RubbeR DuckY

Version 0.62

Recommended Posts

updated within program 0.61 to 0.62 went good i did a quick and full scan and found nothing and i see that the scanning is much faster :D also i would like to thank all you people behind this great program for all the heard work you all must be doing :D

Share this post


Link to post
Share on other sites
Various changes. This one will be sent out via e-mail as well.

Prior to you email. I went through the normal program update process. The database seemed to update showing version 105 however

reloading MBAM and recheck of updates invokes re-download of database. There is also no change to the program update number to 62. even though it went through the normal process. Have downloaded the mailed version will try uninstall/reinstall.

Thanks

Share this post


Link to post
Share on other sites
We are still working to resolve the database issue =)

Thanks guys/girls keep up the great work I'm sure you'll have this one sorted in no time. Appreciate the use of MBAM

Share this post


Link to post
Share on other sites
Various changes. This one will be sent out via e-mail as well.

Would you add me to that list please.

Share this post


Link to post
Share on other sites

Just downloaded 0.62 from database.

In add and remove still shows 0.61.

If you click on about you will see the 0.62 is installed.

Database version: 105

FingerPrints Loaded: 5218

OS running is Vista Ultimate.

I'm going to uninstall and get the url link to install .062.

Share this post


Link to post
Share on other sites
Just downloaded 0.62 from database.

In add and remove still shows 0.61.

If you click on about you will see the 0.62 is installed.

Database version: 105

FingerPrints Loaded: 5218

OS running is Vista Ultimate.

I'm going to uninstall and get the url link to install .062.

You have 62 it just shows wrong. Is how I read the posts above.

Share this post


Link to post
Share on other sites
You have 62 it just shows wrong. Is how I read the posts above.

That correct Jean. It shows 61 in add and remove and 61 after the update from the database in latest news but if you check at about it will show 62.

Share this post


Link to post
Share on other sites

Hi Hardhead, JeanInMontana, hi everyone,

Upgraded 0.61 -> 0.62 DBversion 105 Fingerprints 5218 -> fine!

Prevx didn't complain!

Try to Update from 0.62:

As already said:

- Latest news shows 0.61

- keeps downloading 303 KB and displays "The database was successfully uploaded to version 105"

~~

- option Full Scan selected (first time I see the latest option correctly saved)

- Quick Scan: No malicious items in 4 min. 56 sec. for 10,088 objects -> a bit faster but less objects scanned

- Full Scan in progress

Share this post


Link to post
Share on other sites

Less objects because there was a bug in the counter. Faster because I made it that way :D.

I am going to remove the version from the installer.

1. I don't like that it shows a version in Add/Remove programs.

2. I always forget to change something somewhere! ;)

Share this post


Link to post
Share on other sites

I just got this when I click on icon or startup to run.

Malwarebytes' AntiMalware application is already running.

I just checked task and list and it is not running.

That quote sounds familiar to RR Pro.

Share this post


Link to post
Share on other sites

Hi everyone,

Full Scan still in progress but I can already see 4 infected Object meaning that you got some of the infectious files... if I remember weel, I have got 6 infectious files on my hard disk! Good Congrats!

~~ edit:

- Full Scan is over -> 52 min. 1 sec. for 70,220 files scanned and 4 infected objects

ie a bit slower and less files (is this a bug with the counter too?)

Malwarebytes' Anti-Malware Version 0.62

This logfile was saved before the removal process.

Database version: 105

Memory Processes Infected: 0

Memory Modules Infected: 0

Registry Keys Infected: 0

Registry Values Infected: 0

Registry Data Items Infected: 0

Folders Infected: 0

Files Infected: 4

Memory Processes Infected:

(No malicious items detected)

Memory Modules Infected:

(No malicious items detected)

Registry Keys Infected:

(No malicious items detected)

Registry Values Infected:

(No malicious items detected)

Registry Data Items Infected:

(No malicious items detected)

Folders Infected:

(No malicious items detected)

Files Infected:

C:\Documents and Settings\G

Share this post


Link to post
Share on other sites

Bruce,

Can you please attach these .
Done!
Malwarebytes

Share this post


Link to post
Share on other sites

Hi everyone,

0.62 DBversion 109 Fingerprints 2236

- Quick Scan 5 min. 45 sec. for 10.088 objects (slower... the counter bug is not fixed)

There's a rootkit on my disk!!!??? 0 byte created August 1, 2007 at 11:30 Paris ie 3 hours earlier!

True that I was handling infectious files but I was not aware of a true infection!

Malwarebytes' Anti-Malware Version 0.62

This logfile was saved after the removal process completed.

Database version: 109

Memory Processes Infected: 0

Memory Modules Infected: 0

Registry Keys Infected: 0

Registry Values Infected: 0

Registry Data Items Infected: 0

Folders Infected: 0

Files Infected: 1

Memory Processes Infected:

(No malicious items detected)

Memory Modules Infected:

(No malicious items detected)

Registry Keys Infected:

(No malicious items detected)

Registry Values Infected:

(No malicious items detected)

Registry Data Items Infected:

(No malicious items detected)

Folders Infected:

(No malicious items detected)

Files Infected:

C:\WINDOWS\system32\drivers\tvqpxm19.sys (Rootkit.Agent) -> Quarantined and deleted successfully.

Share this post


Link to post
Share on other sites

Please read the experts forum about running the developer version .

I need the developer logs from experts for evaluating FPs

Share this post


Link to post
Share on other sites

You might have , tvqpxm19.sys has 0 hits on google . Any normal driver should have a lot .

Share this post


Link to post
Share on other sites

A quick check in my defs indicates that this was without question a rootkit I had at one point .

The way MBAM handles these is to try to create a file of the same name and if it fails then it is confirmed as a hit .

The fact that this was a 0 byte file seems to indicate a malfunction of MBAM (0 byte file is likely created by MBAM) . I will have Marcin look into it .

Share this post


Link to post
Share on other sites
Guest
This topic is now closed to further replies.

  • Recently Browsing   0 members

    No registered users viewing this page.