eliuri
Honorary Members-
Posts
75 -
Joined
-
Last visited
Reputation
0 NeutralRecent Profile Visitors
The recent visitors block is disabled and is not being shown to other users.
-
Possible False Positive DBUtil.sys in Windows Temp folder
eliuri replied to eliuri's topic in File Detections
Yes, it is that same Dell 1545 Can I simply disable the relevant services to stop it from doing this? I'm mostly concerned that some of those programs you're suggesting I uninstall might actually be needed. Since it's an outdated Dell laptop,I'd have no way of getting those back if I simply uninstall... ******************************** It's odd that only one out of all those 64 detection engines at virus total--including Malwarebytes-- flags that file when I upload it -
Possible False Positive DBUtil.sys in Windows Temp folder
eliuri replied to eliuri's topic in File Detections
I ran the FRST within the past 10 days and uploaded it, and its still on my desktop. Hopefully, this is what you now need mbst-grab-results.zip -
Possible False Positive DBUtil.sys in Windows Temp folder
eliuri replied to eliuri's topic in File Detections
Thank you, Porthos... Yes, I do get detection notices of this every few days now. AFAIK I havent downloaded or installed anything from Dell in years. "Summary: Dell has released remediation for a security vulnerability affecting the dbutil_2_3.sys driver packaged with Dell Client firmware update utility packages and other products." https://www.dell.com/support/kbdoc/en-us/000186019/dsa-2021-088-dell-client-platform-security-update-for-dell-driver-insufficient-access-control-vulnerability This is baffling, since I cant find this vulnerable driver: dbutil_2_3.sys anywhere on my laptop Would you kindly elucidate why i keep getting this exploit notification in spite of quarantine of that .Temp file? How is Dell installing/ reinstalling it? Thank you eliuri -
Possible False Positive DBUtil.sys in Windows Temp folder
eliuri replied to eliuri's topic in File Detections
I've only seen it as a Temp file in Windows folder--only detected today. I re-quarantined it and did full scan. No malware -
Possible False Positive DBUtil.sys in Windows Temp folder
eliuri replied to eliuri's topic in File Detections
I think this is the zipped file thats relevant af397ef28e484961ba48646a5d38cf54.zip -
The following Windows/Temp/DBUtil .sys file was detected in MB real time detection today. Attached find zipped files of this detection as well as MB .txt file of the event Neither file was found as malware by VirusTotal after release from Quarantine Nor did i download/install anything from Dell in a very long time Please evaluate possibility of false positive Thank you eliuri Windows 7 SP1 Malwarebytes Premium 4.3.0 af397ef28e484961ba48646a5d38cf54.db.zip af397ef28e484961ba48646a5d38cf54.zip dbutil-log-malwarebytes-jan 17.txt
-
Thanks, Porthos: I'm assuming that will work as a Premium program once I install the License Key. Am I correct? Incidentally I did try those two standalone Windows Updates you mentioned above. They will neither install nor even save from the MS website. Some notification about those being possibly corrupt files, and thus not safe. Odd.. Anyhow, thanks `eliuri
-
Sorry. I didnt explain it well. It was not the dskchk that ran "many hours"..It was the repair upon reboot... I've had that disk issue for years, as well as those missing WUs, yet the laptop does basically function well.. Thanks much for that sequence list for Windows Updates. In case I feel up to going through that ordeal sometime soon As the moment, most things I need it to to on it are basically working well. Except for the newer version of Malwarebytes, which probably won't install. The old one--which is now installed- is still providing some protection as it's definitions are being updated. In case I should need to uninstall--reinstall my current Malwarebytes, I recall there was some "pre-SHA-2 signing" version of the MB installation file posted somewhere on this forum about a year or so ago. Would you kindly let me know where that is, so I could save it , in case I should need it.. Meanwhile : I'm working on shifting to another device, which runs Windows 10. I already installed the new MB on that one..I doubt this Dell Laptop could run Windows 10 successfully. And I'd need to purchase Windows 10 for this device anyhow.. I basically need for this Win 7 Dell laptop to continue limping on for another few months until that transition to that newer device is completed So at this point, I'd like to save that "pre-SHA-2 Code Signing" MB installation file, which was once referenced on this forum, just in case I should need to do a reinstall of Malwarebytes on this Dell lpatop Thanks again for your input -eliuri
-
I've run chkdsk many times..So i know there r corrupted files..I've tried the repair .It ran for many hours, but it didnt fix it all..So i'm left with what i now have..But it's functional enough for my needs as they are now I doubt i have the skills to replace the hard drive as suggested above...And I'm not even sure that would fix the WUs issues..those go back long time. Would be nice to get that SH-2 update installed though. but I'm noticing in my update history that those KB's in the 3,000s all failed. It was about then (years ago) that I disabled Windows Updates entirely. I remember it was extremely frustrating to fix the WU. But was thinking maybe this SH-2 Code is just a one shot update. Seems maybe it just isn't? Thanks for now...I'll read those instructions anyhow.. `Eliuri
-
Thank you both. I'm attaching the MBST zip file as requested above. I should mention that in the course of running the FRST, I got notification that my C drive was corrupt and unreadable and should run cHKDSK which is something I had already known and CHKDSK didnt fully repair and My question is if attempting ot just install the standalone might somehow damage--an already damaged--laptop if the attempted install fails? Somehow, I dont think my system could withstand a whole bunch of WUs, which is probably why I disabled WU years ago. Thanks again -eliuri mbst-grab-results.zip
-
Hello: I'm running Windows 7 SP1 64bit. I have not installed any Windows updates since 2016. I actually find my laptop more stable this way. I do have Malwarebytes Premium installed: Version 4.3.0.98. I keep being prompted to install the new Malwarebytes version. But that I'd need a missing Windows Update in order to install it. I'm assuming this is the one I need for that: https://support.microsoft.com/en-us/topic/sha-2-code-signing-support-update-for-windows-server-2008-r2-windows-7-and-windows-server-2008-september-23-2019-84a8aad5-d8d9-2d5c-6d78-34f9aa5f8339 Question: How straightforward would it be to merely install this update as a standalone without going through that long list of 29 WU updates to Win 7 which I've deliberately ignored. Windows Update seemed to be causing too much instability, so i disabled it years ago. I think for good reason... So now my question is: Can I just install that SHA 2 Code signing update without prior installation of those other updates? How smooth a process is this likely to be? What would be optimal way to do this without going through al those other ignored updates? Thanks Eliuri Windows 7 SP1 64bit Malwarebytes 4.3.0.98
-
BSOD-PC Freezes during MB Scan-New Installation
eliuri replied to eliuri's topic in Resolved Malware Removal Logs
- I ran check disk..there were no issues found -System Restore works perfectly when not running full Malwarebytes scans. There might be incompatibility between SR and MB -the laptop was that of a close relative who had no issues with it at all.. ...It was not a business laptop -I have that built-in cam temporarily disabled by intent -What is the issue with my DNS servers?...So far my connections all seem fine. What might be possible connection-if any- between DNS server and computer display freezing during a complete scan? - I can uninstall Ccleaner....but first I'd like to make sure that the built in Microsoft clean disk can delete temp files...Why is it that experts no longer recommend it? I only run Custom Clean with it to delete temporary internet files of my browsers. I do not use its many other functions. I dont think it's running in background while doing the Malwarebyte scans --So far, the only program on it which is not functioning as it's supposed to is Malwarebytes Trial Premium. I installed it about a day ago.. It is now in Premium Trial period. I have disabled it for now..and all is fine..System Restore works well now...I tested it --My outstanding question is: When my 14 day trial period is over, will I still be able to scan individual files/programs via the context menu? This might very well be the only part of Malwarebytes I really need as far as I can tell Thanks for your consideration -eliuri -
BSOD-PC Freezes during MB Scan-New Installation
eliuri replied to eliuri's topic in Resolved Malware Removal Logs
I always report scan findings to this forum. To that Sub-forum on false positives. So far, they've turned out to be false positives after someone here looked into them. Bad sites -or potentially bad sites-however, are sometimes blocked. It does seem the paid version offers significantly better protection however. As you say above.. -
BSOD-PC Freezes during MB Scan-New Installation
eliuri replied to eliuri's topic in Resolved Malware Removal Logs
Yes, I was considering it. I already have a premium license, but using it on a Win7 Laptop. However, if I can get MB Free to scan individual downloaded files and programs via the context menu, I wont purchase the Premium if these scanning issues continue..The Free Version might suffice, if it can do that.. So far all full scans on my Win 7 laptop-using the Premium--have either found no malware or the findings were false positives, which created extra headaches...The MB browser extension however has blocked sites, which sometimes were potentially malicious... Thanks again `eliuri -
BSOD-PC Freezes during MB Scan-New Installation
eliuri replied to eliuri's topic in Resolved Malware Removal Logs
OK..Thanks...A custom or quick scan runs perfectly well...with no freeze-ups..I expect to scan anything I download with MB context menu... I also have MB add-on on my Firefox and Chrome..so I don't think I really need need a full-scan anymore. I'm not sure the schedule scan function can be set for quick scan though?