I received an alert from Comcast that one or more of my computers has a BOT.
I went to the McAfee community site and ran the below recommended programs
SCAN with McAfee in Safe mode (nothing found)
McAfee Stinger (nothing found)
McAfee RootkitRemover (nothing found)
Malwarebytes (nothing found)
I ran GetSusp and submitted the logs with my email address as well.
I have the logfiles from Stinger and RootkitRemover, they are attached.
I am not the most computer savvy person and am not sure why Comcast is seeing
a BOT but none of the above have been able to find it.
The BOT name according to Comcast is Multi_CriminalClick_ClickThrough.
Any help would be appreciated.
( Removed Attatched Text Logs @ Request of OP - By Moderator )
Are you sure the notice was actually from Comcast, did you call them to verify it? It sounds to me more like a phishing email and if you didn't click anything in it you are probably OK. If all those above say you are clean I'm not sure what to suggest really.
We don't analyse logs here but what you could do I suppose is run a Hijackthis session and post it's log, along with the above if you wish, on one of the specialist forums suggested near the bottom of the last link below.
Toronto ▪ Canada
Volunteer Moderator - Consumer Products
I CAN'T HELP PRIVATELY - PLEASE POST IN THE FORUMS
Use Advanced Search To Find Answers
Ahhh...scare tactic to get their services I presume.
Thank you for sending the link. Seems I am not the only one to
get these oh so helpful email alerts.
I will assume all is well.
Thank you for the assist!
I think it's probably nothing to worry about. That one file that GetSusp detected should be gone if you clear your temporary files.
You can do that by clicking Start/Run or Windows key + R then type in temp
Then click Edit/Select All and then Shift/Delete OK any prompts and you may be told that some can't be deleted, that's OK, kist skip them.
Repeat the process but this time typing in %temp%
Thank you I will do that! Would you kindly delete this discussion since I stupidly attached those
logs..I didn't realize they weren't needed and they do have IP info in them.
I appreciate all your help!
I did not call Comcast or click anything on the email.
I checked the Comcast " am I botted " site and that is where I got the name of the bot.
There was only one suspicious file found in the GetSusp log and it was in the Temporary Internet files.
Should I shred the Temporary Internet files just to be safe?
I will consult the Specialist Forums to see if they have any other advice.
Have you heard of the Multi_Criminal Bot? I searched to see if there were any other discussions
about it but saw nothing.