Koolynoody downloader help
- Thread starter pakileka
- Start date
- Status
Bobbye
Posts: 16,313 +36
Please read and begin with the suggested programs and logs:
Viruses/Spyware/Malware, preliminary removal instructions:
https://www.techspot.com/community/...lware-removal-preliminary-instructions.58138/
You will have multiple entries that have to be found and removed.
There is one thing you can do now though. Kooly like to put itself in the Trusted zone, making it impossible to restrict it:
Open IE> Tools> Internet options> Security tab> Trusted zone> Sites> if Koolynoody is here, highlight and remove, but make note of the entry. Then go to the Restricted Zone> Sites> type in the Koolynoody entry> Add.
This does not take the place of the cleaning, so follow through with that.
Viruses/Spyware/Malware, preliminary removal instructions:
https://www.techspot.com/community/...lware-removal-preliminary-instructions.58138/
You will have multiple entries that have to be found and removed.
There is one thing you can do now though. Kooly like to put itself in the Trusted zone, making it impossible to restrict it:
Open IE> Tools> Internet options> Security tab> Trusted zone> Sites> if Koolynoody is here, highlight and remove, but make note of the entry. Then go to the Restricted Zone> Sites> type in the Koolynoody entry> Add.
This does not take the place of the cleaning, so follow through with that.
here is my mbam log
Malwarebytes' Anti-Malware 1.20
Database version: 961
Windows 5.1.2600 Service Pack 2
03:06:13 PM 7/17/2008
mbam-log-7-17-2008 (15-06-13).txt
Scan type: Full Scan (C:\|D:\|)
Objects scanned: 170686
Time elapsed: 1 hour(s), 35 minute(s), 17 second(s)
Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 1
Memory Processes Infected:
(No malicious items detected)
Memory Modules Infected:
(No malicious items detected)
Registry Keys Infected:
(No malicious items detected)
Registry Values Infected:
(No malicious items detected)
Registry Data Items Infected:
(No malicious items detected)
Folders Infected:
(No malicious items detected)
Files Infected:
C:\WINDOWS\Downloaded Program Files\unagiuninst.exe (Trojan.Agent) -> Quarantined and deleted successfully.
Malwarebytes' Anti-Malware 1.20
Database version: 961
Windows 5.1.2600 Service Pack 2
03:06:13 PM 7/17/2008
mbam-log-7-17-2008 (15-06-13).txt
Scan type: Full Scan (C:\|D:\|)
Objects scanned: 170686
Time elapsed: 1 hour(s), 35 minute(s), 17 second(s)
Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 1
Memory Processes Infected:
(No malicious items detected)
Memory Modules Infected:
(No malicious items detected)
Registry Keys Infected:
(No malicious items detected)
Registry Values Infected:
(No malicious items detected)
Registry Data Items Infected:
(No malicious items detected)
Folders Infected:
(No malicious items detected)
Files Infected:
C:\WINDOWS\Downloaded Program Files\unagiuninst.exe (Trojan.Agent) -> Quarantined and deleted successfully.
Blind Dragon
Posts: 3,774 +4
attach c:\combofix.txt and hijackthis log
Bobbye
Posts: 16,313 +36
Question: I see HIPS Firewall Helper (UmxFwHlp) - CA - C:\Program Files\CA\SharedComponents\HIPSEngine\UmxFwHlp.exe
There are some other processes for HIPS> Host(-based) Intrusion Prevention System.. You have the Computer Associates Internet Suite. Is this an additional installation? If so, you may be doubling up on firewall.
- Status
Similar threads
Latest posts
-
Nintendo DMCA lawyers shut down everything Mario on Garry's Mod- Uncle Al replied
-
BlizzGone: Blizzard cancels 2024 convention but promises an eventual return- GodisanAtheist replied
