mmdmm.exe ==>slow pc ,internet disconects suddenly ,lot of bytes send out of my pc

[howard_hopkinso]

Uninstall AVG Antispyware as it may be interferring with the attempted fix.

Click start/run and type regedit into the run box and press the enter key. When the window appears maximise it. Click file/export and save a copy of your registry to wherever you want.

Click edit and choose find. Type mmsass into the dialogue box and click the find next button. Regedit will now search your registry for any entries that contain a reference to mmsass and display them in the righthand pane. Right click on any such mmsass entries and choose delete.

Now click edit again and choose find next. Again, delete any entries that reference mmsass.

Repeat the above, until no more mmsass entries are found.

Close regedit.

1. Please download The Avenger by Swandog46 from HERE. Save it to your Desktop and extract it.

2. Download the attached avengerscript.txt and save it to your desktop

Note: the above code was created specifically for this user. If you are not this user, do NOT follow these directions as they could damage the workings of your system.

3. Now, start The Avenger program by double clicking on its icon on your desktop.

Under "Script file to execute" choose "Load script from file".
Now click on the folder icon which will open a new window titled "open Script File"
navigate to the file you have just downloaded, click on it and press open
Now click on the Green Light to begin execution of the script
Answer "Yes" twice when prompted.

4. The Avenger will automatically do the following:

It will Restart your computer. ( In cases where the code to execute contains "Drivers to Unload", The Avenger will actually restart your system twice.)
On reboot, it will briefly open a black command window on your desktop, this is normal.
After the restart, it creates a log file that should open with the results of Avenger’s actions. This log file will be located at C:\avenger.txt
The Avenger will also have backed up all the files, etc., that you asked it to delete, and will have zipped them and moved the zip archives to C:\avenger\backup.zip.

5. Please attach the content of c:\avenger.txt into your reply, as well as a fresh HJT and Combofix log.

Regards Howard

This thread is for the use of badboys4l only. Please don`t post your own virus/spyware problems in this thread. Instead, open a new thread in our security and the web forum.

 

[badboys4l]

oky here r the logs

i run all the programs u posted
and here r the logs

 

[howard_hopkinso]

At last, [mmsass] mmdmm.exe is not longer present in your HJT log, which is now clean.

Just one more nasty to get rid of.

You might want to copy and paste these instructions into a notepad file. Then you can have the file open in safe mode, so you can follow the instructions easier.

Boot into safe mode, under your normal user name(NOT THE ADMINISTRATOR ACCOUNT). See how HERE.

In Windows Explorer, turn on "Show all files and folders, including hidden and system". See how HERE.

Open your task manager, by holding down the ctrl and alt keys and pressing the delete key.

Click on the processes tab and end process for(if there).

ne1.exe

Close task manager.

Locate and delete the following bold files and/or directories(if there).

C:\WINDOWS\system32\ne1.exe

Reboot into normal mode and rehide your protected OS files.

Post a fresh Combofix log and let me know if you`re still having problems.

Regards Howard

This thread is for the use of badboys4l only. Please don`t post your own virus/spyware problems in this thread. Instead, open a new thread in our security and the web forum.

 

[badboys4l]

i finished everything and there was no mmdmm.exe when i restart my pc but after some time it came again

 

[howard_hopkinso]

Damn, that`s not good. I thought we had this beat, but obviously it keeps respawning from somewhere. Trouble is, I don`t know where from.

I`m afraid, I`ve tried everything I can think of to get rid of this very nasty malware you have. Unfortunately, I don`t know what else top try.

The best advice I can give you, is to backup your important data and reformat.

Sorry I wasn`t able to solve this for you. .

Regards Howard

This thread is for the use of badboys4l only. Please don`t post your own virus/spyware problems in this thread. Instead, open a new thread in our security and the web forum.

 

[badboys4l]

no problem . i want to thank u for ur effort.
so how can i backup and reformat?

 

[Jase123]

Take a look at the following link http://www.microsoft.com/protect/yourself/data/storage.mspx it explains how to backup.

Formatting is very easy. Once you have backed up all your data, go into bios and set it to boot from cd. Then put your windows cd into the drive and follow the onscreen prompts.

This link should help you. http://support.microsoft.com/kb/313348

Regards Jase

 

[howard_hopkinso]

Backing up just means saving your important data to an external source such as dvd/cd/another hard drive etc.

In order to format and reinstall, do the following.

Diconnect from the net and don`t reconnect, until you have your firewall software installed.

1 Restart your computer and go to setup usually by pressing the F2 or delete key.

2 Once you get into setup look for the boot menu and make sure you set it to boot from cd first followed by your hard drive.

3 Put the Windows xp disk into your cd drive.

4 Now save your settings and exit setup.

5 While your computer is booting you will see a message that says "press any key to boot from cd" press any key.

6 When the welcome to setup screen appears press enter and then press F8 to accept the Microsoft licence agreement.

7 You will be prompted to repair an installation press the escape key.

8 Now select the partition that you want to reformat and press the D key to delete it you will be asked to confirm that you want to delete the partition.

9 Now press C to create a brand new partition you will be asked what size you want the partition to be in mega bytes. If you just press enter then the partition will be the maximum size that you can have. This is perfectly ok if you don`t want to create multiple partitions.

10 You will now be asked to format the partition select the ntfs file sytem and do a full format.

11 Once the format is complete setup will continue.

Your computer will restart during the remaining setup again you will be asked to press any key to boot from cd DO NOT PRESS ANYTHING and setup will continue. Once the setup is complete and you are back in Windows remove the Windows cd from your cd drive.

Install your firewall software and reconnect to the net. Install whatever drivers you need, then run Windows updates.

Finally, install whatever programmes/software you want.

Regards Howard

This thread is for the use of badboys4l only. Please don`t post your own virus/spyware problems in this thread. Instead, open a new thread in our security and the web forum.

 

[badboys4l]

can i compress my audio files cuz i got a lot of music and i really want to keep them

 

[Jase123]

Yes, you need to burn them all to disks.

Regards Jase

 

[badboys4l]

so how can i compress them most are mp3 files

 

[howard_hopkinso]

I wouldn`t advise compressing them as this could affect the quality.

Just burn them to dvd`s/cd`s/another hard drive if you have one.

Regards Howard

This thread is for the use of badboys4l only. Please don`t post your own virus/spyware problems in this thread. Instead, open a new thread in our security and the web forum.