lurkingatu2
-
Posts
173 -
Joined
-
Last visited
Content Type
Events
Profiles
Forums
Posts posted by lurkingatu2
-
-
if you upgrade to Win 10 from a OEM Win 8 Computer be aware
if you have a OEM Windows 8 computer (Hewlett-Packard,Acer,Toshiba ect.) and installed Windows 8.1
it adds a extra 350mb recovery partition
now if you had to restore back to Windows 8 from the OEM recovery Partition the extra 350mb recovery
gets left on the hard drive
now from a fresh install back to Windows 8 from the OEM recovery partition you upgrade to Windows 8.1 it adds another 350mb recovery partition so now there is 2 350mb recovery partition and if you keep going back to Windows 8 from the OEM recovery partition and upgrade to Windows 8.1 it adds another
Windows defrag see's these 350mb recovery partition as Local Disk (\\?\VOLUME and can not defrag them
this persion had this happen to him (13 350mb recovery partitions)
Too Many Recovery Partitions
http://malwaretips.com/threads/too-many-recovery-partitions.32625/
i also found this
Too many recovery partitions Windows 8.1
http://www.eightforums.com/general-support/67348-too-many-recovery-partitions-windows-8-1-a.html
in post #2 topgundcp says"If you have another HD then I would suggest to re-install the OS and get ready to upgrade to Windows 10. Having too many reserved partitions might cause upgrade to Windows 10 to fail as seen in Windows 10 Forum."
i'v asked this question at the Microsoft Community forum on July 8
http://answers.microsoft.com/en-us/windows/forum/windows_10-win_upgrade/upgrade-to-win-10-but-too-many-recovery-partitions/a58f421f-fdfd-4d6d-bd58-82b8168e84f1
the Microsoft Support Engineer says that if i try to upgrade with the added 350mb partitions Windows 10 will not install and could be trouble and says i should Wipe the Hard drive and reinstall
ok i know how to do this but what about everyone else
to me i think people should know about this before Windows 10 is out
what do you think?
this is a post i asked this same
http://malwaretips.com/threads/if-you-upgrade-to-win-10-from-a-oem-win-8-computer-be-aware.48249/
James
-
hello Maurice
i'v also found in Webroot under Quarantine a place to allow Mbam called Detection Configuration it says
:you can change how SecureAnywhere detects files on your computer (e.g. to manuaily blpck specific
programs or allow others)
so i would think thats where i add exclusions to so i'v added and set to allow
Mbamscheduler.exe
Mbamservice.exe
Mbamgui.exe
Mbam.exe
i will keep checking if it happens again and let you all know
thanks
James
-
hello Maurice
yes after i restore my pc Norton is on my computer and i don't let it complately install then the first thing i use is
the Norton uninstall tool to uninstall it then i go into documents and settings and delete all the Symantec folders i
find there then install and run Ccleaner and Ccleaner's registry cleaner to get what Norton stuff Ccleaner finds in the
registry and i see nothing running in the task manager from Norton
SuperAntispyware is on-demand nothing running from it realtime but SASCore.exe in task manager
ok i added WRSA.exe in the ignore list of Mbam
in Webroot SA Mbam.exe and Mbamscheduler.exe is allowed under control active processes
i understand about the error is from Microsoft and is sent to them from Windows not Mbam
the error do's not happen everytime i update and then run a scan i can update Mbam and do a quick scan like over 10 times
or more then 1 time i update and run a scan it will happen
here is the start of the Dr.watson log
Application exception occurred:
App: C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe (pid=2904)
When: 9/5/2012 @ 23:25:11.922
Exception number: c0000005 (access violation)
Mbam Log
Malwarebytes Anti-Malware (PRO) 1.65.0.1000
Database version: v2012.09.06.11
Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
lurk :: ACER [administrator]
Protection: Disabled
9/6/2012 1:59:48 PM
mbam-log-2012-09-06 (13-59-48).txt
Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 196297
Time elapsed: 2 minute(s), 22 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
(end)
i will try for while since i added WRSA.exe in the ignore list of Mbam and see what happens i could also unstall SuperAntispyware
and try for while if you would like
thanks
James
-
hello
i installed Mbam beta 1.65.0.1000 over 1.62.0.1300 and it installed fine but i'v had trouble with the
last few versions of Mbam where right after i update the database and then run a quick scan Mbam errors
and sends a error report to microsoft and then closes
i'v reported this before
http://forums.malwarebytes.org/index.php?showtopic=112807
it don't happen every time i update then run a scan i'v even restored my pc less than 30 days ago i'm
not running Mbam in realtime just on-demand and the only secirity programs that run at startup are
Webroot SecureAnywhere v8.0.1.233 and Sandboxie v3.74
my pc is a Acer t180 with Winxp MCE sp3 2gb of memory
it only makes a Dr Watson log and user.dmp i have the new one that it made tonite when it happend but can't
see no way to attach it here
thanks
James
-
hello
a few times when i update Mbam and then click on quick scan to do a scan Mbam crashes and it sends a report to microsoft
it happend with Mbam version 1.61 but i waited for version 1.62 to come out thinking it would stop but it has not
i found the Dr watson log and thought i would give it to you guy's
i'm running windows xp sp3 Mce i use Webroot SecureAnyware essentials and Emsisoft Mamutu (i'v excluded Mbam in Mamutu)
and have Sandboxie at startup
i use Mbam pro and Superantispyware pro and Hitmanpro on-demand only and thats my security programs
i'v done scans and have not found nothing
thanks
James
-
hello
just got the update to Mbam 1.62.0.1300 with no problems so far
Win Xp MCE Sp3
Webroot SecureAnyware Essentials v8.0.1.203
Emsisoft Mamutu V3.0.0.20
Sandboxie v3.75
Quick scan ran ok
Thanks so very much
-
ok
after reinstalling Mbam everythings seems ok if i have more trouble i will report back
Thanks so very much
James
P.S.
i would not download enything from Cnet as there download manager is ad supported i got Mbam from Majorgeeks
-
ok now after i posted i went to run a quick scan with Mbam clicked on quick scan and it closed then i
opend Mbam again and the scan started and ran ok
Malwarebytes Anti-Malware (PRO) 1.61.0.1400
Database version: v2012.04.20.03
Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
lurking :: ACER [administrator]
Protection: Disabled
4/20/2012 11:14:03 AM
mbam-log-2012-04-20 (11-14-03).txt
Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 194047
Time elapsed: 2 minute(s), 48 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
(end)
so i'm thinking a reinstall of Mbam maybe ?
i use Mbam and SuperAntispyware as on-demand only not in realtime
Thanks
-
hello
today i updated Mbam 1.61.0.1400 and got this error
an error has occurred please report this issue to our support team (include the content of all error
message(s) and codes(s) in your submission
PROGRAM_ERROR_UPDATING(1812,0,Config missing or corrupt,please reinstall)
The specified image file did not contain a resource section
then i tryed to update again and Mbam updated with no problem
Thanks
-
-
Mbam log
Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org
Database version: 5516
Windows 6.1.7600
Internet Explorer 8.0.7600.16385
1/13/2011 10:01:31 PM
mbam-log-2011-01-13 (22-01-17).txt
Scan type: Full scan (C:\|)
Objects scanned: 343128
Time elapsed: 1 hour(s), 39 minute(s), 58 second(s)
Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 1
Memory Processes Infected:
(No malicious items detected)
Memory Modules Infected:
(No malicious items detected)
Registry Keys Infected:
(No malicious items detected)
Registry Values Infected:
(No malicious items detected)
Registry Data Items Infected:
(No malicious items detected)
Folders Infected:
(No malicious items detected)
Files Infected:
c:\SWSetup\LSSS\LSSetup.exe (Trojan.WinLock) -> No action taken.
virustotal
LSSetup.exe
Submission date: 2011-01-14 05:55:07 (UTC)
Current status: queued queued (#2) analysing finished
Result: 0/ 41 (0.0%)
VT Community
not reviewed
Safety score: -
Compact Print results Antivirus Version Last Update Result
AhnLab-V3 2011.01.14.00 2011.01.13 -
AntiVir 7.11.1.122 2011.01.13 -
Antiy-AVL 2.0.3.7 2011.01.14 -
Avast 4.8.1351.0 2011.01.13 -
Avast5 5.0.677.0 2011.01.13 -
AVG 10.0.0.1190 2011.01.14 -
BitDefender 7.2 2011.01.14 -
CAT-QuickHeal 11.00 2011.01.14 -
ClamAV 0.96.4.0 2011.01.14 -
Command 5.2.11.5 2011.01.14 -
Comodo 7385 2011.01.14 -
DrWeb 5.0.2.03300 2011.01.14 -
Emsisoft 5.1.0.1 2011.01.14 -
eSafe 7.0.17.0 2011.01.13 -
eTrust-Vet 36.1.8098 2011.01.13 -
F-Prot 4.6.2.117 2011.01.13 -
F-Secure 9.0.16160.0 2011.01.14 -
Fortinet 4.2.254.0 2011.01.13 -
GData 21 2011.01.14 -
Ikarus T3.1.1.97.0 2011.01.14 -
Jiangmin 13.0.900 2011.01.14 -
K7AntiVirus 9.75.3535 2011.01.13 -
Kaspersky 7.0.0.125 2011.01.14 -
McAfee 5.400.0.1158 2011.01.14 -
McAfee-GW-Edition 2010.1C 2011.01.14 -
NOD32 5785 2011.01.13 -
Norman 6.06.12 2011.01.13 -
nProtect 2011-01-13.01 2011.01.13 -
Panda 10.0.2.7 2011.01.13 -
PCTools 7.0.3.5 2011.01.14 -
Prevx 3.0 2011.01.14 -
Rising 22.82.04.00 2011.01.14 -
Sophos 4.61.0 2011.01.14 -
SUPERAntiSpyware 4.40.0.1006 2011.01.14 -
TheHacker 6.7.0.1.114 2011.01.13 -
TrendMicro 9.120.0.1004 2011.01.14 -
TrendMicro-HouseCall 9.120.0.1004 2011.01.14 -
VBA32 3.12.14.2 2011.01.13 -
VIPRE 8067 2011.01.14 -
ViRobot 2011.1.14.4253 2011.01.14 -
VirusBuster 13.6.144.0 2011.01.13 -
Additional informationShow all
MD5 : 3ebe572247b754634eae5c1a34dfa3eb
SHA1 : 8c78af53925cdd9ce661e6764525d68cc95c58be
SHA256: 316b070bc9b057ffae2772f1c10d9a8ebeefc9bc05ee5207b926cf27a9cc447e
ssdeep: 196608:m1BiG/zppkfG8KhF16hZQ8GDy3a+hMWKDqHeuwIqx1EAFG2CYU:mfbr/10qJuKQMW0oe
Wqx1RFG2CY
File size : 8929824 bytes
First seen: 2008-03-22 06:06:19
Last seen : 2011-01-14 05:55:07
TrID:
Win64 Executable Generic (59.6%)
Win32 Executable MS Visual C++ (generic) (26.2%)
Win32 Executable Generic (5.9%)
Win32 Dynamic Link Library (generic) (5.2%)
Generic Win/DOS Executable (1.3%)
sigcheck:
publisher....: LightScribe
copyright....: Copyright © 2007 Hewlett-Packard Develo
product......: LS_HSI
description..: LS_HSI
original name: Setup.exe
internal name: Setup
file version.: 1.12.33.
comments.....: n/a
signers......: Hewlett-Packard Company
VeriSign Class 3 Code Signing 2004 CA
Class 3 Public Primary Certification Authority
signing date.: 11:19 PM 2/26/2008
verified.....: -
PEiD: Armadillo v1.71
PEInfo: PE structure information
[[ basic data ]]
entrypointaddress: 0x2996C
timedatestamp....: 0x4626BFD3 (Thu Apr 19 01:03:15 2007)
machinetype......: 0x14c (I386)
[[ 4 section(s) ]]
name, viradd, virsiz, rawdsiz, ntropy, md5
.text, 0x1000, 0x34252, 0x35000, 6.52, c9197aa9b527836ce29af10d2ddf924d
.rdata, 0x36000, 0x6D26, 0x7000, 4.77, bf4b45ddeeea5d7f1fb47b800a27cf48
.data, 0x3D000, 0x9D04, 0x6000, 3.14, 83c11175151189b2c495762e2f027778
.rsrc, 0x47000, 0x157EC, 0x16000, 7.54, 72a7b55ba74e3c1250a7af683373d5d2
[[ 10 import(s) ]]
VERSION.dll: VerQueryValueA, GetFileVersionInfoSizeA, GetFileVersionInfoA
SHELL32.dll: SHGetPathFromIDListA, ShellExecuteA, SHBrowseForFolderA, SHGetMalloc
COMCTL32.dll: -
KERNEL32.dll: DuplicateHandle, GetCurrentProcess, ExitProcess, WaitForSingleObject, CreateProcessA, lstrcpyA, GetWindowsDirectoryA, SetErrorMode, GetTempPathA, ExpandEnvironmentStringsA, lstrcmpA, lstrcmpiA, GetTickCount, GetExitCodeThread, CreateThread, CopyFileA, InterlockedIncrement, InterlockedDecrement, QueryPerformanceFrequency, CreateEventA, lstrcatA, GetTempFileNameA, CompareStringA, CompareStringW, GetVersionExA, SetFilePointer, SetFileAttributesA, SetFileTime, LocalFileTimeToFileTime, DosDateTimeToFileTime, FreeLibrary, GetProcAddress, LoadLibraryA, LockResource, LoadResource, SizeofResource, FindResourceA, GetSystemDefaultLCID, GlobalHandle, VerLanguageNameA, FormatMessageA, LocalFree, GetLocalTime, MoveFileA, SetCurrentDirectoryA, FindClose, FindNextFileA, CompareFileTime, FindFirstFileA, GetSystemTimeAsFileTime, GetSystemInfo, MulDiv, IsValidCodePage, GetVersion, FlushFileBuffers, SetEndOfFile, GetDiskFreeSpaceA, GetDriveTypeA, CreateDirectoryA, MapViewOfFile, GetCurrentThread, GetLocaleInfoA, GetFileType, GetStdHandle, GetThreadContext, GetEnvironmentStringsW, SetLastError, FreeEnvironmentStringsW, FreeEnvironmentStringsA, UnhandledExceptionFilter, GetOEMCP, GetACP, GetCPInfo, SetUnhandledExceptionFilter, LCMapStringW, LCMapStringA, IsBadWritePtr, VirtualAlloc, VirtualFree, HeapCreate, HeapDestroy, GetEnvironmentVariableA, TlsGetValue, TlsAlloc, TlsSetValue, GetCurrentThreadId, HeapSize, HeapReAlloc, GetCommandLineA, GetStartupInfoA, RaiseException, RtlUnwind, DeleteCriticalSection, InterlockedExchange, IsBadReadPtr, SystemTimeToFileTime, QueryPerformanceCounter, ResetEvent, SetEvent, GetShortPathNameA, VirtualProtect, VirtualQuery, EnterCriticalSection, LeaveCriticalSection, InitializeCriticalSection, TerminateProcess, GetModuleHandleA, SearchPathA, SetStdHandle, UnmapViewOfFile, lstrlenA, CreateFileA, GetFileSize, GlobalAlloc, CloseHandle, VirtualProtectEx, WriteProcessMemory, FlushInstructionCache, SetThreadContext, ResumeThread, DeleteFileA, Sleep, RemoveDirectoryA, IsDBCSLeadByte, GetFileAttributesA, GetProcessHeap, HeapAlloc, HeapFree, WriteFile, lstrcpynA, GetModuleFileNameA, lstrlenW, WideCharToMultiByte, MultiByteToWideChar, SetHandleCount, GetLastError, GlobalLock, ReadFile, GlobalUnlock, GlobalFree, GetEnvironmentStrings, CreateFileMappingA, GetStringTypeA, GetStringTypeW, IsBadCodePtr, GetExitCodeProcess
USER32.dll: GetDlgItemTextA, GetWindow, SetCursor, UpdateWindow, GetClassInfoA, CharUpperA, CharLowerBuffA, wvsprintfA, EnableWindow, GetParent, GetWindowTextLengthA, GetWindowTextA, MoveWindow, GetWindowPlacement, DrawIcon, DestroyIcon, GetDlgCtrlID, SetWindowTextA, FillRect, GetSysColor, GetSysColorBrush, SendMessageA, LoadStringA, GetSystemMetrics, SetRect, FindWindowA, IntersectRect, SubtractRect, IsWindow, DestroyWindow, CreateDialogParamA, CharNextA, MessageBoxA, WaitForInputIdle, GetWindowLongA, BeginPaint, EndPaint, SetWindowLongA, GetClientRect, ClientToScreen, SetWindowPos, GetWindowDC, EndDialog, GetDlgItem, ShowWindow, DialogBoxParamA, GetDesktopWindow, wsprintfA, MsgWaitForMultipleObjects, PeekMessageA, DefWindowProcA, PostMessageA, KillTimer, PostQuitMessage, SetTimer, LoadIconA, LoadCursorA, RegisterClassA, CreateWindowExA, GetMessageA, TranslateMessage, DispatchMessageA, GetDC, ReleaseDC, CharPrevA, ExitWindowsEx, SendDlgItemMessageA, GetWindowRect, IsDialogMessageA
GDI32.dll: CreateFontA, GetTextExtentPoint32A, SetBkMode, SetTextColor, GetObjectA, CreateFontIndirectA, CreateSolidBrush, CreateCompatibleDC, SelectObject, BitBlt, DeleteDC, DeleteObject, GetStockObject, GetSystemPaletteEntries, CreatePalette, GetDeviceCaps, SelectPalette, RealizePalette, CreateDIBitmap, TranslateCharsetInfo
ADVAPI32.dll: RegQueryValueA, RegOpenKeyA, FreeSid, OpenProcessToken, LookupPrivilegeValueA, AdjustTokenPrivileges, RegEnumValueA, RegCreateKeyExA, RegSetValueExA, RegDeleteValueA, RegOpenKeyExA, RegQueryValueExA, RegCloseKey, AllocateAndInitializeSid, GetTokenInformation, OpenThreadToken, EqualSid
RPCRT4.dll: UuidCreate, RpcStringFreeA, UuidToStringA
ole32.dll: CoUninitialize, CoInitialize
OLEAUT32.dll: -, -, -, -, -, -, -
ExifTool:
file metadata
CharacterSet: Unicode
CodeSize: 217088
CompanyName: LightScribe
EntryPoint: 0x2996c
FileDescription: LS_HSI
FileFlagsMask: 0x003f
FileOS: Win32
FileSize: 8.5 MB
FileSubtype: 0
FileType: Win32 EXE
FileVersion: 1.12.33.
FileVersionNumber: 14.0.0.162
ImageVersion: 0.0
InitializedDataSize: 143360
InternalBuildNumber: 62562
InternalName: Setup
LanguageCode: English (U.S.)
LegalCopyright: Copyright © 2007 Hewlett-Packard Develo
LinkerVersion: 6.0
MIMEType: application/octet-stream
MachineType: Intel 386 or later, and compatibles
OSVersion: 4.0
ObjectFileType: Dynamic link library
OriginalFilename: Setup.exe
PEType: PE32
ProductName: LS_HSI
ProductVersion: 1.12
ProductVersionNumber: 14.0.0.0
Subsystem: Windows GUI
SubsystemVersion: 4.0
TimeStamp: 2007:04:19 03:03:15+02:00
UninitializedDataSize: 0
VT Community
thanks
-
hello
i just updated Mbam deff. version to
8/20/09
database version: 2661
fingerprints loaded: 124284
and Mbam found
Malwarebytes' Anti-Malware 1.40
Database version: 2661
Windows 5.1.2600 Service Pack 3
8/20/2009 1:13:26 AM
mbam-log-2009-08-20 (01-13-10).txt
Scan type: Quick Scan
Objects scanned: 94297
Time elapsed: 1 minute(s), 27 second(s)
Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 3
Memory Processes Infected:
(No malicious items detected)
Memory Modules Infected:
(No malicious items detected)
Registry Keys Infected:
(No malicious items detected)
Registry Values Infected:
(No malicious items detected)
Registry Data Items Infected:
(No malicious items detected)
Folders Infected:
(No malicious items detected)
Files Infected:
C:\WINDOWS\system32\netsetup.exe (Worm.Autorun) -> No action taken. [5538515242484730563857535134365315385738010101010111]
C:\WINDOWS\system32\wextract.exe (Worm.Autorun) -> No action taken. [5538515242484730563857535134365315385738010101010111]
C:\WINDOWS\system32\ERUpdateHidden.EXE (Worm.Autorun) -> No action taken. [5538515242484730563857535134365315385738010101010111]
and i scaned them at jotti's
Filename: ERUpdateHidden.EXE
Status: Scan finished. 0 out of 21 scanners reported malware
File size: 1168896 bytes
Filetype: PE32 executable for MS Windows (GUI) Intel 80386 32-bit
MD5: 4bfa1831bdc58b5e7f077892e8b694e6
SHA1: 11647d69ce7fd25bad69d2089739a3c76eeabcc9
Filename: netsetup.exe
Status: Scan finished. 0 out of 21 scanners reported malware.
File size: 329728 bytes
Filetype: PE32 executable for MS Windows (GUI) Intel 80386 32-bit
MD5: 04d08be5f163c108bafe2988182f62c2
SHA1: 6d359bfc9f19e046ccb5680240e6f48ada392c26
Filename: wextract.exe
Status: Scan finished. 0 out of 21 scanners reported malware.
File size: 65024 bytes
Filetype: PE32 executable for MS Windows (GUI) Intel 80386 32-bit
MD5: 2fcca89ea18cbabad85b47d8d0cc375b
SHA1: 7c8e22667d62ef3dcf0ac80b3139c1768d5286e2
thanks
-
well i doin't think i would use nothing from pcsecurityshield because there is a lot of good free
stuff out there and it looks like thay use BitDefender so why not just use BitDefender
thay also use comodo as there Shield Firewall and comodo is free
hxxp://www.pcsecurityshield.com/
-
hello
i'm getting this one also
Malwarebytes' Anti-Malware 1.34
Database version: 1820
Windows 5.1.2600 Service Pack 3
3/5/2009 9:43:35 AM
mbam-log-2009-03-05 (09-43-26).txt
Scan type: Quick Scan
Objects scanned: 63892
Time elapsed: 1 minute(s), 58 second(s)
Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 2
Memory Processes Infected:
(No malicious items detected)
Memory Modules Infected:
(No malicious items detected)
Registry Keys Infected:
(No malicious items detected)
Registry Values Infected:
(No malicious items detected)
Registry Data Items Infected:
(No malicious items detected)
Folders Infected:
(No malicious items detected)
Files Infected:
C:\WINDOWS\system32\wextract.exe (Trojan.Vundo) -> No action taken.
C:\WINDOWS\system32\ERUpdateHidden.EXE (Trojan.Vundo) -> No action taken.
VirSCAN.org Scanned Report :
Scanned time : 2009/03/05 09:48:30 (PST)
Scanner results: All Scanners reported not find malware!
File Name : ERUpdateHidden.EXE
File Size : 1168896 byte
File Type : PE32 executable for MS Windows (GUI) Intel 80386 32-bit
MD5 : 4bfa1831bdc58b5e7f077892e8b694e6
SHA1 : 11647d69ce7fd25bad69d2089739a3c76eeabcc9
Online report : http://virscan.org/report/bd592ff72e69e295...5be92f6d55.html
Scanner Engine Ver Sig Ver Sig Date Time Scan result
a-squared 4.0.0.32 20090305045332 2009-03-05 3.48 -
AhnLab V3 2009.03.05.03 2009.03.05 2009-03-05 1.55 -
AntiVir 7.9.0.100 7.1.2.127 2009-03-05 1.86 -
Antiy 2.0.18 20090305.2210017 2009-03-05 0.12 -
Authentium 5.1.1 200903041747 2009-03-04 1.46 -
AVAST! 3.0.1 090305-0 2009-03-05 0.04 -
AVG 7.5.52.442 270.11.8/1985 2009-03-05 2.37 -
BitDefender 7.81008.2743764 7.23981 2009-03-05 3.74 -
CA (VET) 9.0.0.143 31.6.6382 2009-03-05 8.01 -
ClamAV 0.94.2 9073 2009-03-05 1.40 -
Comodo 3.8 986 2009-03-05 0.46 -
CP Secure 1.1.0.715 2009.03.05 2009-03-05 7.95 -
Dr.Web 4.44.0.9170 2009.03.05 2009-03-05 4.95 -
F-Prot 4.4.4.56 20090304 2009-03-04 2.00 -
F-Secure 5.51.6100 2009.03.05.06 2009-03-05 0.56 -
Fortinet 2.81-3.117 10.120 2009-03-05 0.89 -
GData 19.3654/19.249 20090305 2009-03-05 6.95 -
ViRobot 20090305 2009.03.05 2009-03-05 0.41 -
Ikarus T3.1.01.45 2009.03.05.72386 2009-03-05 5.75 -
JiangMin 11.0.706 2009.03.05 2009-03-05 1.72 -
Kaspersky 5.5.10 2009.03.05 2009-03-05 0.50 -
KingSoft 2009.2.5.15 2009.3.5.21 2009-03-05 0.68 -
McAfee 5.3.00 5543 2009-03-04 2.86 -
Microsoft 1.4405 2009.03.05 2009-03-05 5.91 -
mks_vir 2.01 2009.03.05 2009-03-05 3.12 -
Norman 6.00.06 6.00.00 2009-03-05 8.01 -
Panda 9.05.01 2009.03.04 2009-03-04 1.87 -
Trend Micro 8.700-1004 5.882.03 2009-03-05 0.05 -
Quick Heal 10.00 2009.03.05 2009-03-05 1.14 -
Rising 20.0 21.19.32.00 2009-03-05 1.25 -
Sophos 2.84.1 4.39 2009-03-05 2.51 -
Sunbelt 5022 5022 2009-03-04 0.59 -
Symantec 1.3.0.24 20090304.017 2009-03-04 0.08 -
nProtect 20090305.02 3243337 2009-03-05 5.52 -
The Hacker 6.3.2.7 v00272 2009-03-04 0.52 -
VBA32 3.12.10.1 20090304.1443 2009-03-04 8.06 -
VirusBuster 4.5.11.10 10.101.35/966288 2009-03-05 2.62 -
thanks
B)
-
hello
sounds like your in selective startup click on start then run and type msconfig then click ok
when the system configuration utility starts choose normal startup then click ok and it should
ask you to restart the pc
it should fix it as long as theres no other problems sometimes when the pc crashes it will go
into selective startup
-
hello
i'm finding it also but when i right click scan msmsgs.exe Mbam doin't say nothing so i scaned
it at virscan and found nothing
i do not use windows messenger at all
Malwarebytes' Anti-Malware 1.34
Database version: 1790
Windows 5.1.2600 Service Pack 3
2/21/2009 7:25:28 PM
mbam-log-2009-02-21 (19-25-20).txt
Scan type: Full Scan (C:\|)
Objects scanned: 103038
Time elapsed: 9 minute(s), 51 second(s)
Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 1
Memory Processes Infected:
(No malicious items detected)
Memory Modules Infected:
(No malicious items detected)
Registry Keys Infected:
(No malicious items detected)
Registry Values Infected:
(No malicious items detected)
Registry Data Items Infected:
(No malicious items detected)
Folders Infected:
(No malicious items detected)
Files Infected:
C:\WINDOWS\$NtUninstallKB887472$\msmsgs.exe (Trojan.Autorun) -> No action taken. [6722202021207170231766202070702423226819212423692217691924671923]
virscan log
VirSCAN.org Scanned Report :
Scanned time : 2009/02/22 11:30:10 (CST)
Scanner results: All Scanners reported not find malware!
File Name : msmsgs.exe
File Size : 1694208 byte
File Type : PE32 executable for MS Windows (GUI) Intel 80386 32-bit
MD5 : 74e6e96c6f0e2eca4edbb7f7a468f259
SHA1 : 1b4729d1bd15e4d48422ecb5730959390c0be1c7
Online report : http://virscan.org/report/4835c1051421c251...91e32cc194.html
Scanner Engine Ver Sig Ver Sig Date Time Scan result
a-squared 4.0.0.32 20090221170551 2009-02-21 2.62 -
AhnLab V3 2009.02.21.00 2009.02.21 2009-02-21 1.12 -
AntiVir 7.9.0.87 7.1.2.59 2009-02-21 1.87 -
Antiy 2.0.18 20090222.2199698 2009-02-22 0.12 -
Authentium 5.1.1 200902211511 2009-02-21 1.19 -
AVAST! 3.0.1 090221-0 2009-02-21 0.09 -
AVG 7.5.52.442 270.11.2/1965 2009-02-21 1.95 -
BitDefender 7.81008.2680327 7.23804 2009-02-22 2.54 -
CA (VET) 9.0.0.143 31.6.6368 2009-02-21 4.61 -
ClamAV 0.94.2 9022 2009-02-22 0.32 -
Comodo 3.8 986 2009-02-20 0.45 -
CP Secure 1.1.0.715 2009.02.21 2009-02-21 7.11 -
Dr.Web 4.44.0.9170 2009.02.22 2009-02-22 4.06 -
F-Prot 4.4.4.56 20090221 2009-02-21 1.17 -
F-Secure 5.51.6100 2009.02.22.01 2009-02-22 0.10 -
Fortinet 2.81-3.117 10.71 2009-02-21 0.31 -
GData 19.3306/19.233 20090222 2009-02-22 3.34 -
ViRobot 20090220 2009.02.20 2009-02-20 0.98 -
Ikarus T3.1.01.45 2009.02.22.72336 2009-02-22 3.75 -
JiangMin 11.0.706 2009.02.21 2009-02-21 1.50 -
Kaspersky 5.5.10 2009.02.22 2009-02-22 0.07 -
KingSoft 2009.2.5.15 2009.2.21.20 2009-02-21 0.67 -
McAfee 5.3.00 5532 2009-02-21 3.11 -
Microsoft 1.4306 2009.02.22 2009-02-22 4.86 -
mks_vir 2.01 2009.02.21 2009-02-21 2.78 -
Norman 6.00.06 6.00.00 2009-02-20 8.01 -
Panda 9.05.01 2009.02.21 2009-02-21 1.66 -
Trend Micro 8.700-1004 5.860.23 2009-02-21 0.03 -
Quick Heal 10.00 2009.02.20 2009-02-20 1.41 -
Rising 20.0 21.17.52.00 2009-02-21 1.74 -
Sophos 2.83.3 4.38 2009-02-22 2.60 -
Sunbelt 4819 4819 2009-02-16 0.50 -
Symantec 1.3.0.24 20090221.004 2009-02-21 0.07 -
nProtect 20090222.01 3175936 2009-02-22 3.87 -
The Hacker 6.3.2.4 v00263 2009-02-21 0.58 -
VBA32 3.12.10.0 20090221.1740 2009-02-21 2.02 -
VirusBuster 4.5.11.10 10.101.21/930783 2009-02-21 1.61 -
thanks
-
well thank you guys i'll try not to get to falling down dk lol
-
hello
sorry i'm late again lol
well i'v updated 5 pc's so far to Mbam 1.31 with no problems
sometimes i also get the error about my firewall when updating from securitywonks
but not from Malwarebytes i did also sometimes with Mbam 1.30
i see you also need info from Zonealarm users i got Zonealarm pro on 2 pc's from there
giveaway not to long ago and i'v had no problems scanning ether pc's with Mbam 1.31
this pc is a desktop
AMD Athlon 64 3500+ win xp pro mce sp3 2gb memory
running with
Avira Antivir Pe
zonealarm pro 8.0.059.000
i'v got the full version of Mbam 1.31 but run it on-demand
also Superantispyware pro and run it on-demand
Malwarebytes' Anti-Malware 1.31
Database version: 1485
Windows 5.1.2600 Service Pack 3
12/10/2008 7:01:32 PM
mbam-log-2008-12-10 (19-01-32).txt
Scan type: Quick Scan
Objects scanned: 49696
Time elapsed: 47 second(s)
Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0
Malwarebytes' Anti-Malware 1.31
Database version: 1485
Windows 5.1.2600 Service Pack 3
12/10/2008 7:11:57 PM
mbam-log-2008-12-10 (19-11-57).txt
Scan type: Full Scan (C:\|)
Objects scanned: 92754
Time elapsed: 9 minute(s), 56 second(s)
Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0
this pc is a laptop
mobile AMD Athlon 2400+ win xp home sp3 512mb memory
running with
Avira Antivir Pe
Zonealarm pro 8.0.059.000
on-demand
Mbam 1.31 free
Superantispyware free
Malwarebytes' Anti-Malware 1.31
Database version: 1485
Windows 5.1.2600 Service Pack 3
12/10/2008 7:04:24 PM
mbam-log-2008-12-10 (19-04-24).txt
Scan type: Quick Scan
Objects scanned: 48438
Time elapsed: 4 minute(s), 0 second(s)
Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0
Malwarebytes' Anti-Malware 1.31
Database version: 1485
Windows 5.1.2600 Service Pack 3
12/10/2008 7:32:17 PM
mbam-log-2008-12-10 (19-32-17).txt
Scan type: Full Scan (C:\|)
Objects scanned: 78809
Time elapsed: 27 minute(s), 30 second(s)
Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0
thanks
-
hello
well i just got 4 out of 5 pc's updated to Mbam 1.29 yesterday all win-xp 2 sp2 and 3 sp3
with no problems
now i got the same 4 updated to Mbam 1.30 with no problems
i'v got to get to the 5th pc later at my dads but i'm sure it will be ok
Malwarebytes' Anti-Malware 1.30
Database version: 1310
Windows 5.1.2600 Service Pack 3
10/23/2008 9:12:44 AM
mbam-log-2008-10-23 (09-12-44).txt
Scan type: Quick Scan
Objects scanned: 46166
Time elapsed: 1 minute(s), 21 second(s)
Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0
thanks
-
hello
updated Mbam to 1.27 with no problem
Malwarebytes' Anti-Malware 1.27
Database version: 1130
Windows 5.1.2600 Service Pack 3
9/8/2008 7:19:37 PM
mbam-log-2008-09-08 (19-19-37).txt
Scan type: Quick Scan
Objects scanned: 41718
Time elapsed: 1 minute(s), 38 second(s)
Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0
Memory Processes Infected:
(No malicious items detected)
Memory Modules Infected:
(No malicious items detected)
Registry Keys Infected:
(No malicious items detected)
Registry Values Infected:
(No malicious items detected)
Registry Data Items Infected:
(No malicious items detected)
Folders Infected:
(No malicious items detected)
Files Infected:
(No malicious items detected)
thanks
-
hello
updated Mbam on 4 pc's today within mbam and no problems the only thing i noticed is that
after mbam updated and the installer ran it did not restart mbam and check for updates again
my 2 pc's
pc 1
Malwarebytes' Anti-Malware 1.25 full
Database version: 1064
Windows 5.1.2600 Service Pack 2
11:11:01 PM 8/17/2008
mbam-log-08-17-2008 (23-11-01).txt
Scan type: Quick Scan
Objects scanned: 40782
Time elapsed: 2 minute(s), 51 second(s)
pc 2
Malwarebytes' Anti-Malware 1.25 free
Database version: 1064
Windows 5.1.2600 Service Pack 3
10:43:36 PM 8/17/2008
mbam-log-08-17-2008 (22-43-36).txt
Scan type: Quick Scan
Objects scanned: 40821
Time elapsed: 1 minute(s), 55 second(s)
thanks
-
well here is a few also
comodo boclean
http://www.comodo.com/boclean/CBO_download.html
SpywareGuard 2.2 to go with spywareblaster
http://www.javacoolsoftware.com/spywareguard.html
http://www.javacoolsoftware.com/spywareblaster.html
SpyBot-Search & Destroy
http://www.safer-networking.org/en/home/index.html
Spyware Terminator
http://www.spywareterminator.com/
-
hello
here is some info on behavior blockers
right now i'm just using Online Armor a firewall with HIP'S
Sandbox, HIPS, Virtualization, & System Hardening apps
http://www.spywarewarrior.com/viewtopic.php?t=22195
http://wiki.castlecops.com/Lists_of_freewa...havior_blockers
http://wiki.castlecops.com/HIPS/IDP_programs/services <--- Comparison
-
hello
updated both my pc's to mbam 1.24 from in the program with no problems
pc 1
Malwarebytes' Anti-Malware 1.24
Database version: 1012
Windows 5.1.2600 Service Pack 2
11:17:41 PM 7/30/2008
mbam-log-7-30-2008 (23-17-41).txt
Scan type: Quick Scan
Objects scanned: 39272
Time elapsed: 4 minute(s), 47 second(s)
Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0
pc 2
Malwarebytes' Anti-Malware 1.24
Database version: 1012
Windows 5.1.2600 Service Pack 3
7:29:04 PM 7/30/2008
mbam-log-7-30-2008 (19-29-04).txt
Scan type: Quick Scan
Objects scanned: 40306
Time elapsed: 2 minute(s), 11 second(s)
Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0
thanks
Problem with lifetime license
in Malwarebytes 3.0 Beta [ Closed ]
Posted
hello
as a original Beta tester of the first Versions Malwarebytes since July 19, 2007
i was thinking on trying this new 3.0 Beta but my lifetime license i got for testing will not work
this happened before with a version in 2015 and i asked support for help to reset and
they said they could not find my license but would fix it anyhow and it worked for like
6 months and now will not accept my license anymore
so not sure what to do
could i get some help or should i ask support again
thanks
James