Origin

Yes that would be great, I can design something too Oh and for the ladies as well

lol funny

Thanks guys, here are the sig versions:

Thanks for the advice I like the reflection but what I can do is cut it short so it won't look like a W I'm in the processes of making more, will keep that in mind, thank you everyone for the comments, they are highly appreciated

Hello Monkeyboy, in this case it would be better to format. Virut infects all .exe and .scr files in your computer to a point where they get corrupted and stop working. That tool will work in theory to remove some Virut variants but since virut is already in your system it already spread to many files. Why you say a format is recommended, lets say Virut infected a crucial system file, your security software will sense the infection and delete it and at the same time deleting the crucial system file rendering your system useless. If you backed up an .exe or .scr or any zipped files in your external hard drive you will have to format that as well. More information can be found in Miekies blog here: http://miekiemoes.blogspot.com/2009/02/vir...s-throwing.html

Hello, please go to this topic and download the hotfix for the new version of MBAM: http://www.malwarebytes.org/forums/index.php?showtopic=19299 See if that fixes your problem.

You have a Rootkit my friend Follow prairie dog's advice so you can have it removed

I was doing some photoshoping and decided to do something for Malwarebytes, any help on improvements would be gladly appreciated. Oh and yes I do plan on scaling them for sig purposes Version 1: Version 2: Which one do you prefer, like/dislike?

This should be helpful: I'm infected - What do I do now? http://www.malwarebytes.org/forums/index.php?showtopic=9573 Fixes for common problems and Error Codes, Frequently Asked Questions http://www.malwarebytes.org/forums/index.php?showtopic=10138

My guess is that it has to do with the new updates that the older versions did not have: * (FIXED) Installer uses /updateshowdialog now instead of /runupdate. * (FIXED) /runupdate no longer displays program update dialog. Only /updateshowdialog does. * (FIXED) Problem removing registry items with (default) values. * (FIXED) Minor issues with 32-bit context menu. (64-bit coming soon). * (FIXED) Multiple significant issues with protection module. * (ADDED) Scanner returns error codes (error levels) for batch file users. * (ADDED) Protection module now logs errors and threats to a log file.

That's the thing this day, people are using very powerful tools to try to relieve the infection but certain tools like ComboFix were not meant to be used to remove small infections that can be prevented by a Anti-Virus and using these tools could render their computer useless that is why ComboFix is used under the supervision of trained helpers but it is sad to say that people are using it on a day to day basis. Renaming it also works but you have to rename it to a system file like winlogon.exe for instance.

I'm pretty sure its Rootkit related if the virus has disabled Malwarebytes. Have you tried the suggestion given by MysteryFCM?

Yes this does happen unfortunately but keep in mind that today's malware is even more hard to remove then ever. What causes Malwarebytes to stop working at times are Rootkits, Rootkits are the cause for it crashing or not installing. Tell me what kind of infections caused Malwarebytes to stop working? I'm pretty sure it had to do with a rogue program which came with a Rootkit.

That's a sign of a RootKit, please follow AdvancedSetup's advice and if the problem persists then do the following: Please download the current version of HijackThis from HERE Double click and run the installer. It will install to C:\Program Files\Trend Micro\HijackThis\hijackthis.exe After installing, you should get the user agreement, press accept and Hijack This will run. Select Do a system scan and save a log file. This will open a notepad file of everything Hijack This found, copy everything from the log and start a new topic here containing that log: http://www.malwarebytes.org/forums/index.php?showforum=7

Hello, can you be more specific, what do you mean by can't get it to run? Your not able to get it to install or you already have it installed but it won't run? Try to rename Malwarebytes and see if it runs.

Speaking from experience, today I came in contact with the Virut virus despite my Anti Virus and Firewall with HIPS protection though my firewall did help, it notified me of reader_s which is a sign of Virut and I blocked all connection to this file. Thinking I had prevented the virus from entering my system, I carried on my usual activities but I wanted to make sure it was gone so I ran a system scan with HJT and the bugger was still there: O4 - HKLM\..\Run: [reader_s] C:\WINDOWS\System32\reader_s.exe That appeared twice in HijackThis, now anyone who has knowledge of interpreting HJT lines knows reader_s is not a good sign and now definitely knows that you have the Virut virus in your computer. So what now, Game Over? While I knew it was, I kept going on with trying to disinfect it, I used MBAM to try to relieve the infection which it slightly did by deleting the two reader_s files and some other malignant files. My browser was now back to normal and the speed as well. Unfortunately I spoke too soon, after a while of using my browser it started to slow down incredibly. I decided to run MBAM again to see if it could find anything but it would freeze. Now freezing is a good sign of a Rootkit, plus it crashing gave it away. I ran The Avenger but no dice, it didn't find any RootKits. I then decided to run GMER to see if there was any Rootkit about my system, but windows didn't not recognize GMER at all another sign of Virut. So then I tried ComboFix, I ran it, it did discover reader_s and as I figured two Rootkits, one being LEGACY. I then made ran CFScript to delete some infected file, folders, and reg keys and then rebooted my computer. Once in my account I noticed my wall paper had been removed but its just due to CF. I tested my browser but it was slower then ever and took forever to load pages. It took ages just to load google. In conclusion, you can say that MBAM does remove Virut per say as it removes reader_s.exe being a Virut variant therefore what RubbeR DuckY says is true in some way. My solution: Format. I'm back to normal now backed up some of my PSD files and pictures. I messed up by deleting the screen shots of the process but oh well. By the way for those of you who want to read more about Virut, read the article is Miekies blog which most of you already might have read but for those who haven't: http://miekiemoes.blogspot.com/2009/02/virut-and-other-file-infectors-throwing.htmlHere is a can explaining it for those of you too lazy to visit the link Your system is infected with a polymorphic file infector called Virut. Virut is capable of infecting all the machine's executable files (.exe) and screensaver files (.scr). However, the problem is that the virus has a number of bugs in its code, and as a result, it may misinfect a proportion of executable files and therefore, the files are corrupted beyond repair. As of now, security experts suggest that a format and clean install, or destructive recovery if you have an OEM recovery partition, is the best way to clean the infection and it is the best and safest way to return the machine to its normal working state. Backup all your documents and important items (personal data, work documents, etc) only. DO NOT backup any executable files (softwares) and screensavers (*.scr). It attempts to infect any accessed .exe or .scr files by appending itself to the executable. Also, avoid backing up compressed files (zip/cab/rar) files that have .exe or .scr files inside them. Virut can penetrate and infect .exe files inside compressed files too. Recent variants also modify htm, html, asp and php files. Do not back up to another machine, as it may become compromised. Burn to DVD/CD, or to an external drive which has nothing else on it, and which you can format should it happen to become infected from the backups. ~Origin