![](http://content.invisioncic.com/Mmalware/set_resources_28/84c1e40ea0e759e3f1505eb1788ddf3c_pattern.png)
JeanInMontana
Honorary Members-
Posts
3,859 -
Joined
-
Last visited
Content Type
Events
Profiles
Forums
Everything posted by JeanInMontana
-
Problem booting up is "safe mode"
JeanInMontana replied to mwebb's topic in Resolved Malware Removal Logs
Did you update MBAM? Update run a quick scan and I need a HJT log please. -
Infected with XP_Antispyware 2009 :(
JeanInMontana replied to cweb's topic in Resolved Malware Removal Logs
OK is this http://www.malwarebytes.org/forums/index.p...amp;#entry30361 the same machine? How many do you have infected? -
I'm not sure that the updates are working
JeanInMontana replied to futons1's topic in Malwarebytes for Windows Support Forum
So when you see there is indeed a change, why don't you think it isn't right? The database changes numbers the number of fingerprints change and the date. Those are the only things to change, so obviously you got the update. -
Anti-Malware on limited user accounts?
JeanInMontana replied to Insomniac's topic in Malwarebytes for Windows Support Forum
MBAM can't over ride Vista. The limited account in Vista is just that, limited. You won't find any program able to update using the limited account. That was the sole purpose of that account setting, to keep the user from installing or changing software. -
I'm not sure that the updates are working
JeanInMontana replied to futons1's topic in Malwarebytes for Windows Support Forum
LOL complaining the update is too fast? New servers and much faster. If the version changes and all the rest you stated, then you got the update. -
Yay!! Glad we could help. Be sure to add some prevention software to that machine.
-
Problem booting up is "safe mode"
JeanInMontana replied to mwebb's topic in Resolved Malware Removal Logs
Java and Adobe are both free; the company doesn't need to support them, but I'll guarantee you'll be infected again if you don't update them. Remove this line with HJT O23 - Service: Lan Discover Agent (magaService) - Unknown owner - C:\Program Files\Sygate\SSA\maga\maga.exe (file missing) Now update MBAM again and run a quick scan, post the log. -
MBAM unable to remove trojan.extension.exploit
JeanInMontana replied to srahman's topic in Resolved Malware Removal Logs
MBAM removed the file. It shows in the first log you posted. C:\Documents and Settings\Sayeed\Desktop\???? ??????????? ?????? ??? ???????? ????? ???????.doc (Trojan.Extension.Exploit) -> Quarantined and deleted successfully. You've got Symantec installed that alone will slow a machine to a crawl. Your HJT log shows two Chrome running too. That seems strange. Run HJT again in scan only mode and place a check next to the following lines, then click fix. R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank O20 - Winlogon Notify: ACNotify - ACNotify.dll (file missing) Reboot and post a new HJT log. You are running an outdated and unsafe version of Java. You need to uninstall it via Add/Remove programs and delete the program file also. Then go here Java Update and install the correct version for your system. Choose the offline installation. Your running an outdated and unsafe version of Adobe Acrobat Reader latest version. Or get the alternative faster lighter on resources Foxit PDF Reader and Editor Look at the Downloads tab here or Downloads if you don't want to see the features etc. -
Trojan.Agent removal
JeanInMontana replied to alex_not_in_use's topic in Malwarebytes for Windows Support Forum
OK I gave a heads up to Marcin. He can fix it or tell you better how to get around this. -
http://www.ca.com/us/securityadvisor/pest/...px?id=453137703 There is one place it's called rogue. I'm sure I can find more if I spent more time.
-
Trojan.Agent removal
JeanInMontana replied to alex_not_in_use's topic in Malwarebytes for Windows Support Forum
Are you doing a quick scan? Is the program scanning? What makes you think you have a trojan? -
MBAM unable to remove trojan.extension.exploit
JeanInMontana replied to srahman's topic in Resolved Malware Removal Logs
Hi srahman and welcome to Malwarebytes. Please update MBAM and post a new log, then run HJT and post that log. Be sure they are posted in the order I request. The MBAM scan then HJT. -
Can't get microsoft updates/IE won't load
JeanInMontana replied to cweb's topic in Resolved Malware Removal Logs
MBAM finding nothing is what we want to see. I missed seeing you have HJT on the desktop, that is supposed to be installed to the Program Files. So how is it running? -
Problem booting up is "safe mode"
JeanInMontana replied to mwebb's topic in Resolved Malware Removal Logs
You need to update MBAM and scan. Post that log. And a log from HJT, not Panda. I want all new logs. MBAM is two definition versions from what your using. -
Thank you and a question on security
JeanInMontana replied to rriso's topic in General Windows PC Help
I mean an object in world. For instance in Second Life when I first started I was warned not to take flowers from strangers. People were using them to exploit users accounts and take all the money in them and even get the account itself. Anything that can be worn or that must be worn to view, like the flowers has that potential. There are objects that can be used to spy in the same manner, they need to be worn by the user and then will send back conversations to the person that gave it or allow access to the account. Of course you shouldn't accept any softwares either. They would pose a great threat and most likely wouldn't be legal. I hope this has helped clear some of it up. If not just keep asking. -
Can't get microsoft updates/IE won't load
JeanInMontana replied to cweb's topic in Resolved Malware Removal Logs
LOL OK then we will add some prevention once we know your cleaned up. -
Your using an outdated version of MBAM. Please update and run a quick scan again. Post that log and a new HJT log to please.
-
Problem booting up is "safe mode"
JeanInMontana replied to mwebb's topic in Resolved Malware Removal Logs
Hi please post all logs in the body of your reply, not as attachments. Delete the special tool SDFix and all files and folders associated with it. Run HJT again in scan only mode and place a check next to the following lines then click fix. R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank O9 - Extra button: (no name) - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - (no file) Reboot You are running an outdated and unsafe version of Java. You need to uninstall it via Add/Remove programs and delete the program file also. Then go here Adobe Acrobat Reader latest version. Or get the alternative faster lighter on resources Foxit PDF Reader and Editor Look at the Downloads tab here or Downloads if you don't want to see the features etc. Now update MBAM and run another quick scan. Post that log here and a new HJT log. We will see what is left if anything. -
Thank you and a question on security
JeanInMontana replied to rriso's topic in General Windows PC Help
They have the potential to be exploited. It depends on how well the developers are looking for and closing holes. I am a Second Life player and there have been numerous exploits in that game via objects given to a user from another. They have done some mandatory security updates in SL too. My advice in the games would be don't accept objects from strangers. Make sure you have good security on you machine. Get all updates offered by the game developers. Hope this helped. -
You said you had already purchased it earlier in this thread.
-
Backdoor.Agent.PBE
JeanInMontana replied to Vero44's topic in Malwarebytes for Windows Support Forum
Sounds like something you need to point out to Spyware Doctor. Did you upload a sample to Virus Total or any where to test it? -
Sorry, at this time MBAM doesn't do auto updates. It is not an antivirus program either. I wanted to make that clear since your comparing it to one. I would imagine that feature you would like to see would be in a pay version if at all. That's how most auto updated programs work, the free one is manually updated and the paid version updates automatic.