoolZipBackup Show
Download File Access Helper ShowFile Access Helper is a security software to control your file access. It has been created by Godsw, Inc. It can block and refuse access to files and registry keys on your computer. You cannot launch, copy, open, modify, remove or search documents...
Session keys ShowAdvantages of a session key Asymmetric algorithms (which come into play in public-key cryptosystems) make it possible to eliminate problems related to key sharing via a secure channel. However, they remain much less effective (in terms of...
Keys to a successful change management policy ShowKeys to success Trust is a key element for the success of a project. If employees see the project as a threat, they will put more effort into into maintaining their control or they may also become less active instead failing to work towards the...
Ask your question Reply

1

crazy_devil, on Nov 4, 2008 9:11:55 am GMT

Use Spyware doctor or trojan hunter this might solve the problem...because sometimes anti-virus can't do anything against these types of viruses

   
Reply to crazy_devil

2

 Stanimir Todorov, on Nov 30, 2008 5:16:17 am GMT

I had got the same problem, but i solve it.
First:
I use HIJACK and in its log file i found next text:
O4 - HKCU\..\Run: [Windows Service help] C:\RECYCLER\S-1-5-21-1105904803-3096713726-146242782-7211\wi­nservices.exe

Then i delete this with HIJACK.
After this i start Malvare. It give me again:
Registry Keys Infected:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{28abc5c0-4fcb-11cf-aax5-21cx1c642131} (Trojan.Agent) -> Quarantined and deleted successfully.
The next scan with Malvare was clean.

   
Reply to Stanimir Todorov
Ask your question Reply
They need your help