RKIT/Kryptic.763904 help~

Viruses and worms
1

some days ago my Avira AntiVir Personal scan fjhdyfhsn.bat as BAT/DelIE.148
and then many files in WINDOWS\system32\drivers are scaned as RKIT/Kryptic.763904
today i use combofix to fix my computer
but i don’t know would my computer be ok

this is my combofix log:
http://funny-kuso.myweb.hinet.net/ComboFix.txt
and this is my OTL log:
http://funny-kuso.myweb.hinet.net/OTL.txt

is something wrong still in my computer?
thx

2

I think you are in the wrong forum :o, this is the Avast! forum and not the Avira Antivir but perhaps somebody can help you nevertheless :wink:

3

Hi cool333,

Use the proposed removal procedure here: http://board.protecus.de/t38780.htm
or here:
http://www.bleepingcomputer.com/forums/topic283985.html

polonus

4

It’s OK I am a bit of a tart and will help anyone ;D

Run OTL.exe

[*]Under the Custom Scans/Fixes box at the bottom, paste in the following

:OTL
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {472734EA-242A-422B-ADF8-83D1E48CC825} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - No CLSID value found.

:Files
c:\windows\system32\smhxbbyt.sys
c:\windows\system32\smmhbsrv.sys
c:\windows\system32\spwdbapi.sys
c:\windows\system32\xfztbmsn.sys

:Commands
[purity]
[emptytemp]

[*]Then click the Run Fix button at the top
[*]Let the program run unhindered, reboot when it is done
[*]Then post a new OTL log ( don’t check the boxes beside LOP Check or Purity this time )

THEN

Malwarebytes’ Anti-Malware
Please download Malwarebytes’ Anti-Malware from Here or Here

Double Click mbam-setup.exe to install the application.
[*]Make sure a checkmark is placed next to Update Malwarebytes’ Anti-Malware and Launch Malwarebytes’ Anti-Malware, then click Finish.
[*]If an update is found, it will download and install the latest version.
[*]Once the program has loaded, select “Perform Quick Scan”, then click Scan.
[*]The scan may take some time to finish,so please be patient.
[*]When the scan is complete, click OK, then Show Results to view the results.
[*]Make sure that everything is checked, and click Remove Selected.
[*]When disinfection is completed, a log will open in Notepad and you may be prompted to Restart.(See Extra Note)
[*]The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
[*]Copy&Paste the entire report in your next reply.
If MBAM encounters a file that is difficult to remove,you will be presented with 1 of 2 prompts,click OK to either and let MBAM proceed with the disinfection process,if asked to restart the computer,please do so immediatly.

5

Hi Damien I must lear to type faster 8)

6

To Soure73 :
i’m sorry…forgive me… QQ
To polonus:
thank you
To essexboy:

it’s my new OTL log:
http://funny-kuso.myweb.hinet.net/OTLnew.Txt
and Malwarebytes’ Anti-Malware’s log:
http://funny-kuso.myweb.hinet.net/mbam-log-2010-01-25.txt

very thx
my computer works very well!

7

No need to apologise, you just bumped in to the best forum on earth by accident :wink: ;D

8

i have nothing to say but thank you~ QQ
it is very wonderful place -3-