Jump to content

robinb

Members
  • Posts

    49
  • Joined

  • Last visited

Everything posted by robinb

  1. I have 4 clients running AVG internet security and it is tagging mbam.exe and mbam.exe setup as threats. When 3 of my clients tried to open Malwarebytes, AVG popped up with a threat box. My clients clicked "allow" but it did not work. Malwarebytes popped up with a message saying " The system cannot find the file specified and gave an error of 715 (2,0) which when looking up told me to reinstall the program I went into add/remove but AVG wiped Malwarebytes out of Add/remove Programs I then proceeded to try to download the setup file from download.com and AVG again popped up and said that this is a threat so now i cannot even re install it This seems to be happening only in AVG Internet Security. I emailed AVG to tell them this program is not a threat I would like someone from Malwarebytes to contact AVG also so they can fix this and i can reinstall malwarebytes robin
  2. why won't anyone from malwarebytes answer this question since I did send the zipped file? robin
  3. so did you get the zip file and why is this happening? robin
  4. lets try this again- i am trying to send the zipped file now malware.zip malware.zip
  5. ok i will give me a bit to get onto the clients computer to get it robin
  6. on 4 separate computers of 4 separate clients I am seeing this. I quarantined them but could this be a bug? Registry Keys Infected: HKEY_CLASSES_ROOT\TypeLib\{df058c45-cd18-453e-8745-5a77f60722ab} (Adware.Gdown) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{b5a33c35-7298-4d15-8753-a2e851e2eab3} (Adware.Gdown) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{f0d2b812-752d-4af1-a2fb-968c4d8446db} (Adware.Gdown) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\CLSID\{e856b973-45fd-4559-8f82-eab539144667} (Adware.Gdown) -> Quarantined and deleted successfully. Registry Values Infected: (No malicious items detected) Registry Data Items Infected: (No malicious items detected) Folders Infected: (No malicious items detected) Files Infected: C:\WINDOWS\SYSTEM32\GTDownDE_87.ocx (Adware.Gdown) -> Quarantined and deleted successfully. robin
  7. i have avg, windows defender and malwarebytes running with no problems Just make sure you have all 3 set to run a different times so they do not conflict with each other and give each one at least 2-3hrs between each one. robin
  8. i tried it and yes it did load without a hiccup. and in mine after the scan the log file did popup. This was done through VM on Virtual PC 2--7 sp1 robin
  9. i am beta testing windows beta 7 and was wondering if malwarebytes will work on it, before i try i would like to know if it will work. robin
  10. nope but i rebooted and waited for the next day to see if it would do the scan and it did but thanks anyway robin
  11. I have the pro version of malwarebytes and it will not do a daily scan. It is set to scan at 2pm but nothing happens. My antivirus program Avira does its scan correctly at 6pm Also how come there is nothing here to set for a weekly scan- there should be What can i check to see why it will not do its daily scan? robin
  12. macafee site advisor is not bad- that is about the only mcafee product decent out there also add to this list: Security protection i do NOT recommend: 1. Ad-Aware (this security software is seriously lagging behind in protection) 2. AVG (very popular but missed more trojans than any other antivirus i used) 3. Norton (this antivirus has serious stability issues) 4. Webroot SpySweeper (mediocre removal and a big time resource hog) 5. Spywaredoctor (many of my clients got so many f/ps and it slowed down their computer to a crawl robin
  13. and to add to this: Out-of Band Microsoft Security Bulletin Advance Notification for December 2008 Issued: December 16, 2008 ******************************************************************** This is an advance notification of an out-of-band security bulletin that Microsoft is intending to release on December 17, 2008. The full version of the Microsoft Security Bulletin Advance Notification for December 2008 can be found at http://www.microsoft.com/technet/security/...n/ms08-dec.mspx. you can read it here http://news.bbc.co.uk/2/hi/technology/7784908.stm Recommendation on this website is that until Microsoft issues the patch tomorrow, you should be using another browser like Firefox. robin
  14. I should have posted this here instead. I was reading the forum and forgot where i was. This article is a bit long but it is worth reading http://www.theregister.co.uk/2008/08/22/anatomy_of_a_hack/ robin
  15. explain how you can whitelist around this? do you do something in the program? will there be an update so I can take them out of ignore? thanks robin
  16. Here is the developers log file- I took out the username for security Malwarebytes' Anti-Malware 1.30 Database version: 1446 Windows 5.1.2600 Service Pack 3 12/2/2008 12:18:16 PM mbam-log-2008-12-02 (12-18-08).txt Scan type: Quick Scan Objects scanned: 69345 Time elapsed: 7 minute(s), 19 second(s) Memory Processes Infected: 0 Memory Modules Infected: 0 Registry Keys Infected: 0 Registry Values Infected: 0 Registry Data Items Infected: 0 Folders Infected: 0 Files Infected: 3 Memory Processes Infected: (No malicious items detected) Memory Modules Infected: (No malicious items detected) Registry Keys Infected: (No malicious items detected) Registry Values Infected: (No malicious items detected) Registry Data Items Infected: (No malicious items detected) Folders Infected: (No malicious items detected) Files Infected: C:\Documents and Settings\User\370_gotomypc.exe (Trojan.FakeAlert) -> No action taken. [3857535134305383807566791539667670347770838513013627613780688678707985840166796 90152708585747972846151806774796111641115708970] C:\Documents and Settings\User\gotomypc_370.exe (Trojan.FakeAlert) -> No action taken. [3857535134305383807566791539667670347770838513013627613780688678707985840166796 90152708585747972846151806774796111641115708970] C:\Documents and Settings\User\gotomypc_428.exe (Trojan.FakeAlert) -> No action taken. [3857535134305383807566791539667670347770838513013627613780688678707985840166796 90152708585747972846151806774796111641115708970]
  17. I use gotomypc and malwarebytes is putting it as a trojan.fake in c:/documents and settings/user/370_gotomypc.exe c:/documents and settings/user/gotomypc.exe_370.exe c:/documents and settings/user/gotomypc.exe_478.exe I know this is a legitimate program so I put it in ignore but you really need to fix this because many people use gotomypc robin
  18. Maybe that would actually be a good thing But then again I would be out of business robin
  19. Kinda felt those were the places- just wanted to make sure. and thanks for the welcome. robin
  20. what kind of sites can give you this trojan? I want to give my clients examples of where NOT to go or what to NOT click on. Thanks robin
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.