brutons
Honorary Members-
Posts
41 -
Joined
-
Last visited
Content Type
Events
Profiles
Forums
Everything posted by brutons
-
First time use - is it safe to clean..
brutons replied to brutons's topic in Malwarebytes AdwCleaner
Thank you Jerome -
Hello. This is my first time using ADW cleaner and I am a little nervous at cleaning the suggested results. Please would someone kindly look over my results and confirm whether or not it is safe to proceed - thank you. The log file is as follows: # AdwCleaner v6.047 - Logfile created 24/06/2017 at 16:18:44 # Updated on 19/05/2017 by Malwarebytes # Database : 2017-06-23.1 [Server] # Operating System : Windows 10 Pro (X64) # Username : P300 - P300-PC # Running from : C:\Users\P300\Desktop\adwcleaner_6.047.exe # Mode: Scan # Support : https://www.malwarebytes.com/support ***** [ Services ] ***** No malicious services found. ***** [ Folders ] ***** Folder Found: C:\ProgramData\54F3DE4E-B7BA-4EBD-8B3B-385D272CC583 Folder Found: C:\ProgramData\Application Data\54F3DE4E-B7BA-4EBD-8B3B-385D272CC583 ***** [ Files ] ***** No malicious files found. ***** [ DLL ] ***** No malicious DLLs found. ***** [ WMI ] ***** No malicious keys found. ***** [ Shortcuts ] ***** No infected shortcut found. ***** [ Scheduled Tasks ] ***** No malicious task found. ***** [ Registry ] ***** Key Found: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670} Key Found: HKU\S-1-5-21-991676342-4254250601-2456201980-1000\Software\Microsoft\Internet Explorer\SearchScopes\{AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} Key Found: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} Key Found: [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} ***** [ Web browsers ] ***** No malicious Firefox based browser items found. Chrome pref Found: [C:\Users\P300\AppData\Local\Google\Chrome\User Data\Default\Web data] - uk.ask.com [!] You may need to disable the Chrome synchronization from your Google account in order to fully remove the malicious preferences. Please consult this Google help: https://support.google.com/chrome/answer/3097271?hl=en [!] ************************* C:\AdwCleaner\AdwCleaner[S0].txt - [1855 Bytes] - [24/06/2017 16:18:44] ########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1928 Bytes] ########## Thank you for your help.
-
Installation issue for MBAM 3.0.5.1299
brutons replied to brutons's topic in Malwarebytes for Windows Support Forum
That's great, thanks Aura really appreciate your rapid responses -
Installation issue for MBAM 3.0.5.1299
brutons replied to brutons's topic in Malwarebytes for Windows Support Forum
Thanks very much to you, Aura, and also Marktheshark. I followed your instructions, Aura, and it seems to have installed OK by having selected "ignore" when the error message came up. I've since run a scan, updated and re-activated my licence and it seems to be fine. Am I ok therefore to continue as I am rather than carrying out the FRST solution also? Thanks again -
Greetings to all, and Happy New Year! Please could I request some assistance from the forum with an installation/upgrade issue? I have been using v3.0 for a few weeks now and when I rebooted my PC earlier today, MBAM stated it needed to install an upgraded version. I accepted the prompts and it went to install and reached approx. 2/3 complete when I received an error message: "an error occurred while trying to replace the existing file: DeleteFile failed; Code 5" - please see attached screenshot for full details. I then uninstalled MBAM completely (albeit that the clean uninstall .exe option on the MBAM site did not seem to work satisfactorily) and tried reinstalling a new clean version. This again leaad to the same error message arising. I do not know how to proceed from here and am obviously without MBAM protection at all, now. I'm operating a Lenovo ThinkStation, with Windows 10 Pro, version 1607, OS Build 14393.576 and Norton Internet Security installed v.22.8.1.14. I'd greatly appreciate any help, please. Thanks
-
Thank you Mieke - I very much appreciate your help and reassurance. Best wishes Neil
-
Thank you for your reassurance, Mieke. What troubles me somewhat is that I have 3 other PCs on this home network, all of which are configured similarly to mine, i.e. Windows 10, Norton, MBAM & MBAE, however mine is the only one picking up these so called false positives. Is there a good reason why that would be, do you think? I'm also a little unsettled by the increasing frequency - not wishing to sound neurotic, though!! Thanks again Neil
-
-
Hello All, I'm posting again (just some 5 days since the last) because Norton has detected 2 more temp files which it identifies as threats within MBAM files: 1. Trojan.KillAV; and 2. Ransom.Bucbi (screenshot attached). I'm a little concerned as I have now had 5 of these in the past month, whereas previously they would occur no more than once or twice a year. I'm presuming that they are perhaps false-positives again (due to their being located in MBAM files) but would be very grateful for that reassurance and any advice on how - if possible - I might minimise these occurrences. Should I also delete the quarantined files? Many thanks Neil
-
Thanks again, let's hope Norton take note!
-
Thanks very much for this, Rich. I kind of suspected the same. As always, I really appreciate the speed and efficiency of the Forum's support
-
Hello All - hope you're well. Just returning with what seems like perhaps a false positive, but would very much welcome your experience to confirm this to be the case. Norton Internet Security came up with a threat identified as "Infostealer.Napolar" ("low [technical] threat"), listing 4x tmp files apparently derived from MBAM. Have attached a screenshot. I'd welcome any input - apologies if I've missed a thread already identifying this. Best wishes and thanks
-
Hi All! I would be grateful for any help from the forum on the following, please. Norton Internet Security flagged up an identified threat on my Lenovo P300 ThinkStation (Windows 10 Pro - Anniversary Update build/version 1607, also protected by MBAM and MBAE - both Premium) overnight stating the following: "Infected file: c:\program files (x86)\malwarebytes anti-malware\00011899.tmp - Removed", also stating "Threat name: Trojan.Zeroaccess downloaded from Unknown" The threat description and details according to Norton seem real enough (link: http://us.norton.com/security_response/writeup.jsp?docid=2011-071314-0410-99 ), so is this perhaps not a false-positive. The file was not identified or detected by MBAM or MBAE (less likely I guess) and appears to have been removed. Any help would - as ever - be greatly appreciated. Thanks
-
Windows 7 to 10 upgrade - uninstall MBAM first?
brutons replied to brutons's topic in Malwarebytes for Windows Support Forum
Hi daledoc1 - thank you very much for both your replies. I very much appreciate your advice and help - I will proceed as you have suggested. Thanks -
Hello. I would appreciate any help from the forum in advising on preparing for a Windows 7 to Windows 10 upgrade. I am unsure as to whether I need to completely uninstall both MBAM and Anti-Exploit completely before activating the upgrade, and if so, do I need to complete a full clean removal of MBAM, together with deactivating my account. I have a Lenovo Thinkstation with Windows 7 (64 bit), Professional, SP1 Any help would be gratefully received. Thank you
-
Backdoor.Bot npf.sys - seems to have evaded MBAM Premium?
brutons replied to brutons's topic in Resolved Malware Removal Logs
Thank you very much. I will come back to you further tomorrow - I appreciate your help -
Backdoor.Bot npf.sys - seems to have evaded MBAM Premium?
brutons replied to brutons's topic in Resolved Malware Removal Logs
That's great, thank you. However, I am having a real problem updating the OS. When I run Windows Update, it tells me that there are only optional updates required, however when I check the Updates History there are a number of failed updates. I have used the Windows Fix-It tools and have tried individually installing some of the failed updates, however these will not install. Could you please offer any advice on how I can get the OS up to a supported version (i.e. SP2)? -
Backdoor.Bot npf.sys - seems to have evaded MBAM Premium?
brutons replied to brutons's topic in Resolved Malware Removal Logs
That's really good news. Is that all that needs to be done now, except for me to update my OS to SP2? -
Backdoor.Bot npf.sys - seems to have evaded MBAM Premium?
brutons replied to brutons's topic in Resolved Malware Removal Logs
Sorry - forgot to say, thanks for your efforts so far -
Backdoor.Bot npf.sys - seems to have evaded MBAM Premium?
brutons replied to brutons's topic in Resolved Malware Removal Logs
Oh OK - that sounds encouraging. The other guys on here, who advised me first, suggested that there may be remnants? -
Backdoor.Bot npf.sys - seems to have evaded MBAM Premium?
brutons replied to brutons's topic in Resolved Malware Removal Logs
The system is my 10-year old son's and I don't use it myself; thus I have obviously missed some of the issues arising...alas -
Backdoor.Bot npf.sys - seems to have evaded MBAM Premium?
brutons replied to brutons's topic in Resolved Malware Removal Logs
OK. Herewith attached is the information you required... Trust this is what you need mbar-log-2015-01-09 (18-49-42).txt system-log.txt FRST.txt Addition.txt -
Backdoor.Bot npf.sys - seems to have evaded MBAM Premium?
brutons replied to brutons's topic in Resolved Malware Removal Logs
Hello - thanks for your very quick response. I'll carry out the tasks you have asked for. The previous adviser noted that the OS version was unsupported now and I have now seen that there are a number of failed Windows updates. As per the previous adviser's recommendation, I have not done anything further with this until you advise. I shall now do the things you have asked me to...