I find the easiest way to check is to Google these.
EUDINIT and unregmp2 appear to be windows files.
Of course some nasties load themselves into the windows files and change them so you can never be 100% sure they are safe.
When you Google these you’ll find that some AV companies always brand them as dangerous in the hope you will visit their site and pay for a special file to delete or clean it. This is a well known scam! BEWARE!
It could be that you have made some changes to your computer settings (as MS site suggests for the first one) and BOClean has simply picked up on this.
thanks for all the input. As I’ve written before, Virustotal and Jotti didn’t find anything. I still owe you the results of AntiVir and Ad-Aware: Nothing. I shut down the computer about two and a half hours ago and have just rebooted. No alerts so far. I haven’t really done any changes to my system. Beats me! Admitted, I dld and installed “Returnil” but BOClean didn’t show any alerts until a day later and then not directly after I booted but a little later.
As I said, no alerts this time. So I guess an fp. But I cannot grasp what happened. Just for knowledge’s and assurance’s sake. please don’t stop posting your ideas, suggestions, similar experiences…
Thanks in advance,
I had the same thing pop up on me this morning. I didn’t remove the file and came here to see if anyone else had the same problem. I scanned my computer with several programs and all’s well. Guess it’s probably a false positive. My computer was just sitting idle and when I came back the Trojan warning was on my screen.
Hey red (:WAV)
I know where to send the files but unfortunately I don’t know how to zip and password protect the files as requested. I’m just one daft amateur when it comes to computers :-
Any guidance would be highly appreciated.
Once I know how to do it you can consider it done.
Thanks a bunch ~cat~!!!
If I understand correctly there’s no need for me to do this anymore, or is there? If so, tell me and I’ll do it. Good to know the trick though if it should happen again.
I’ve reported your post to the team as a possible FP on Windows System files.
To zip and password a file do this:
Right click on the file in question and choose “Send To: Compressed Folder”.
Then double click on the newly created compressed folder to open it in Windows Explorer.
In the toolbar at the top left choose “File”, Add a Password".
You’ll now have a password prompt box to type in “infected”.
System files should restore after rebooting, any other files can be restored using System Restore.
You may want to uncheck “Automatically start BOClean at bootup” in your configuration window until you know what’s going on.
Got the same FP’s - Jotti’d all files and did other system scans - good to go. I have 3 boxen on same LAN - 2 XP SP2 and 1 98se - both XP boxes alerted - the 98 box, started the next day, did not - assume a later update fixed the problem ?
No recurrance, no unusual activity, no Firewall or Router log flags.
Same thing here: no log created ??? What’s also a wee bit odd is that so little people seem to get these alerts (I remember an fp about 2 month ago where many many more, i.e. seemingly everyone using BOC, were experiencing the same thing). What’s more, the alerts only came once and couldn’t be reproduced even after several reboots with no update effected.
However, I’d like to thank the wonderful COMODO community for once again helping out so willingly. These forums really are something special.
Chapeau to everyone who donates their precious time to help people in ‘need’. (:CLP)