Jump to content

Fileless.MTGen help

Recommended Posts



I will be guiding you as we go forward.  I do need to see other diagnostic information from this system, so that I can see about pinning down the source of this issue.

I would like to ask that you always attach any report or file I ask for, from time to time.


Before we proceed further, please read all of the following instructions carefully.

If there is anything that you do not understand kindly ask before proceeding.

If needed, please print out these instructions.


  • Please do not post logs using CODE, QUOTE, or FONT tags. Just always attach files / reports.
  • Please enable your system to show hidden files:
  • How to see hidden files in Windows
  • Make sure you're subscribed to this topic:
  • Click on the Follow This Topic Button (at the top right of this page), make sure that the Receive notification box is checked and that it is set to Instantly
  • Removing malware can be unpredictable, it is unlikely, but things can go  wrong! Please make sure you Backup all files that cannot be replaced if something were to happen. You can copy them to a CD/DVD, external drive or a pen / flash drive
  • Please don't run any other scans, download, install or uninstall any programs unless requested by me while I'm working with you.
  • The removal of malware is not instantaneous; please be patient. Often we are also in a different Time Zone.
  • Perform everything in the correct order. Sometimes one step requires the previous one.
  • If you have any problems while following my instructions, Stop there and tell me the exact nature of the issue.
  • You can check here if you're not sure if your computer is 32-bit or 64-bit
  • As we go along, from time to time, Windows User Account Control ( U A C ) will prompt whether to allow a tool or procedure to proceed forward.  Approve the Windows’ UAC prompt on by clicking on Continue or Yes.



When we are done, I'll give you instructions on how to clean up all the tools and logs

Please stick with me until I give you the "all clear" and Please don't waste my time by leaving before that.

Your topic will be closed if you haven't replied within 3 days.

Edited by Maurice Naggar
Link to post
Share on other sites

I am sending a Fix script which is going to be used by the FRST64 tool. They will both work together as a pair.

Please SAVE the attached FIXLIST  file to the DESKTOP.

*NOTE*: Both FRST64.exe  and the fixlist.txt must be in the same location or the fix will not work.

Double click FRST64 to run the tool. If the tool warns you the version is outdated, please download and run the updated version.
Click the Fix button just once, and wait.

If you receive a message that a reboot is required, please make sure you allow it to restart normally.
The tool will complete its run after restart.
When finished, the tool will make a log  Fixlog.txt in the same location from where it was run. Please attach the Fixlog.txt in your reply.

Following this custom fix, Please do a new Threat scan with Malwarebytes Anti-Malware.

Also, let me know if you have any questions or need further assistance.



Link to post
Share on other sites

Hello Maurice

First, thank you for your help. I copied the fixlist to my desktop where farbar is located. When I run farbar, then click fixscreen cap.gif. It says the file is not there. I clearly see it on my desktop. I also verified it is a file and not a shortcut.


Link to post
Share on other sites

Please look again. I see the Microsoft Word program.  This to me, implies that instead of having been saved AS IS that the file "popped up on Word".

Close Word, please.

Please do a SAVE AS  and save the FIXLIST as is directly to the desktop.  RIGHT CLICK on the link ( in prior message) blue-color marked FIXLIST.txt  and select SAVE AS

keep the same file name, but point the save location to the DESKTOP.


It is critical that the file NOT show nor be in Word.

Link to post
Share on other sites

I apologize for the confusion. It did not open in word. Word was just in the background blocking my desktop icons. 

Fixlist is saved to my desktop.

The screen cap shows the error that shows when I click on fix in farbar. Farbar and fixlist are both located on my desktop

Link to post
Share on other sites

That is still quite odd.  Try another way.  First, again close your open apps so that the Desktop view and the taskbar are plainly in sight.

Do a RIGHT click on FRST64 on the DESKTOP.   Then Select Run as Administrator

and reply YES  and allow it to proceed.   Watch all of the prompts carefully and do all you can to get it to just Start.

You may  be prompted about Windows *SmartScreen protection* - click line  *More info* information on that screen and click button *Run anyway* on next screen._
Click YES when prompted by Windows U A C prompt to allow it to run.


wait for FRST64 to load all the way.   Then you can click Fix button.   This all I imagine is frustrating but re-double your patience and do all you can, the best you can.  These kinds of situations call for infinite patience.

Link to post
Share on other sites

Please do a Threat & Rootkit Scan:
Start the Anti-Malware program.
Please look at the Dashboard screen. Would you please press the blue line marked Update  and let it update itself.

Click the Settings icon ( on the top bar) > then click Detection and Protection subtab, Detection Options, tick the box 'Scan for rootkits'.
Click on the Scan icon ( up on the top row ), then click on Start Scan button >> .

A Threat Scan will begin.

With _some infections_, you may see this message box.
'Could not load DDA driver'
Click 'Yes' to this message, to allow the driver to load after a restart.
Allow the computer to restart.    ( as needed )

Continue with the rest of these instructions.

When the scan is complete, be sure to press Review results and look at all of the listed items ( if any ).
It there are found items, be sure to have each line item check-box marked with a check-mark  in order to remove them.
click REMOVE Selected button.

Wait for the prompt to restart the computer to appear ( if any ), then click on Yes.
After the scan has completed, Click on the History tab > Application Logs.
Double click on the scan log which shows the Date and time of the scan just performed.
Click the EXPORT button at the bottom left.
Click TEXT file
Be very aware as to what folder and what NAME you give this report.  You have to make a note so you can send it.

Then attach that file with your next reply.


Link to post
Share on other sites

This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.