Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.


Topics - drdancm

Pages: [1]
1
Malware removal help / Virtumonde, Win32.Adload.jm Out of Memory
« on: November 09, 2016, 09:29:53 pm »
Spybot 1.62 came up with this:

Error during check!
Win32.Adload.jm [6 - $AFC12AB3] (Out of memory)
Error during check!
Virtumonde [245 - $4A9C6736] (Out of memory)
Error during check!
Virtumonde [845 - $4A9C6736] (Out of memory)
Congratulations !
No immediate threats were found

Spybot had never shown anything like this before.
Avast, Malwarebytes, Spybot 2.4, & Rogue killer  fails to find any problems. With the exception of Avast, I also ran all of these programs in Safe Mode with no difference in outcome.

Spybot 1.62 came up with this:

Error during check!
Win32.Adload.jm [6 - $AFC12AB3] (Out of memory)
Error during check!
Virtumonde [245 - $4A9C6736] (Out of memory)
Error during check!
Virtumonde [845 - $4A9C6736] (Out of memory)
Congratulations !
No immediate threats were found

Spybot had never shown anything like this before.
Avast (including Boot time scan), Malwarebytes, Spybot 2.4, & Rogue killer  fails to find any problems. With the exception of Avast, I also ran all of these programs in Safe Mode with no difference in outcome.


I followed suggestions from Bleeping Computer etc. and ran the usual programs:
TDSSKiller, Hitman Pro, RKill, Emsisoft Emergency Kit, AdwCleaner. None of these helped at all.

I had removed these from another computer (one of these tools cleaned it up) which is now clean,
but I have no luck with the current machine.  Possibly there is a dslhost.exe problem which shows up, but disappears most of the time, before I can Endtask it.

Only Spybot 1.62 shows this malware, other programs including Spybot 2.4 fail to find it.
Any help would be appreciated.

Thanks,

2
RogueKiller PREMIUM / Some Questions
« on: June 03, 2016, 12:35:23 am »
I purchased the Premium Technician Version yesterday.

Questions:
1 What is  "Scan Offline Registry". Does it mean I can remove the HD with the infected by dllhost.exe and use another computer to scan the registry of the OS on the infected HD?

If not, is it possible to make your software do that?


2 In the instructions for making the portable version say:

The file will be used then to gain access to premium features while doing your malware removal on your customerís PC. To use that file, you need to use the command line parameter -portable-license path_to_the_file. You can also name it rk_config.ini and place it in the same directory as RogueKiller exe file.


What does you can also name "it" refer to?  The portable file ? Or a file saved with the command line parameter shown above?
Would you please explain it more clearly.

Thank you.

Pages: [1]