Pls Help With Removal. Freddy46.exe Id09.exe Mstre19.exe Romeo15.exe Plus Goodness Knows What Else
n7gmo46c.exe) and allow the gmer.sys driver to load if asked.Note: If you downloaded the zipped version, extract the file to its own folder such as C:\gmer and then double-click on gmer.exe. Please try the request again. Thanks, H DDS (Ver_09-05-14.01) - NTFSx86 Run by micky at 11:15:05.10 on 20/06/2009 Internet Explorer: 7.0.5730.11 BrowserJavaVersion: 1.6.0_07 Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.502.49 [GMT 1:00] AV: McAfee VirusScan *On-access scanning enabled* Generated Thu, 26 Jan 2017 01:02:51 GMT by s_hp79 (squid/3.5.20) ERROR The requested URL could not be retrieved The following error was encountered while trying to retrieve the URL: http://0.0.0.6/ Connection have a peek here
Your cache administrator is webmaster. If you need this topic reopened, please contact a staff member with address of this thread. Generated Thu, 26 Jan 2017 01:02:51 GMT by s_hp79 (squid/3.5.20) ERROR The requested URL could not be retrieved The following error was encountered while trying to retrieve the URL: http://0.0.0.8/ Connection Your cache administrator is webmaster. http://www.bleepingcomputer.com/forums/t/235317/pls-help-with-removal-freddy46exe-id09exe-mstre19exe-romeo15exe-plus-goodness-knows-what-else/
- Help us fight Enigma Software's lawsuit! (more information in the link)Follow BleepingComputer on: Facebook | Twitter | Google+ Back to top #4 bluemonster bluemonster Topic Starter Members 3 posts OFFLINE
- Please don't send help request via PM, unless I am already helping you.
- The recent mcafee log also shows romeo15.exe has been trying to access the internet.
- Click here to Register a free account now!
Generated Thu, 26 Jan 2017 01:02:51 GMT by s_hp79 (squid/3.5.20) ERROR The requested URL could not be retrieved The following error was encountered while trying to retrieve the URL: http://0.0.0.7/ Connection mfesmfk;c:\windows\system32\drivers\mfesmfk.sys [2007-2-17 40552] S1 853b8fa9;853b8fa9;c:\windows\system32\drivers\853b8fa9.sys [2009-6-13 102334] S1 podmenadrv;podmenadrv;\??\c:\program files\podmena\podmena.sys --> c:\program files\podmena\podmena.sys [?] S2 podmena;podmena;c:\windows\system32\svchost.exe -k podmena [2004-8-11 14336] S3 mferkdk;McAfee Inc. Do not change any settings unless otherwise told to do so. I have run a Hijack This log and I noticed freddy46.exe which I clicked fix and it seems to have gone.
Please do not pm for help, post it in the forums instead. Regardless if prompted to restart the computer or not, please do so immediately. The reason for this is so we know what is going on with the machine at any time. http://thewikipost.org/topic/1vpbko0tXZ3CwyG5hN2hgeiYwJMh6xkQ/oh-goodness-please-help.html Use the forums!Don't let BleepingComputer be silenced.
Please try the request again. OTListIt.Txt a This is saved in the same location as OTL.Please copy (Edit->Select All, Edit->Copy) the contents of this file and post it with your next reply.Please post the new OTListIt.txt BleepingComputer is being sued by Enigma Software because of a negative post of SpyHunter. Use the forums!Don't let BleepingComputer be silenced.
The system returned: (22) Invalid argument The remote host or network may be down. The system returned: (22) Invalid argument The remote host or network may be down. Everyone else please begin a New Topic. Your cache administrator is webmaster.
I haven't seen this happen myself as I only work Saturday mornings. The scan wont take long.When the scan completes, it will open one notepad window. Make sure all other windows are closed and to let it run uninterrupted.When the window appears, underneath Output at the top change it to Minimal Output.Under the Standard Registry box change mfeavfk;c:\windows\system32\drivers\mfeavfk.sys [2007-2-17 79880] R3 mfebopk;McAfee Inc.
Failure to reboot normally (not into safe mode) will prevent MBAM from removing all the malware. If using other security programs that detect registry changes (ie Spybot's Teatimer), they may interfere or alert you after scanning with MBAM. mfebopk;c:\windows\system32\drivers\mfebopk.sys [2007-2-17 35272] R3 mfesmfk;McAfee Inc. If you use this mirror, please extract the zip file to your desktop.Disconnect from the Internet and close all running programs.Temporarily disable any real-time active protection so your security programs will
Your cache administrator is webmaster. The computer seems to be running okay, I haven't seen anything weird happen, it was apparently very slow on the internet during the week but it could have been the connection Please try the request again.
mferkdk;c:\windows\system32\drivers\mferkdk.sys [2007-2-17 34216] =============== Created Last 30 ================ 2009-06-20 10:11
--d----- c:\program files\Trend Micro 2009-06-17 07:38 2 ----h--- c:\windows\zaponce52621.dat 2009-06-17 07:38 24,576 ----h--- c:\windows\romeo15.exe 2009-06-17 07:38 2 ----h--- c:\windows\zaponce52592.dat 2009-06-17
Back to top #8 bluemonster bluemonster Topic Starter Members 3 posts OFFLINE Posted 11 July 2009 - 08:43 AM Hi _temp_Sorry for dragging this one out. I will be helping you today. After removing the freddy46.exe file I thought I should ask for help on the others as I'm not really sure what I'm doing and after googling it's advised that you don't Use the forums!Don't let BleepingComputer be silenced.
Current Boot Mode: NormalScan Mode: Current userCompany Name Whitelist: OnSkip Microsoft Files: OffFile Age = 30 DaysOutput = Standard ========== Processes (SafeList) ========== PRC - [2008/09/13 10:40:32 | 00,611,664 | ---- Help us fight Enigma Software's lawsuit! (more information in the link)Follow BleepingComputer on: Facebook | Twitter | Google+ Back to top #6 kahdah kahdah Security Colleague 11,138 posts OFFLINE Gender:Male This changed from what we know in 2006 read this article:http://www.clickz.com/news/article.php/3561546I suggest you remove the program now. Please try the request again.
Your cache administrator is webmaster. The system returned: (22) Invalid argument The remote host or network may be down. This applies only to the original topic starter. Thanks again for all your help.BluemonsterOTL logfile created on: 04/07/2009 12:36:54 - Run 2OTL by OldTimer - Version 220.127.116.11 Folder = C:\Documents and Settings\micky\DesktopWindows XP Professional Edition Service Pack 3 (Version
Please can someone help with how I remove these and other dodgy stuff if there's more than I think. Alternatively, you can update through MBAM's interface from a clean computer, copy the definitions (rules.ref) located in C:\Documents and Settings\All Users\Application Data\Malwarebytes\Malwarebytes' Anti-Malware from that system to a usb stick or