Jump to content

Tom1986

Members
  • Posts

    20
  • Joined

  • Last visited

Everything posted by Tom1986

  1. @1PW "Have you recently noticed (or recently suspected) any other unexplained troubles/errors regarding access with any system connected storage devices?" No. S.M.A.R.T. results by using Samsung Magician 5.0 manufacturer utility.
  2. Hi @1PW OS is Windows 7 SP 1 x64. Do you get the same result more than once if you follow the same steps? YES. Details on how you encountered the bug and any steps that can be taken to reproduce it. Simply start a scan in Malwarebytes 3.0.5. FREE. I've added the MBAMSERVICE.LOG in the attachment. Am i still as of now the only one with this error in my event viewer? I find that really exceptional. MBAMSERVICE.zip
  3. Hi, The moment I start a scan in MBAM 3.0.5 (FREE) I get a "The driver detected a controller error on \Device\Ide\IdePort4" error in the event viewer. I never ever had this error before in event viewer and it only occurs when I start a scan with Malwarebytes. This has to be a bug within MBAM 3.0.5. since it only shows up in the event viewer when I start a scan. Am I the only one with this particular problem or do you guys also have this error located in the event viewer? Thanks!
  4. MBAM is updating again! Thanks for sorting it out.
  5. So what is the current situation on this problem? When will this be fixed? Really, any help is appreciated. I like to update my MBAM to the most up-to-date definition, but since the program won't update (saying that it's already on the latest database version) i'm really on a dead end here.
  6. Oh wait, I did updated yesterday fine, but looking at the database version it is still on version v2014.07.09.12. So it missed a whole day. Is this problem only affecting on the 1.75 version or also the new one?
  7. Any reason behind it? Because MBAM did updated normally yesterday evening.
  8. Since I am not experiencing any computers problems and have a malware/virus free pc, it does bug me what this key stands for. Hopefully someone knows where this is key is located to (e.g. what program)?
  9. Hi, I found something in my registry named as HKEY_CURRENT_USER\Software\{B2CB09FF-2453-4f85-9F40-21C05BE4CBA8} ( screenshot attached ) that is not recognized by MBAM. If I google it, it possibly seems as a trojan or a virus. But my pc comes out clean by scanning it with MBAM or Avira (virusscanner). So should I be worried about this key or is just something normal and move along? http://www.lavasoftsupport.com/uploads/monthly_01_2013/post-93839-0-74061900-1358271509.jpg
  10. @jarrex False. Just update mbam and scan again.
  11. Hi alicez, Please see this thread: http://forums.malwarebytes.org/index.php?showtopic=112661&view=getnewpost It's a false positive, just update your mbam and run the scan again and it comes out clean.
  12. I updated mbm, and after the update i scanned the selected explorer.exe file and came out clean (so it was a false positive). So everything is okay now fellas. Thx mbam for the quick help!
  13. Restored it. So do I still have to zip the file or was this a false positive so everything is okay now?
  14. @nosirrah Thx for your help, but how do attach the file if it's in quarantine? Do I have to undo/restore the file from quarantine and then zip the file?
  15. I deleted mine also (in quarantine now), but here is my log also from this trojan; Malwarebytes Anti-Malware 1.62.0.1300 www.malwarebytes.org Databaseversie: v2012.07.17.10 Windows XP Service Pack 3 x86 NTFS Internet Explorer 8.0.6001.18702 XXXX :: XXXXXXX [administrator] 17-7-2012 18:56:58 mbam-log-2012-07-17 (18-56-58).txt Scantype: Volledige scan (C:\|F:\|) Ingeschakelde scanopties: Geheugen | Opstartitems | Register | Bestanden en mappen | Heuristiek/Extra | Heuristiek/Shuriken | PUP | PUM Uitgeschakelde scanopties: P2P Objecten gescand: 217304 Verstreken tijd: 29 minuut/minuten, 30 seconde(n) Geheugenprocessen gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Geheugenmodulen gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Registersleutels gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Registerwaarden gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Registerdata gedetecteerd: 3 HKLM\SOFTWARE\Microsoft\Security Center|AntiVirusDisableNotify (PUM.Disabled.SecurityCenter) -> Slecht: (1) Goed: (0) -> Geen actie ondernomen. HKLM\SOFTWARE\Microsoft\Security Center|FirewallDisableNotify (PUM.Disabled.SecurityCenter) -> Slecht: (1) Goed: (0) -> Geen actie ondernomen. HKLM\SOFTWARE\Microsoft\Security Center|UpdatesDisableNotify (PUM.Disabled.SecurityCenter) -> Slecht: (1) Goed: (0) -> Geen actie ondernomen. Mappen gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Bestanden gedetecteerd: 1 C:\WINDOWS\ServicePackFiles\i386\explorer.exe (Trojan.Bootkit.Dropper) -> Succesvol in quarantaine geplaatst en verwijderd. (einde)
  16. Okay this is strange, so more people have this trojan as of today? But indeed i got the same trojan in the same directory as you have -> D:\WINDOWS.0\ServicePackFiles\i386\explorer.exe Please can someone clarify this trojan if it's dangerous or just a false positive so we can restore it.
  17. Hi all, This is the first time my pc got infected with some strange trojan when i ran the full scan on mbam. I tried to google this particular trojan, but nothing came up. So this has to be a pretty new trojan i guess. I deleted the trojan ofcourse and putted it in quarantaine, but my question is: Is this trojan really dangerous or is it a false positive? Thanks. Here is the log: Malwarebytes Anti-Malware 1.62.0.1300 www.malwarebytes.org Databaseversie: v2012.07.17.10 Windows XP Service Pack 3 x86 NTFS Internet Explorer 8.0.6001.18702 Tom :: xxxx[administrator] 17-7-2012 18:56:58 mbam-log-2012-07-17 (18-56-58).txt Scantype: Volledige scan (C:\|F:\|) Ingeschakelde scanopties: Geheugen | Opstartitems | Register | Bestanden en mappen | Heuristiek/Extra | Heuristiek/Shuriken | PUP | PUM Uitgeschakelde scanopties: P2P Objecten gescand: 217304 Verstreken tijd: 29 minuut/minuten, 30 seconde(n) Geheugenprocessen gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Geheugenmodulen gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Registersleutels gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Registerwaarden gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Registerdata gedetecteerd: 3 HKLM\SOFTWARE\Microsoft\Security Center|AntiVirusDisableNotify (PUM.Disabled.SecurityCenter) -> Slecht: (1) Goed: (0) -> Geen actie ondernomen. HKLM\SOFTWARE\Microsoft\Security Center|FirewallDisableNotify (PUM.Disabled.SecurityCenter) -> Slecht: (1) Goed: (0) -> Geen actie ondernomen. HKLM\SOFTWARE\Microsoft\Security Center|UpdatesDisableNotify (PUM.Disabled.SecurityCenter) -> Slecht: (1) Goed: (0) -> Geen actie ondernomen. Mappen gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Bestanden gedetecteerd: 1 C:\WINDOWS\ServicePackFiles\i386\explorer.exe (Trojan.Bootkit.Dropper) -> Succesvol in quarantaine geplaatst en verwijderd. (einde)
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.