kbsilver Posted July 16, 2017 ID:1142998 Share Posted July 16, 2017 In the lastest scan today drmk.sys and ks.sys were tagged as rootkits and quarantined. This not only broke the audio system/drivers the computer (windows 10 64 bit) started crashing which never happened before. After wasting 2 hours trying to repair I just did a restore from recent back-up, but stopped Malwarebytes from quarantined the files again. I also tried to put them in the exclusion list but they would not display to be selected for exclusion (just a handful of the hundreds of files in windows/system32/drivers would display). I've been using Malwarebytes for about a decade. This is the first time I've ever had to do a restore due to software issues. What's going on?? Link to post Share on other sites More sharing options...
1PW Posted July 16, 2017 ID:1143039 Share Posted July 16, 2017 (edited) Hello @kbsilver: Thank you for reporting the system's driver issue. The Malwarebytes' staffers/helpers must have good log data for a quality fault analysis to begin. Let's what the system's logs show. Please save your work and close all running user applications for your convenience. Please follow the steps within the locked/pinned topic at Having problems using Malwarebytes? Please follow these steps. The system's drivers should be recoverable from quarantine and then temporarily added to MB3's exclusions until a solution is found. In your next reply to your topic, please only attach the three (3) separate files that are developed above: mb-check-results.zip, FRST.txt, and Addition.txt. Thank you. Edited July 16, 2017 by 1PW Link to post Share on other sites More sharing options...
kbsilver Posted July 16, 2017 Author ID:1143162 Share Posted July 16, 2017 I'm not installing software I'm not sure about to do scans, but the attached screen grabs should clarify my issue. If I scan with Rootkit detection enabled it will pick up the 2 indicated files. I already know if I allow MAB to quarantine these files it breaks the audio system and makes Windows 10 crash. kb.sys CANNOT be restored from quarantine (file is in use). I've tried to exclude these files, but MAB will not allow me to select them, does not show up in the list (only 5 files out of the hundreds in this directory appear), and cannot type them in manually. Thank-you. Link to post Share on other sites More sharing options...
Staff shadowwar Posted July 17, 2017 Staff ID:1143517 Share Posted July 17, 2017 (edited) Please download the latest version from our website. This will fix this issue. https://downloads.malwarebytes.com/file/mb3/ Edited July 18, 2017 by shadowwar Link to post Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now