Jump to content

Recommended Posts

I've tried to run MBAM in safe mode, but the application fails saying "Malware Bytes has encountered a problem..." and it asks me to send the error report. 

 

Then I tried to run MBAM in chameleon, which gave me an error that looked something like this:

Enabling Driver...

...Done!

failed to copy the Master.conf file

Trying to start Malwarebytes Anti-Malware, please wait...

Creating Directory D:\Chameleon\Windows (then 3 lines of random numbers and letters)

Failed! 

 

 

So then, I read on other posts I'm supposed to run MBAM_Clean. I did this in safe mode as the Administrator, it asked me to reboot and so I did, but it didn't change anything. I still can't run MBAM. 

 

So it would seem I can't run Malwarebytes no matter what, how do I proceed because I'm definitely infected with a trojan. 

 

 

Link to post
Share on other sites

Hello,

    

 

They call me TwinHeadedEagle around here, and I'll be working with you.

 

    

 

    

Before we start please read and note the following:


Limit your internet access to posting here, some infections just wait to steal typed-in passwords.

Please be patient. I know it is frustrating when your PC isn't working properly, but malware removal takes time.

Don't run any scripts or tools on your own, unsupervised usage may cause more harm than good.

Do not paste the logs in your posts, attachments make my work easier. There is a Upload Files option below which you can use to attach your reports. Always attach reports from all tools.

Stay with me to the end, the absence of symptoms doesn't mean that your machine is fully operational.

Note that we may live in totally different time zones, what may cause some delays between answers.

Do not ask for help for your business PC. Companies are making revenue via computers, so it is good thing to pay someone to repair it.

If I don't hear from you within 3 days from this initial or any subsequent post, then this thread will be closed.


:excl: I can't foresee everything, so if anything unexpected happens, please stop and inform me!

:excl: There are no silly questions. Never be afraid to ask if in doubt!

 

 

 

  warning.gif Rules and policies

 

We won't support any piracy.

That being told, if any evidence of illegal OS, software, cracks/keygens or any other will be revealed, any further assistance will be suspended. If you are aware that there is this kind of stuff on your machine, remove it before proceeding!

The same applies to any use of P2P software: uTorrent, BitTorrent, Vuze, Kazaa, Ares... We don't provide any help for P2P, except for their removal. All P2P software has to be uninstalled or at least fully disabled before proceeding!

 

Failure to follow these guidelines will result with closing your topic and withdrawning any assistance.

 

 

 

Why are you in Safe Mode? Can you enter Normal mode?

Link to post
Share on other sites

I am in safe mode because I discovered a virus on my laptop, but because I do not have administrative privileges, I can't run MB from normal mode. When I boot in safe mode, I can act as administrator and run anything I wish. Just as a means of update as well, I have also run VIPRE virus scanner in safe mode and it did nothing to fix the issue. 

Link to post
Share on other sites

What I'm not understanding though is why we can't work in safe mode? I can easily log in as an admin in safe mode. Wouldn't it be better to work there? (Forgot to mention in my original post, the virus makes a constant 'run as' prompt appear. when you close it it simply re-opens, this is another reason I've been using safe mode, the prompt doesn't in in safe mode) 

 

I have fixed the admin problem by creating a new admin account anyways. So how do we proceed now? 

Link to post
Share on other sites

Please follow my instructions from now:
 
 
 
51a46ae42d560-malwarebytes_anti_malware. Scan with Malwarebytes' Anti-Malware
 
Please re-run 51a46ae42d560-malwarebytes_anti_malware. Malwarebytes' Anti-Malware.

  • First of all, select update.
  • Once updated, click the Settings tab, in the left panel choose Detctions & protection and tick Scan for rootkits.
  • Click the Scan tab, choose Threat Scan is checked and click Scan Now.
  • If threats are detected, click the Apply Actions button. You will now be prompted to reboot. Click Yes.
  • Upon completion of the scan (or after the reboot), click the History tab.
  • Click Application Logs and double-click the newest Scan Log.
  • At the bottom click Export and choose Text file.

Save the file to your desktop and include its content in your next reply.

Link to post
Share on other sites

Okay, I've done that. 

 

 

Malwarebytes Anti-Malware

www.malwarebytes.org
 
Scan Date: 9/8/2014
Scan Time: 9:17:46 AM
Logfile: Scan Log 1.txt
Administrator: Yes
 
Version: 2.00.2.1012
Malware Database: v2014.09.08.05
Rootkit Database: v2014.08.21.01
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled
 
OS: Windows XP Service Pack 3
CPU: x86
File System: NTFS
User: Casey-Admin
 
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 426034
Time Elapsed: 13 min, 40 sec
 
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
 
Processes: 0
(No malicious items detected)
 
Modules: 0
(No malicious items detected)
 
Registry Keys: 0
(No malicious items detected)
 
Registry Values: 0
(No malicious items detected)
 
Registry Data: 0
(No malicious items detected)
 
Folders: 0
(No malicious items detected)
 
Files: 2
Trojan.Reveton, C:\Documents and Settings\All Users\Application Data\27BE69D.cpp, Quarantined, [a5902fbcb9c222148b0cc8f04fb244bc], 
Trojan.Reveton, C:\Documents and Settings\CASEY\Local Settings\Temp\tmp1.log, Quarantined, [4ee759924c2f8caae8afa315a160f40c], 
 
Physical Sectors: 0
(No malicious items detected)
 
 
(end)
Link to post
Share on other sites

That looks okay. Let's make one more scan:
 
 
 
Please download Farbar Recovery Scan Tool and save it to your desktop.
 
Note: You need to run the version compatibale with your system. If you are not sure which version applies to your system download both of them and try to run them.
Only one of them will run on your system, that will be the right version.

  • Double-click to run it. When the tool opens click Yes to disclaimer.
  • Press Scan button.
  • It will make a log (FRST.txt) in the same directory the tool is run. Please attach it to your reply.
  • The first time the tool is run, it makes also another log (Addition.txt). Please attach it to your reply.
Link to post
Share on other sites

  • Root Admin

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.