Jump to content

mikispiki

Members
  • Content Count

    44
  • Joined

  • Last visited

Community Reputation

0 Neutral

About mikispiki

  • Rank
    New Member
  1. Hello, MBAM doesn't seem to detect the file at all now. I have no interest in the file, however I will attatch the log and zipped file protection-log-2014-10-22.txt TimeProtect.zip
  2. Hi MBAM picked this FP in real time . DETECTION C:\Program Files (x86)\Acer GameZone\Merriam Websters Spell Jam\TimeProtect.dll Trojan.Agent.ED QUARANTINE When scanned MBAM not detecting . Tried to upload the file and was told i am not permitted
  3. No, I think you are on the ball. Like you say, it's no use using an exclusion, as the location rubyw.exe changes everytime. I have read the explanation from the PIA forum, and it's a little too techy for me to understand. My solution was to turn off MBAM notifications. However I ve noticed some times my vpn connection is lost, and it could be MBAM that has caused this. I think all i can do, is disable website blocking, when using the vpn.Which is a shame. Perhaps when my subscription runs out for PIA ( not for 10 months ) I will look for another vpn Many thanks
  4. Hello, I am using a paid vpn. Everytime i use the program MBAM pops up, with a malicious website blocked, it continues as long as i use the program. For example Detection, 15/04/2014 20:29:38, SYSTEM, MICHAEL-TOSH, Protection, Malicious Website Protection, IP, 93.115.82.54, 55875, Outbound, C:\Users\zzzzzzzzzzzzz\AppData\Local\Temp\ocrC492.tmp\bin\rubyw.exe, IP, 93.115.82.54, 55875, , IP, 37.221.165.196, 55898, IP, 93.115.85.34, 56001, IP, 93.115.85.39, 56649, IP, 93.115.85.39, 56666, IP, 93.115.85.39, 56693, IP, 93.115.85.39, 56714, IP, 93.115.85.39, 56735, IP, 93.115.85.39, 56753, IP
  5. I see. Do you think you could reply a bit faster next time 1 minute is a long time to wait for an answer. Only joking. Your support is always fantastic. Many thanks. I will try and amend my title, if that's possible .
  6. Hello , I have just updated to the new version. I right click and scan a lot of files. On my desktop ( version 1.75 i believe ) a scan on a file took 6 seconds. On my laptop ( version 2 ) 3 minutes 30 seconds. 90% of that was pre scanning Just tried another file ( word doc 3mb ) scan time 4 minutes 20 secs. Is this normal, or a bug. Many thanks
  7. Yeah, me too. I am getting lots for 54.240.166.123 54.240.166.3 54.240.166.235 54.240.166.239 Can't really pinpoint them, but I really am not concerned. At one point I was getting some them from two sites, but this is no longer the case. If it continues, i will tell MBAM to ignore them
  8. I take my hat off to you. Super fast fix. The reputation of the program and it's staff is amazing.
  9. Me too, cannot access internet without turning off website blocking. This happened after last update version v2013.02.23.03. Please fix ASAP, thanks
  10. Hello again Maurice, tried the edited fix, unfortunately no joy. Left it for 1 and half hours , had to pull the plug. It just said " killing process do not interrupt ". I gave it another go, same again. I seriously appreciate your help and time. However , I think it's time it call it a day. I've taken enough of your valuable time. Please mark the post resolved. Take care and thanks Mick
  11. Hi again Maurice, I too saw the registry disabled entry, but I've been into regedit tonight , no problems. I will run your amended fix tomorrow and post back. I can't do these things near bedtime, they prey on my mind and keep me awake. I once got up at 3 in the morning to sort something out and had to take a day off work through lack of sleep Once again, thank you
  12. Hello again maurice, I opened OTL pasted the fix and run it. All i got was the " killing process " for about two hours. In the end I decided to pull the plug. No damage done. Unless you have reason to think there is an infection, I will love you and leave you . The two 10.tmp registry entries [services][ROGUE ST] HKLM\[...]\ControlSet001\Services\MEMSWEEP2 (\??\C:\WINDOWS\system32\10.tmp) -> FOUND, would appear to me to be from Sophos anti rootkit, which creates memsweep2 service.I have had this in the past, perhaps after deleting it left the registry entries behind I looked for 10.tmp i
  13. Hello again Maurice, many thanks for your reply. I will follow your instructions tomorrow, and post back. Regarding the registry entries found by Roguekiller ( 10 tmp ) Is it possible they once belonged to Sophos rootkit remover. That program has definitely been on the machine years ago . It does create a tmp file http://www.bleepingcomputer.com/startups/MEMSWEEP2-22472.html Once again, I thank you for your time and advice
  14. Hello Maurice, my sincerest apologies, if this is a wild goose chase. I ran RK, i saved the log, when i tried to close the program, it asked me if i wa sure i wanted to close without deleting 4 entries. Upon inspection, i deleted them QuickScan 32-bit v0.9.9.118 --------------------------- Scan date: Mon Sep 24 18:20:42 2012 Machine ID: C88362F1 No infection found. ------------------- Processes --------- Acronis Scheduler 2 544 C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe Avira Free Antivirus 280 C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.