Jump to content

Hardhead

Experts
 View Profile  See their activity

  • Posts

    1,587

  • Joined

  • Last visited

  • Days Won

    2

 Content Type 

Everything posted by Hardhead

  1. Hardhead
    That just needs editing Gordon. 1.01 will be installed from the download locations.
  2. Hardhead
    HAPPY Birthday dr_Bora
  3. Hardhead
    I like # 3 and 5 in this group.
  4. Hardhead
    I voted: 1 5 10 Great work Paul.
  5. Hardhead
    HAPPY Birthday lurkingatu2
  6. Hardhead
    Sorry I'm a little late in repling. HAPPY Birthday Fred
  7. Hardhead
    Working good now. :=) Malwarebytes' Anti-Malware Version 0.89 Database version: 244 Scan type: Quick Scan Objects scanned: 16148 Time elapsed: 37 second(s) Memory Processes Infected: 0 Memory Modules Infected: 0 Registry Keys Infected: 0 Registry Values Infected: 0 Registry Data Items Infected: 0 Folders Infected: 0 Files Infected: 0 Memory Processes Infected: (No malicious items detected) Memory Modules Infected: (No malicious items detected) Registry Keys Infected: (No malicious items detected) Registry Values Infected: (No malicious items detected) Registry Data Items Infected: (No malicious items detected) Folders Infected: (No malicious items detected) Files Infected: (No malicious items detected)
  8. Hardhead
    Congrat's to all that have helped MBAM be where it is today. 0.87 is working great here on Vista and XP. Note that the above scan is not a cached scan but a quick can and my Vista SATA drive. Cached scan below:
  9. Hardhead
    Yep, they are all false positives John.
  10. Hardhead
    Hiya guys and gals. Been a while since I have been online but I'm still around. Malwarebytes' Anti-Malware Version 0.86 Database version: 238 Scan type: Quick Scan Objects scanned: 15532 Time elapsed: 2 minute(s), 52 second(s) Memory Processes Infected: 0 Memory Modules Infected: 0 Registry Keys Infected: 0 Registry Values Infected: 0 Registry Data Items Infected: 0 Folders Infected: 0 Files Infected: 81 Memory Processes Infected: (No malicious items detected) Memory Modules Infected: (No malicious items detected) Registry Keys Infected: (No malicious items detected) Registry Values Infected: (No malicious items detected) Registry Data Items Infected: (No malicious items detected) Folders Infected: (No malicious items detected) Files Infected: C:\Windows\ime\ime.exe (Backdoor.Hupigon) -> No action taken. C:\Windows\9129837.exe (Rootkit.Agent) -> No action taken. C:\Windows\system32\drivers\runtime2.sys (Rootkit.Agent) -> No action taken. C:\Windows\system32\drivers\runtime2.sy_ (Rootkit.Agent) -> No action taken. C:\Windows\system32\drivers\runtime.sys (Rootkit.Agent) -> No action taken. C:\Windows\system32\drivers\lkw53.sys (Rootkit.Agent) -> No action taken. C:\Windows\system32\rpcc.exe (Spyware.Passwords) -> No action taken. C:\bot.dll (Trojan.Proxy) -> No action taken. C:\Windows\system32\e2241.exe (Trojan.Adclicker) -> No action taken. C:\Program Files\Common Files\VideoCap10.exe (Rootkit.Agent) -> No action taken. C:\Program Files\Common Files\VideoCap11.exe (Rootkit.Agent) -> No action taken. C:\Program Files\Common Files\VideoCap12.exe (Rootkit.Agent) -> No action taken. C:\Program Files\Common Files\VideoCap10.dll (Rootkit.Agent) -> No action taken. C:\Program Files\Common Files\VideoCap11.dll (Rootkit.Agent) -> No action taken. C:\Program Files\Common Files\VideoCap12.dll (Rootkit.Agent) -> No action taken. C:\Windows\system32\drivers\VideoCap10.sys (Rootkit.Agent) -> No action taken. C:\Windows\system32\drivers\VideoCap11.sys (Rootkit.Agent) -> No action taken. C:\Windows\system32\drivers\VideoCap12.sys (Rootkit.Agent) -> No action taken. C:\Windows\system32\lanmandrv.sys (Rootkit.Agent) -> No action taken. C:\Windows\system32\lanmanwrk.exe (Rootkit.Agent) -> No action taken. C:\Windows\system32\qmfdjjge.exe (Rootkit.Agent) -> No action taken. C:\Windows\system32\drivers\fcflal25.sys (Rootkit.Agent) -> No action taken. C:\Windows\system32\drivers\tvqpxm19.sys (Rootkit.Agent) -> No action taken. C:\Windows\system32\drivers\wtmuni32.sys (Rootkit.Agent) -> No action taken. C:\Windows\system32\drivers\core.sys (Rootkit.Agent) -> No action taken. C:\Windows\system32\acctresr.exe (Rootkit.Agent) -> No action taken. C:\Windows\system32\drivers\wfprotect.sys (Rootkit.Agent) -> No action taken. C:\Windows\system32\drivers\wfprotects.sys (Rootkit.Agent) -> No action taken. C:\Windows\system32\drivers\ndissdt.sys (Rootkit.Agent) -> No action taken. C:\Windows\system32\drivers\iokilps.sys (Trojan.Agent) -> No action taken. C:\Windows\system32\ksys.sys (Rootkit.Ntrootkit) -> No action taken. C:\Windows\system32\poof (Trojan.Wopla) -> No action taken. C:\Windows\system32\koos.exe (Trojan.Wopla) -> No action taken. C:\Windows\system32\kprof (Trojan.Wopla) -> No action taken. C:\uxnc.exe (Trojan.Vundo) -> No action taken. C:\wgpo.exe (Trojan.Vundo) -> No action taken. C:\Windows\system32\ddabx.dll (Trojan.Vundo) -> No action taken. C:\Users\Default\AppData\Local\Temp\winlogon.exe (Rootkit.Dropper) -> No action taken. C:\Windows\system32\DefLib.sys (Rootkit.Agent) -> No action taken. C:\Windows\system32\qmokkoek.exe (Rootkit.Agent) -> No action taken. C:\Windows\system32\msvcrtd.exe (Malware.Crypted) -> No action taken. C:\Users\Default\AppData\Roaming\Microsoft\Windows\aogjesu.exe (Rootkit.Agent) -> No action taken. C:\Windows\system32\drivers\Ygt33.sys (Rootkit.Agent) -> No action taken. C:\Windows\system32\drivers\symavc32.sys (Rootkit.Agent) -> No action taken. C:\Windows\system32\drivers\Jcq41.sys (Rootkit.Agent) -> No action taken. C:\Windows\system32\kdwyk.exe (Trojan.DNSChanger) -> No action taken. C:\Windows\system32\kdetj.exe (Trojan.DNSChanger) -> No action taken. C:\Windows\system32\kdzye.exe (Trojan.DNSChanger) -> No action taken. C:\Windows\system32\kdmqk.exe (Trojan.DNSChanger) -> No action taken. C:\Windows\system32\kdshc.exe (Trojan.DNSChanger) -> No action taken. C:\Windows\system32\kddzr.exe (Trojan.DNSChanger) -> No action taken. C:\Windows\system32\bdbea.dll (Trojan.Downloader) -> No action taken. C:\Users\Default\AppData\Local\Temp\dnlsvc.exe (Trojan.Downloader) -> No action taken. C:\Windows\system32\admparsev.exe (Trojan.Zapchast) -> No action taken. C:\Windows\system32\nvrssl.dllnvrssl.dll (Rootkit.Agent) -> No action taken. C:\Windows\system32\drivers\rwmsccne.dat (Rootkit.Agent) -> No action taken. C:\Windows\system32\drivers\xzrsegwz.dat (Rootkit.Agent) -> No action taken. C:\Windows\system32\drivers\svq51.sys (Rootkit.Agent) -> No action taken. C:\Windows\system32\frmwrk.sys (Rootkit.frmwrk.sys) -> No action taken. C:\Windows\system32\frmwrk.exe (Rootkit.frmwrk.exe) -> No action taken. C:\Windows\system32\drivers\pcoj42.sys (Rootkit.Agent) -> No action taken. C:\Windows\system32\drivers\seio40.sys (Rootkit.Agent) -> No action taken. C:\Windows\system32\acluij.exe (Trojan.Zapchast) -> No action taken. C:\Windows\system32\drivers\ctl_w32.sys (Rootkit.Agent) -> No action taken. C:\Windows\system32\tdlbop.dll (Rootkit.MalwareDestructor) -> No action taken. C:\Windows\system32\tdlsoui.dll (Rootkit.MalwareDestructor) -> No action taken. C:\Windows\system32\tdlsoui.flag (Rootkit.MalwareDestructor) -> No action taken. C:\Windows\system32\drivers\tdlserv.sys (Rootkit.MalwareDestructor) -> No action taken. C:\Windows\system32\xpdx.sys (Rootkit.Rustock) -> No action taken. C:\Windows\system32\drivers\jkfe42.sys (Rootkit.Agent) -> No action taken. C:\Windows\system32\kdqlr.exe (Rootkit.Agent) -> No action taken. C:\Windows\system32\kernelw.sys (Rootkit.Agent) -> No action taken. C:\Windows\system32\drivers\lgkb41.sys (Rootkit.Agent) -> No action taken. C:\Windows\system32\drivers\chm49.sys (Rootkit.Agent) -> No action taken. C:\Windows\system32\drivers\rhp37.sys (Rootkit.Agent) -> No action taken. C:\Windows\system32\sysrest.sys (Rootkit.Agent) -> No action taken. C:\Windows\system32\sysrest32.exe (Rootkit.Agent) -> No action taken. C:\Windows\system32\drivers\dpp59.sys (Rootkit.Agent) -> No action taken. C:\Users\Default User\AppData\Local\Temp\winlogon.exe (Rootkit.Dropper) -> No action taken. C:\Users\Default User\AppData\Roaming\Microsoft\Windows\aogjesu.exe (Rootkit.Agent) -> No action taken. C:\Users\Default User\AppData\Local\Temp\dnlsvc.exe (Trojan.Downloader) -> No action taken. I can't find any of these files on Vista Ultimate. Windows XP scanned clean.
  11. Hardhead
    I uninstalled because I had "beta" beta. I got the qoute right, hehe. :=) All setting were checked. Malwarebytes' Anti-Malware Version 0.75 Database version: 211 Scan type: Quick Scan Objects scanned: 13470 Memory Processes Infected: 0 Memory Modules Infected: 0 Registry Keys Infected: 0 Registry Values Infected: 0 Registry Data Items Infected: 0 Folders Infected: 0 Files Infected: 0
  12. Hardhead
    I'm running NIS 2008 and I don't have any alerts. I'm getting these results now. Not real sure why I didn't get this before. I show logs in hidden folder. Malwarebytes' Anti-Malware Version 0.74 Database version: 211 Scan type: Quick Scan Objects scanned: 13502 Memory Processes Infected: 0 Memory Modules Infected: 0 Registry Keys Infected: 0 Registry Values Infected: 0 Registry Data Items Infected: 0 Folders Infected: 0 Files Infected: 6 Memory Processes Infected: (No malicious items detected) Memory Modules Infected: (No malicious items detected) Registry Keys Infected: (No malicious items detected) Registry Values Infected: (No malicious items detected) Registry Data Items Infected: (No malicious items detected) Folders Infected: (No malicious items detected) Files Infected: C:csrss.exe (Heuristics.Reserved.Word.Exploit) -> No action taken. C:lsass.exe (Heuristics.Reserved.Word.Exploit) -> No action taken. C:services.exe (Heuristics.Reserved.Word.Exploit) -> No action taken. C:smss.exe (Heuristics.Reserved.Word.Exploit) -> No action taken. C:winlogon.exe (Heuristics.Reserved.Word.Exploit) -> No action taken. C:svchost.exe (Heuristics.Reserved.Word.Exploit) -> No action taken.
  13. Hardhead
    Malwarebytes' Anti-Malware Version 0.74 Database version: 211 Scan type: Quick Scan Objects scanned: 13393 Memory Processes Infected: 0 Memory Modules Infected: 0 Registry Keys Infected: 0 Registry Values Infected: 0 Registry Data Items Infected: 0 Folders Infected: 0 Files Infected: 0
  14. Hardhead
    Hi Joe53, Did you uninstall any old versions of MBAM and what OS are you running?
  15. Hardhead
    Kewl :-) Just thought I would note that I tried to install 0.73 without elevated priveleges. The download suceeded but I had to recheck elevated priveleges before MBAM would install. Scan was super quick, 2 minutes 3 seconds. Malwarebytes' Anti-Malware Version 0.73 Database version: 209 This logfile was saved after the removal process completed. Scan type: Quick Scan Objects scanned: 14956 No FPs Looking forward to the fix. Nice work Marcin.
  16. Hardhead
    Okie dokie I believe that will do the trick John.
  17. Hardhead
    Sorry I meant to post this when v.072 came out. I sent ya PM. Looking forward for your fix. :=)
  18. Hardhead
    I also had looping in update from db 200 to db 200. This occured after I installed the v.0.72 update. In program files under Compatibility I had MBAM set to run as admin in Privilage Level. I got an error in Vista about the Privilage Level after the install of v.0.72 update. I unchecked MBAM to run as admin in Privilage Level and rechecked run as admin in Privilage Level and had no prblems afterwords.
  19. Hardhead
    Running admin with elevated privileges does do the trick here too. Go to program files/mbam/properties/compatibility/privilege level/ and check run the program as an administrator. v. 0.70 with #187 database. No FPs.
  20. Hardhead
    All works fine now John when ruunning admin with elevated privileges. TY
  21. Hardhead
    I'm still having issue with database updates and log. I have to run as admin each time before I can get both to work. Latest database #187 installed.
  22. Hardhead
    Basically what happens when using the program updater, it installs MBAM and you are not given a choice to install as admin. You have to manually do that through program files afterwords. So thats where the issue is.
  23. Hardhead
    Yes, when I first installed MBAM when I was having these issues I installed MBAM as admin and thats where I had the problems because when the new program update came out MBAM installed overtop of the old version and thats where the UAC issue is coming from to the best of my knowledge. Keep in mind that I had the old version installed as admin and I got the lastest version through the program updater itself. Does that make any sense? LOL...
  24. Hardhead
    I had the old MBAM and the new program update installed overtop of old program. Must have been what caused the problem. I just installed new MBAM and I went to Program files and ran MBAM as admin and had no problems with getting database update. I got log this time Marcin. Must have been an issue with the last overtop install of MBAM. All is good now.
  25. Hardhead
    Can't get database to update to #185. I installed MBAM and ran as admin on first install. I still don't get a log after quick scan when clicking on Main menu.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.