Jump to content

Search the Community

Showing results for tags 'MBAM'.

  • Search By Tags

    Type tags separated by commas.
  • Search By Author

Content Type


  • Announcements
    • Malwarebytes News
    • Beta Testing Program
  • Malware Removal Help
    • Windows Malware Removal Help & Support
    • Mac Malware Removal Help & Support
    • Mobile Malware Removal Help & Support
    • Malware Removal Self-Help Guides
  • Malwarebytes for Home Support
    • Malwarebytes for Windows Support Forum
    • Malwarebytes for Mac Support Forum
    • Malwarebytes for Android Support Forum
    • Malwarebytes for iOS Support
    • Malwarebytes Privacy
    • Malwarebytes Browser Guard
    • False Positives
    • Comments and Suggestions
  • Malwarebytes for Business Support
    • Malwarebytes Endpoint Protection
    • Malwarebytes Incident Response (includes Breach Remediation)
    • Malwarebytes Endpoint Security
    • Malwarebytes Business Products Comments and Suggestions
  • Malwarebytes Tools and Other Products
    • Malwarebytes AdwCleaner
    • Malwarebytes Junkware Removal Tool Support
    • Malwarebytes Anti-Rootkit BETA Support
    • Malwarebytes Techbench USB (Legacy)
    • Malwarebytes Secure Backup discontinued
    • Other Tools
    • Malwarebytes Tools Comments and Suggestions
  • General Computer Help and Security Updates
    • BSOD, Crashes, Kernel Debugging
    • General Windows PC Help
  • Research Center
    • Newest Rogue-Ransomware Threats
    • Newest Malware Threats
    • Newest Mobile Threats
    • Newest IP or URL Threats
    • Newest Mac Threats
    • Report Scam Phone Numbers
  • General
    • General Chat
    • Forums Announcements & Feedback

Find results in...

Find results that contain...

Date Created

  • Start


Last Updated

  • Start


Filter by number of...


  • Start





Website URL






  1. Hi I have MBAM (paid version) on Windows 7 32 bits. MBAM seem to work perfectly, but everyday I get an error message stating that MBAM base is obsolete, and I have to manually update it. Is that a way I can automate the update, (giving windows 7 permission and so), so I don't have to manually update that every day. Just let it update in the background. I try many setting, even windows "program compatibily, execute as an adminstrator" and so, but nothing seems to work. Thank you for yout time! :-) Marie.
  2. I hope this is an easy question.... I am having a problem with my computer and someone else is helping me but he is on the road and won't be checking back til Tuesday. Among other things he gave me a link to Mbam.exe with instructions on running it. I did but it appears to be stalled. It has been on the same item for at least 45 min. I know that this item is a very large file so I'm not sure how long to give it. I didn't realize I should have disabled Avast before I started it and so I don't know if that is the problem. It is sitting there with only the 'cancel' button available. Any suggestions? Thank you!
  3. Hello everyone, Today I performed a full system scan with MBAM which detected the infected registry key: HKCU\Software\VB and VBA Program Settings\SrvID (Malware.Trace). It was quarantied, and I permanently deleted it and disconnected the infected PC from the network. After Searching I found some topics about it claiming it keeps appearing in scans, like this one: http://forums.malwarebytes.org/index.php?showtopic=124721&st=0. So I rebooted into Safe Mode and fully re-scanned my system with MBAM, found nothing and the registry key was nowhere to be found when I searched for it manually. Then I restarted the PC normally and re-connected it to the network, and when I looked for the registry key again it was there. So again, I disconnected and fully scanned, but MBAM found no infected objects, which made me worry - how was it so easily removed from my PC while others struggle to remove it, and while the registry key still exists? Just to mention, maybe it indicates something: the computer was connected to the internet only during the first scan when I first found the malicious registry key. During the other 2 scans that came after it was disconnected, but between those two it was connected for some time, and though I doubt it I think it may be the reason for the reappearing of the registry key and the fact it was not detected on the next scans. There were no other infected objects MBAM detected, and there is no "Socks" folder in AppData\Roaming that contains data collected by a keylogger as described in the topic from the link above. I seriously consider formatting and re-installing Windows, I easily get anxious from such things and I think the computer might still be infected in some ways. Thank you very much, I'll appreciate any help or suggestion!
  4. Hello all! So I've been using Malwarebytes Pro in a combination with different antivirus programs for a while now. While I love MBAM Pro, I can't decide on a decent antivirus program. Does anyone have any recommendations for one? Doesn't matter whether it is free or paid, but free is definitely a plus. Thank you and have a nice day!
  5. For some reason I can't get the protection mode in MBAM to stay on. It will come on when I start Windows but in a few minutes, the maliciuos webpage blocker is unchecked and can't be rechecked. I know that I had to go in and make cetain exceptions when I was running Avast AV. Could there be a compatability issue with ESET Nod32 AV 4.2 ? My OS is Win xp pro SP3 , I'm using MBAM Pro 1.7 What could be causing this? Thanks in advance (PB)
  6. Hello, I have recently posted in the PC help section of the forums regarding my problem with updating malwarebytes, and really any non-microsoft software. Whenever I try to update malwarebytes I get a the PROGRAM_ERROR_UPDATING(0,0,I/O error) message. I know that this computer used to run a Norton Internet Security program and I have tried to delete this program with no success. I have attatched the requested logs/files. Please let me know if you can be of any assistance. Thank you. DDS (Ver_2012-11-20.01) - NTFS_x86 Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_29 Run by Frank at 14:08:02 on 2013-01-31 Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1535.763 [GMT -6:00] . AV: Norton Internet Security *Enabled/Updated* {E10A9785-9598-4754-B552-92431C1C35F8} AV: Microsoft Security Essentials *Enabled/Updated* {EDB4FA23-53B8-4AFA-8C5D-99752CCA7095} FW: Norton Internet Security *Enabled* . ============== Running Processes ================ . c:\Program Files\Microsoft Security Client\MsMpEng.exe C:\Program Files\Ahead\InCD\InCDsrv.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\Program Files\Comodo\Dragon\dragon_updater.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Linksys\Linksys Updater\bin\LinksysUpdater.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\system32\PnkBstrA.exe C:\WINDOWS\system32\java.exe C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE C:\Program Files\Common Files\Pure Networks Shared\Platform\nmsrvc.exe C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe C:\WINDOWS\System32\alg.exe C:\Program Files\Microsoft Security Client\msseces.exe C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\WINDOWS\system32\wbem\wmiprvse.exe C:\WINDOWS\System32\svchost.exe -k netsvcs C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup C:\WINDOWS\System32\svchost.exe -k NetworkService C:\WINDOWS\System32\svchost.exe -k LocalService C:\WINDOWS\System32\svchost.exe -k LocalService C:\WINDOWS\System32\svchost.exe -k imgsvc C:\WINDOWS\System32\svchost.exe -k HTTPFilter . ============== Pseudo HJT Report =============== . uStart Page = hxxp://www.google.com/ uWindow Title = Microsoft Internet Explorer provided by CenturyTel uSearch Bar = hxxp://inboxtoolbar.com/search/dispatcher.aspx?tp=aus&qkw=%s&tbid=%tb_id&%language uSearch Page = hxxp://www.google.com uDefault_Page_URL = hxxp://www.yahoo.com/?fr=fp-yie8 mWindow Title = Microsoft Internet Explorer provided by CenturyTel uProxyServer = uURLSearchHooks: {D3D233D5-9F6D-436C-B6C7-E63F77503B30} - <orphaned> BHO: {02478D38-C3F9-4efb-9B51-7695ECA05670} - <orphaned> BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll BHO: Symantec NCO BHO: {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - BHO: Symantec Intrusion Prevention: {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - BHO: SSVHelper Class: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre6\bin\ssv.dll BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll BHO: LastPass Vault: {95D9ECF5-2A4D-4550-BE49-70D42F71296E} - c:\program files\lastpass\LPToolbar.dll BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\google toolbar\GoogleToolbar_32.dll BHO: Google Toolbar Notifier BHO: {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - c:\program files\google\googletoolbarnotifier\5.7.8313.1002\swg.dll BHO: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre6\bin\jp2ssv.dll BHO: JQSIEStartDetectorImpl Class: {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll TB: Google Toolbar: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - c:\program files\google\google toolbar\GoogleToolbar_32.dll TB: Norton Toolbar: {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - TB: Norton Toolbar: {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\google toolbar\GoogleToolbar_32.dll TB: LastPass Toolbar: {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - c:\program files\lastpass\LPToolbar.dll EB: {32683183-48a0-441b-a342-7c2a440a9478} - <orphaned> uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe uRun: [Washer] c:\program files\washer\washer.exe /0 uRunOnce: [shockwave Updater] c:\windows\system32\adobe\shockw~1\SWHELP~2.EXE -Update -1103472 -"Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; GTB7.3; .NET CLR 2.0.50727; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; yie8)" -"http://www.miniclip.com/games/shooting-cybertrash-xl/en/" uRunServicesOnce: [washindex] c:\program files\washer\washidx.exe mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup mRun: [QuickTime Task] "c:\program files\quicktime\qttask.exe" -atboottime mRun: [MSConfig] c:\windows\pchealth\helpctr\binaries\MSConfig.exe /auto mRunServicesOnce: [washindex] c:\program files\washer\washidx.exe "Frank" dRun: [DWQueuedReporting] "c:\progra~1\common~1\micros~1\dw\dwtrig20.exe" -t uPolicies-Explorer: NoDriveTypeAutoRun = dword:145 mPolicies-Windows\System: Allow-LogonScript-NetbiosDisabled = dword:1 mPolicies-Explorer: NoDriveTypeAutoRun = dword:145 IE: &Search - <no file> IE: Google Sidewiki... - c:\program files\google\google toolbar\component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html IE: LastPass - c:\documents and settings\frank.frank-vm4yc7dlu\local settings\application data\lastpass\context.html?cmd=lastpass IE: LastPass Fill Forms - c:\documents and settings\frank.frank-vm4yc7dlu\local settings\application data\lastpass\context.html?cmd=fillforms IE: {43699cd0-e34f-11de-8a39-0800200c9a66} - {95D9ECF5-2A4D-4550-BE49-70D42F71296E} - c:\program files\lastpass\LPToolbar.dll IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe DPF: Microsoft XML Parser for Java - file://c:\windows\java\classes\xmldso.cab DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} - hxxp://us.dl1.yimg.com/download.yahoo.com/dl/installs/yinst20040510.cab DPF: {33564D57-9980-0010-8000-00AA00389B71} - hxxp://download.microsoft.com/download/D/0/D/D0DD87DA-994F-4334-8B55-AF2E4D98ED0C/wmv9dmo.cab DPF: {34F12AFD-E9B5-492A-85D2-40FA4535BE83} - hxxp://www.symantec.com/techsupp/activedata/nprdtinf.cab DPF: {3DCEC959-378A-4922-AD7E-FD5C925D927F} - hxxp://disney.go.com/pirates/online/testActiveX/built/signed/DisneyOnlineGames.cab DPF: {6A344D34-5231-452A-8A57-D064AC9B7862} - hxxps://webdl.symantec.com/activex/symdlmgr.cab DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} - hxxp://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1355462224863 DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab DPF: {E06E2E99-0AA1-11D4-ABA6-0060082AA75C} - TCP: NameServer = TCP: Interfaces\{166D28F0-0856-428C-9A70-E15CD8DA88A7} : DHCPNameServer = Handler: pure-go - {4746C79A-2042-4332-8650-48966E44ABA8} - c:\program files\common files\pure networks shared\platform\puresp4.dll SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll SEH: SABShellExecuteHook Class - {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - c:\program files\superantispyware\SASSEH.DLL mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "c:\program files\google\chrome\application\24.0.1312.56\installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome mASetup: {A509B1FF-37FF-4bFF-8CFF-4F3A747040FF} - c:\windows\system32\rundll32.exe c:\windows\system32\advpack.dll,launchinfsectionex c:\program files\internet explorer\clrtour.inf,DefaultInstall.ResetTour,,12 . ================= FIREFOX =================== . FF - ProfilePath - c:\documents and settings\frank.frank-vm4yc7dlu\application data\mozilla\firefox\profiles\ayv8rio8.default\ FF - prefs.js: browser.search.defaulturl - hxxp://search.yahoo.com/search?ei=UTF-8&fr=ytff-&p= FF - prefs.js: browser.search.selectedEngine - Ask.com FF - prefs.js: browser.startup.homepage - hxxp://www.google.com/ FF - prefs.js: keyword.URL - hxxp://search.yahoo.com/search?ei=UTF-8&fr=ytff-&p= FF - prefs.js: network.proxy.type - 0 FF - component: c:\documents and settings\all users.windows\application data\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\nis_18.5.0.125\coffplgn_2011_7_0_8\components\coFFPlgn.dll FF - component: c:\documents and settings\all users.windows\application data\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\nis_18.5.0.125\ipsffplgn\components\IPSFFPl.dll FF - component: c:\documents and settings\frank.frank-vm4yc7dlu\application data\mozilla\extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\textlinks@lplay.com\components\lptlf.dll FF - component: c:\documents and settings\frank.frank-vm4yc7dlu\application data\mozilla\extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\textlinks@lplay.com\components\lptlf2.dll FF - component: c:\documents and settings\frank.frank-vm4yc7dlu\application data\mozilla\extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\textlinks@lplay.com\components\lptlf3.dll FF - component: c:\program files\siteranker\firefox\components\siterank.dll FF - plugin: c:\documents and settings\all users.windows\application data\nexonus\ngm\npNxGameUS.dll FF - plugin: c:\program files\adobe\reader 10.0\reader\air\nppdf32.dll FF - plugin: c:\program files\google\google updater\2.4.2432.1652\npCIDetect14.dll FF - plugin: c:\program files\google\update\\npGoogleUpdate3.dll FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll FF - plugin: c:\program files\livingplay games\nplplaypop.dll FF - plugin: c:\program files\microsoft silverlight\4.1.10329.0\npctrlui.dll FF - plugin: c:\program files\mozilla firefox\plugins\npdeployJava1.dll FF - plugin: c:\program files\netscape\communicator\program\plugins\npaudio.dll FF - plugin: c:\program files\netscape\communicator\program\plugins\npavi32.dll FF - plugin: c:\program files\netscape\communicator\program\plugins\npdrmv2.dll FF - plugin: c:\program files\netscape\communicator\program\plugins\npdsplay.dll FF - plugin: c:\program files\netscape\communicator\program\plugins\npnul32.dll FF - plugin: c:\program files\netscape\communicator\program\plugins\NPQTW32.DLL FF - plugin: c:\program files\netscape\communicator\program\plugins\npwmsdrm.dll FF - plugin: c:\program files\pando networks\media booster\npPandoWebPlugin.dll FF - plugin: c:\program files\unity\webplayer\loader\npUnity3D32.dll . ---- FIREFOX POLICIES ---- FF - user.js: yahoo.homepage.dontask - true . ============= SERVICES / DRIVERS =============== . R0 MpFilter;Microsoft Malware Protection Driver;c:\windows\system32\drivers\MpFilter.sys [2011-4-18 193552] R0 SymDS;Symantec Data Store;c:\windows\system32\drivers\nis\1207000.00d\symds.sys [2012-1-30 340088] R0 SymEFA;Symantec Extended File Attributes;c:\windows\system32\drivers\nis\1207000.00d\symefa.sys [2012-1-30 744568] R1 BHDrvx86;BHDrvx86;c:\documents and settings\all users.windows\application data\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\nis_18.5.0.125\definitions\bashdefs\20120121.002\BHDrvx86.sys [2012-1-23 820344] R1 SASDIFSV;SASDIFSV;c:\program files\superantispyware\sasdifsv.sys [2011-7-22 12880] R1 SASKUTIL;SASKUTIL;c:\program files\superantispyware\SASKUTIL.SYS [2011-7-12 67664] R1 SymIRON;Symantec Iron Driver;c:\windows\system32\drivers\nis\1207000.00d\ironx86.sys [2012-1-30 136312] R2 DragonUpdater;COMODO Dragon Update Service;c:\program files\comodo\dragon\dragon_updater.exe [2012-3-28 407288] R2 LinksysUpdater;Linksys Updater;c:\program files\linksys\linksys updater\bin\LinksysUpdater.exe [2008-11-13 204800] R2 TeamViewer8;TeamViewer 8;c:\program files\teamviewer\version8\TeamViewer_Service.exe [2013-1-24 3467768] R3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files\common files\symantec shared\eengine\EraserUtilRebootDrv.sys [2011-11-12 106104] R3 IDSxpx86;IDSxpx86;c:\documents and settings\all users.windows\application data\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\nis_18.5.0.125\definitions\ipsdefs\20120131.002\IDSXpx86.sys [2012-1-31 356280] S2 AMPingService;AMPingService; [x] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384] S2 gupdate1c9d6fc974d8574;Google Update Service (gupdate1c9d6fc974d8574);c:\program files\google\update\GoogleUpdate.exe [2009-5-17 133104] S2 NIS;Norton Internet Security;c:\program files\norton internet security\engine\\ccsvchst.exe [2012-1-30 130008] S3 cpuz132;cpuz132; [x] S3 dc3d;MS Hardware Device Detection Driver (USB);c:\windows\system32\drivers\dc3d.sys [2012-4-5 45288] S3 NAVENG;NAVENG;c:\documents and settings\all users.windows\application data\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\nis_18.5.0.125\definitions\virusdefs\20120131.032\NAVENG.SYS [2012-2-1 86136] S3 NAVEX15;NAVEX15;c:\documents and settings\all users.windows\application data\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\nis_18.5.0.125\definitions\virusdefs\20120131.032\NAVEX15.SYS [2012-2-1 1576312] S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2010-3-18 753504] S4 !SASCORE;SAS Core Service;c:\program files\superantispyware\SASCore.exe [2012-7-11 116608] . =============== Created Last 30 ================ . 2013-01-31 04:31:45 60872 ----a-w- c:\documents and settings\all users.windows\application data\microsoft\microsoft antimalware\definition updates\{64dc7101-6107-495f-b511-b773f2e28dd4}\offreg.dll 2013-01-31 03:24:15 6991832 ----a-w- c:\documents and settings\all users.windows\application data\microsoft\microsoft antimalware\definition updates\{64dc7101-6107-495f-b511-b773f2e28dd4}\mpengine.dll 2013-01-30 03:24:17 6991832 ----a-w- c:\documents and settings\all users.windows\application data\microsoft\microsoft antimalware\definition updates\backup\mpengine.dll 2013-01-29 03:03:22 -------- d-----w- c:\documents and settings\frank.frank-vm4yc7dlu\application data\Malwarebytes 2013-01-29 03:03:00 -------- d-----w- c:\documents and settings\all users.windows\application data\Malwarebytes 2013-01-29 03:02:56 21104 ----a-w- c:\windows\system32\drivers\mbam.sys 2013-01-29 03:02:56 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware 2013-01-25 02:27:26 -------- d-----w- c:\program files\TeamViewer 2013-01-24 05:03:25 -------- dc-h--w- c:\windows\ie8 2013-01-24 01:18:47 11004488 ----a-w- c:\program files\common files\lpuninstall.exe 2013-01-24 01:17:44 -------- d-----w- c:\program files\LastPass 2013-01-24 01:17:44 -------- d-----w- c:\documents and settings\frank.frank-vm4yc7dlu\local settings\application data\LastPass 2013-01-22 02:43:51 -------- d-----w- c:\documents and settings\frank.frank-vm4yc7dlu\application data\SUPERAntiSpyware.com 2013-01-22 02:43:09 -------- d-----w- c:\program files\SUPERAntiSpyware 2013-01-22 02:43:09 -------- d-----w- c:\documents and settings\all users.windows\application data\SUPERAntiSpyware.com . ==================== Find3M ==================== . 2013-01-30 10:53:21 232336 ------w- c:\windows\system32\MpSigStub.exe 2012-12-16 12:23:59 290560 ----a-w- c:\windows\system32\atmfd.dll 2012-11-15 05:41:41 45832 ----a-w- c:\windows\system32\certsentry.dll 2012-11-13 01:25:12 1866368 ----a-w- c:\windows\system32\win32k.sys 2012-11-06 02:01:39 1371648 ------w- c:\windows\system32\msxml6.dll 2005-12-14 15:04:37 0 --sha-w- c:\program files\common files\system32.dll 2005-10-09 16:52:04 774144 ----a-w- c:\program files\RngInterstitial.dll . ============= FINISH: 14:09:30.17 =============== mbam-log-2013-01-31 (18-15-46).txt ark.txt attach.txt
  7. One of my two laptops took nearly 15 minutes to boot up today. Both laptops are Dell, one with XP and one with Win 7. Both have the paid version of Malwarebytes. When the slow (XP) laptop finally started I opened task manager. It shows mbamservice.exe running and using 110 MB of memory. The other laptop doesn't show any mbam running. I'm guessing it is to run at startup, then when finished shut off. But it is not shutting off in the XP laptop. Ideas? Fixes? Thanks.
  8. I can't figure out why, but my MBAM logo suddenly disappeared completely out of the blue and has been replaced by the 'missing' icon. Why did this happen? It appears to only be an aesthetic problem because the program still seems to be responding, although it does seem to take time to bootup from a restart when looking at the logo from the system tray (it's gray for a few minutes before lighting back up again). Does anyone know how I might fix the missing logo? I'm beginning to wonder if my Windows Update has anything to do with it, it's always screwing things up.
  9. I just installed the trial of Malwarebytes Pro because I planned to purchase, but I just got the computer and have been trying to get everything set up. I thought I had 30 days before I had to pay but Malwarebytes popped up tonight informing me I have only 5 days left. Is the trial period 30 days, or is it less?
  10. I have a re-occuring virus that one of my co-workers put on my computer a few months back and it keeps coming back after a certain period of time. It leaves traces as well (e.g disabling windows update, not allowing windows firewall, disable defender update, deleting system restore points, etc) which I have been able to fix (except for enabling MBAM malicious website blocker and system restore points) for the most part, but have it is still on the computer and I have not been able to remove it. Most recently, Windows Defender found this virus called Trojan:Win32/Sirefef!cfg (http://www.microsoft...atid=2147654414) a few days ago which I assume is the same old virus. Any help? I have attached a log file. hijackthis.log
  11. I constantly keep getting this message: I am not downloading any programs or cracks via uTorrent, I am downloading Pr0N I have Kaspersky Internet Security 2012 running alongside to MBAM (exceptions setup for compatibility) on Windows 7 64 bit I never had these warning before at the time I was using Kaspersky Internet Security with SUPERAntiSpyware. But now I am getting them..I have recently purchased a license for MBAM Pro so I'm a n00b!e to MBAM I know Kaspersky's firewayy is pretty good and my Windows is always updated and so is KIS... are these false positives or what? anything you would recommend me to do? I don't know how can these videos be trying to access malicious sites...hmmmm...they are still being downloaded
  12. Not sure why it wont let me enable it . I can enable file system protection but not suspicious website blocking. I attached all the files like I saw in other threads. Thanks for all the support guys! CheckResults.txt dds.txt attach.txt
  13. Hi. I suspect I'm having a virus of some sort on my pc, because I need admin privileges to do basic things (like moving files from the desktop to a picture folder) and because when I click on th Pictures library, it says there are no connected folders. I decided to run a quick scan with MBAM (free version), but after the scan is finished (or during), it just crashes and windows says it doesn't respond. I can see that it detected 4 threats, though. When I start MBAM again, it shows no logs. Windows 7 Ultimate (64-bit) Asus G53SX Do you need more info or logs or anything? Thanks in advance!
  14. Malwarebytes Pro prompted me to download the newest version, I installed it and it wanted to restart my PC. After regaining control of my PC, I went to check MBAM for updates, that's when I got this error: An error has occured. Please report this issue to our support team (include the content of all error message(s) and code(s) in your submission). PROGRAM_ERROR_UPDATING (0, 0, I/O, error) I'm soooooooooooo tired of these MBAM errors, so very tired. I'm 100.00% certain it is not an infection of my system.
  15. The Malwarebytes Team deeply appreciates any feedback or suggestions our community has to offer. That's why we're very proud to unveil our first Consumer Survey. Please take the time to fill out this brief survey here: http://bit.ly/KIuwqb, so we can better learn how to serve you good folks! The results will directly impact how we introduce new products and services in the future, paving the way for seamless integration and user satisfaction. Thank you in advance!
  16. I was asked to take a look at a Dell Optiplex 330 running Vista Business SP2 because it had picked up the ZeroAccess rootkit/trojan. The PC was running McAfee Security as a Service, but the subscription was no longer up to date. I have run MBAM several times, sometimes detecting the infection, sometimes not. McAfee was not removing the infection, only detecting/blocking it, so I removed McAfee and replaced with Microsoft Security Essentials so it would, at the least, remain updated. Running a full scan overnight detected the infection again. I tried removing and rebooting, but then the PC began to act strangely. For starters, when I rebooted, every icon from the desktop (not just fixes against the infection) vanished, only to return about 1 full hour into a complete MBAM scan. Durring the scan, I noticed Internet Explorer starting to redirect me for the first time to some fake "AVG" search site. MBAM's full scan found a PUP, but identified Kaspersky's TDSS Killer as the culprit. I downloaded it from CNET and assumed it to be the genuine article, but who knows. My quick scans from Security Essentials are coming up clean now, but I am not sure if I can trust it. I have attached both the DDS and Attach logs. Any further info or instructions to check if this thing is clean or not would be greatly appreciated. It never seems this easy to get rid of a rootkit, so I am suspicious that it is still lying in waiting. Thanks, jt83 DDS_Attach.zip
  17. Hi, I have bullguard installed on my windows 7 Home Premium, if I let him scan than crashing my speakers, summarized: if I let music play then make my speakers sounds that are not normal. if I close mbam and restart my computer, that does not happen more. If I start mbam, Then it happens again.
  18. Hello, I am just wondering what is mbam-killer.exe. It is in the chameleon folder. It is the only file (other than the "help" file) that is not on the list in the help file and it is quite a bit larger than the rest of the files. I cannot find anything about this online other than some "process checking" sites. I have found no real info on this. I do not want to find out by running it, but I am very curious. Thanks for any info. Chris
  19. Hello, I was just wondering what the proper procedure would be to report a business that is using Malwarebytes Free edition against the terms stated in the EULA. I tried searching the site but could not find any information. Would it be best to just contact the support email listed on the site? Any information would be appreciated. Thanks.
Back to top
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.