Jump to content

Heuristic scan runs forever and BSOD in MBAMSwissArmy.sys


Recommended Posts

I'm so disappointed in Malwarebytes 2.0 and will uninstall it if this can't be fixed. Hyper scan still not finished after over 5 hours, so I cancelled it and I have got a BSOD in MBAMSwissArmy.sys two times now when doing a scan. It seems to get stuck when doing heuristic analysis. Rootkit scan is disabled. I don't think I'm infected since Avast, Avira and Hitman Pro does not detect anything. I also have no other problems with my computer. MalwareBytes 1.75 worked perfect. I tried to uninstall Avira (only use it for on demand scans so I think it's safe to use both Avast and Avira), but this didn't help. What should I do? I'm attaching some log files, hope it helps solve the problem.

FRST.txt

Addition.txt

Attach.txt

DDS.txt

Link to post
Share on other sites

Hi, John.A:

 

Is this the same computer with which you are working with MrC in the malware removal section here: https://forums.malwarebytes.org/index.php?showtopic=145599&hl=

If so, it's generally advisable to finish up with the helper there until (s)he gives the all-clear.

Malware removal -- especially rootkits -- can be a tedious and time-consuming process.

I'm not at all qualified or authorized to say for sure whether the problem is a rootkit or not, but, as AdvancedSetup pointed out, your original logs >here< did suggest the possibility.

And BSOD are usually caused by hardware or driver issues, or rootkits.

 

All told, it would probably be a good idea to keep working with MrC in your other post.

It's confusing and can cause problems to get help for the same issue in multiple locations.

 

Just a humble suggestion,

 

daledoc1

Link to post
Share on other sites

Ah, I didn't realize that. Thank you daledoc1 for letting me know.

Yes John.A, please continue to work with MrC on the issue you're having as it very well may be a malware/rootkit issue or a problem on your system that was caused by a past infection. Either way, please ignore my above instructions and just stick with MrC until he gives you the all clear that your PC is malware free and that he's done with repairs. Doing otherwise could cause confusion for him and you and may lead to further problems with your system.

Thank you

Link to post
Share on other sites

As stated by John A. I am having similar problems with Heuristic Analysis after any scan.  When it gets to this scan the objects deticted goes nuts and starts racking up the PUP's in the thousands.  Yes, I mean thousands. The presvious scans may or may not have deticted any pup's but this scan is nuts. I have Vista 64 bit system (dell), and the 1.75 version of malware worked great.  This needs to get fixed or I will, sadly, becom and ex-user of malware.

Link to post
Share on other sites

Hi, @BigMedicine:

 

Welcome.

 

Sorry to hear you are having problems.

 

Until exile360 returns, however, your problem doesn't really sound all that similar.

The OP here was experiencing BSOD, which is usually the result of hardware, driver or very severe rootkit infection.

 

It doesn't sound as if you have had a BSOD???

"Long scan times" is a very general problem for which there are many different explanations.

Lots of PUP detections is a different issue, but if there are a lot of them (and other malware) on the system, yes, that could increase scan times.

 

Moreover, it can be hard for the staff to assist multiple users in one thread -- it becomes very confusing for everyone.

 

So, in order to help the staff to better assist you, I suggest that you please do the following:

  • Please follow the steps in this pinned topic: "Diagnostic Logs"
  • Then, please post the logs in a NEW, separate thread >HERE<
  • When you do, please also post up one of the MBAM scan logs with all the PUP detections, so that the staff can take a look. -- Please let us know if you need help finding and exporting the log.

Thanks for your patience,

 

daledoc1

Link to post
Share on other sites

AS per your instructions I have run and hopefully can attached the scan logs that you have asked for: Addition.txtFRST.txtCheckResults.txt

 

The specific problems stem from the any scan under malware when it is in Heuristic Analysis the erros detected goes nuts and starts racking up a total that goes into the thousands.  Here is an example:

<folder>

<path> C:\users\jperkins\alldata\local\google\chrome\user data\default\extensions\klibnahbojhkanfgaglnlalfkgpcppfi\10.26.4.512_66\tb\al\wa\NOTIFICATION\images</path>

<vendor>PUP.OPTIONAL>WhiteSmoke.A</vendor>

<action/>

<hash>6ed0fe2ca5d63006f75d8ad6a9594cb4</hash>

 

I have no idea as to what this means.  I did use google chrome at one time, it started missing up with the malware scan, so I dumped it and have goe to uing Firfox as my internet browser.  Need some help here.  I trust malware prducts, and I would hate to stop using it.

 

James

Link to post
Share on other sites

Hello and Welcome to Malwarebytes Bigmedicine

 

Being that you are infected, feel free to follow the instructions below to receive free, one-on-one expert assistance in checking your system and clearing out any infections and correcting any damage done by the malware.

Please see the following pinned topic which has information on how to get help with this: Available Assistance for Possibly Infected Computers

Thank you

Link to post
Share on other sites

 
 

 

Ah, I didn't realize that. Thank you daledoc1 for letting me know.

Yes John.A, please continue to work with MrC on the issue you're having as it very well may be a malware/rootkit issue or a problem on your system that was caused by a past infection. Either way, please ignore my above instructions and just stick with MrC until he gives you the all clear that your PC is malware free and that he's done with repairs. Doing otherwise could cause confusion for him and you and may lead to further problems with your system.

Thank you

 

Unfortunately I still have this issue with very slow scan times. My system was not infected. I have disabled rootkit and archive scanning, but a Threat Scan still takes over 10 hours. It seems to get stuck on many files scanning them forever. Even Hyper Scan is slow since the heuristic scan takes several hours to complete. Sometimes I get BSOD when starting a scan, but not every time. I get very tired and have lost several hours due to this horrible update. I'm thinking of completely uninstall this product or going back to 1.75 that worked perfect without any issues.

 

 

 

Link to post
Share on other sites

Hey JohnA I was wondering if you have tried the latest beta to see if it fixes your issues? Reverting back to version 1.75 will only be a temporary fix because eventually 1.75 will not be supported..

See Below...

Thank You
Link to post
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.