Jump to content

Recommended Posts

Good Afternoon

What does not having a scheduled scan setup have to do with system protection?

I have never had a scheduled scan setup on Malwarebytes, since version 1.68 or something close to that, around eight to nine years ago

My reason is I shut my system down at night, then power up usually the next day.

System boot-up times vary from day to day, and Malwarebytes uses an obscene amount of CPU and memory during its scans

The scheduled scans crashed my system numerous time, due to Windows doing whatever Windows does after boot-up, especially with Windows 10 and Malwarebytes trying to scan the system at the same time

I run my Scans when I'm ready to run them and my system isn't doing anything or anything opened at least 3 times a week.

Since I generally only log on to Facebook and Twitter, the chances of getting anything malicious is slim to none, I might get one inbound block a month, last inbound block was months ago

Using Intel i5 9th gen 8400 Mhz CPU, 16 Gb memory for the past two and half years, Windows 10 21H2 Pro OS build 19043.1165

Screenshot 2021-08-19 160647.png

Link to post
Share on other sites

1 hour ago, Porthos said:

That is new. You can ignore it if you wish.

If they are going, include scans for system protection in their Security Advisor, then it should be like it was with version 2.04, I recall, where it stated on the front last scan over 7 days

Might have the version and number of days wrong, drawback of old age

Have it stated "Device Scans" over a certain number of days, since last scan

Link to post
Share on other sites

  • Root Admin

Hello @MSimm1

Aside from your feedback about the alert - on a side note. (Facebook is well known to house all kinds of malware threats from people sharing stuff so don't assume the site is safe, who you're sharing with matters a lot)

If your system is slow from a scan or crashing then something is wrong with the computer period. It is not normal for applications to crash and act like that.

Here is my CPU usage for mine right now

image.png

Here is the current memory usage

image.png

Here is the disk activity

image.png

 

As you can see, all the processes are very low usage.

If you're interested in allowing us to assist you with checking on your computer to see what might be going on to cause such an issue please let us know. We'll be more than happy to assist you in taking a look and offering advice to correct the issue.

 

To begin, please do the following so that we may take a closer look at your installation for troubleshooting:

NOTE: The tools and the information obtained are safe and not harmful to your privacy or your computer, please allow the programs to run if blocked by your system.

  • Download the Malwarebytes Support Tool
  • In your Downloads folder, open the mb-support-x.x.x.xxx.exe file
  • In the User Account Control pop-up window, click Yes to continue the installation
  • Run the MBST Support Tool
  • In the left navigation pane of the Malwarebytes Support Tool, click Advanced
  • In the Advanced Options, click Gather Logs. A status diagram displays the tool is Getting logs from your machine
  • A zip file named mbst-grab-results.zip will be saved to your desktop, please upload that file on your next reply

Thank you

 

Link to post
Share on other sites

13 hours ago, AdvancedSetup said:

Hello @MSimm1

Aside from your feedback about the alert - on a side note. (Facebook is well known to house all kinds of malware threats from people sharing stuff so don't assume the site is safe, who you're sharing with matters a lot)

If your system is slow from a scan or crashing then something is wrong with the computer period. It is not normal for applications to crash and act like that.

Here is my CPU usage for mine right now

image.png

Here is the current memory usage

image.png

Here is the disk activity

image.png

 

As you can see, all the processes are very low usage.

If you're interested in allowing us to assist you with checking on your computer to see what might be going on to cause such an issue please let us know. We'll be more than happy to assist you in taking a look and offering advice to correct the issue.

 

To begin, please do the following so that we may take a closer look at your installation for troubleshooting:

NOTE: The tools and the information obtained are safe and not harmful to your privacy or your computer, please allow the programs to run if blocked by your system.

  • Download the Malwarebytes Support Tool
  • In your Downloads folder, open the mb-support-x.x.x.xxx.exe file
  • In the User Account Control pop-up window, click Yes to continue the installation
  • Run the MBST Support Tool
  • In the left navigation pane of the Malwarebytes Support Tool, click Advanced
  • In the Advanced Options, click Gather Logs. A status diagram displays the tool is Getting logs from your machine
  • A zip file named mbst-grab-results.zip will be saved to your desktop, please upload that file on your next reply

Thank you

 

Good Afternoon, AdvancedSetup

Thank you for the offer, I'll take back to the Computer Shop that built the machine and have them take a look see

System built / purchased in Aug 2019 with Windows 10 Pro 1903 and I have never done a clean install, just feature updates

The Boot Drive is a Seagate FireCuda (SSHD) 2 Tb ST2000DX002, don't think it's going bad, but it could be a possibility

Scannow and Chkdsk have always come back with no fixes required or errors

Support Tool logs:

Thank you for the reply and your time

Stay Safe

 

mbst-grab-results.zip

Link to post
Share on other sites

  • Root Admin

Thank you for the logs @MSimm1

 

Actually, the logs do look pretty good overall. I was expecting to see many errors but there are only a few.

I'd suggest a few possible fixes that may help.

Open an elevated admin command prompt and run the following and press the Enter key. Then restart the computer and do not touch any keys and let the disk check run.

ECHO Y|CHKDSK C: /F

 

After the disk check move on to the next steps below

 

The logs show an error with VSS which could be temporary but if it is really not working that would cause the issues you're seeing.

 

Please download and run the following  Volume Shadow Copy Service (VSS), Diagnostic Tool, from Acronis

Acronis VSS Doctor

Free tool for diagnosing and repairing Volume Shadow Copy Service issues. Download link on the bottom of the page.
Download - Acronis VSS Doctor

In many cases, it can correct the issues on its own. If not, then it will give details on what may be causing the issues. Please save the report in text format and post back that log on your next reply.


You can also try the tool from Macrium Reflect if the Acronis tool did not work.

Macrium Reflect Volume Shadow Copy Service (VSS) Repair Tool


Once you've run the repair tool you need to restart your computer.
 

 

 

After that, then run the diagnostics for your Search engine to make sure it's working well

https://docs.microsoft.com/en-us/troubleshoot/windows-client/shell-experience/fix-problems-in-windows-search

 

 

You have a LOT of Alternate Data Streams on your Temp folder. You can use the following tool to remove those.

https://docs.microsoft.com/en-us/sysinternals/downloads/streams

AlternateDataStreams: C:\ProgramData\TEMP:01E20268 [498]
AlternateDataStreams: C:\ProgramData\TEMP:03A2597D [253]
AlternateDataStreams: C:\ProgramData\TEMP:03A39BFB [472]
AlternateDataStreams: C:\ProgramData\TEMP:04C27085 [252]
AlternateDataStreams: C:\ProgramData\TEMP:0AD90625 [248]
AlternateDataStreams: C:\ProgramData\TEMP:0C65EA0E [227]
AlternateDataStreams: C:\ProgramData\TEMP:115EA582 [235]
AlternateDataStreams: C:\ProgramData\TEMP:12FDB918 [244]
AlternateDataStreams: C:\ProgramData\TEMP:1613CC83 [222]
AlternateDataStreams: C:\ProgramData\TEMP:1715662B [498]
AlternateDataStreams: C:\ProgramData\TEMP:1A14B3AF [468]
AlternateDataStreams: C:\ProgramData\TEMP:1FF82161 [450]
AlternateDataStreams: C:\ProgramData\TEMP:2658F5EB [231]
AlternateDataStreams: C:\ProgramData\TEMP:26D061B8 [227]
AlternateDataStreams: C:\ProgramData\TEMP:2CB9631F [134]
AlternateDataStreams: C:\ProgramData\TEMP:2D212047 [229]
AlternateDataStreams: C:\ProgramData\TEMP:2D5180DD [242]
AlternateDataStreams: C:\ProgramData\TEMP:2E1B8BE7 [240]
AlternateDataStreams: C:\ProgramData\TEMP:2F49ABE3 [242]
AlternateDataStreams: C:\ProgramData\TEMP:32414169 [476]
AlternateDataStreams: C:\ProgramData\TEMP:3AEDA9E4 [240]
AlternateDataStreams: C:\ProgramData\TEMP:3C4BD225 [223]
AlternateDataStreams: C:\ProgramData\TEMP:3CC2D8AB [490]
AlternateDataStreams: C:\ProgramData\TEMP:417C2BC3 [456]
AlternateDataStreams: C:\ProgramData\TEMP:4618ABB0 [230]
AlternateDataStreams: C:\ProgramData\TEMP:4B96F9E4 [448]
AlternateDataStreams: C:\ProgramData\TEMP:4C496DBA [244]
AlternateDataStreams: C:\ProgramData\TEMP:5008417E [231]
AlternateDataStreams: C:\ProgramData\TEMP:5539129F [235]
AlternateDataStreams: C:\ProgramData\TEMP:58AC077F [232]
AlternateDataStreams: C:\ProgramData\TEMP:594B56B9 [247]
AlternateDataStreams: C:\ProgramData\TEMP:5B70097C [247]
AlternateDataStreams: C:\ProgramData\TEMP:5C3E8CB5 [223]
AlternateDataStreams: C:\ProgramData\TEMP:5CA968FD [243]
AlternateDataStreams: C:\ProgramData\TEMP:5E11B614 [478]
AlternateDataStreams: C:\ProgramData\TEMP:5F10D493 [224]
AlternateDataStreams: C:\ProgramData\TEMP:5F6F915F [244]
AlternateDataStreams: C:\ProgramData\TEMP:64B8197A [243]
AlternateDataStreams: C:\ProgramData\TEMP:65949863 [484]
AlternateDataStreams: C:\ProgramData\TEMP:6C74C778 [235]
AlternateDataStreams: C:\ProgramData\TEMP:73848ABF [490]
AlternateDataStreams: C:\ProgramData\TEMP:7929462F [242]
AlternateDataStreams: C:\ProgramData\TEMP:797D4F54 [240]
AlternateDataStreams: C:\ProgramData\TEMP:79EAEF54 [492]
AlternateDataStreams: C:\ProgramData\TEMP:7A5BA354 [229]
AlternateDataStreams: C:\ProgramData\TEMP:807012A3 [446]
AlternateDataStreams: C:\ProgramData\TEMP:841E05D6 [454]
AlternateDataStreams: C:\ProgramData\TEMP:898B0A1F [239]
AlternateDataStreams: C:\ProgramData\TEMP:89B7A4D9 [251]
AlternateDataStreams: C:\ProgramData\TEMP:8A40FEFF [226]
AlternateDataStreams: C:\ProgramData\TEMP:900EBAFA [472]
AlternateDataStreams: C:\ProgramData\TEMP:91B663FA [480]
AlternateDataStreams: C:\ProgramData\TEMP:93DC6654 [239]
AlternateDataStreams: C:\ProgramData\TEMP:94B25DF5 [227]
AlternateDataStreams: C:\ProgramData\TEMP:9A311B60 [504]
AlternateDataStreams: C:\ProgramData\TEMP:9CD8FF2A [229]
AlternateDataStreams: C:\ProgramData\TEMP:A4AF8D0D [158]
AlternateDataStreams: C:\ProgramData\TEMP:A5DAA05A [246]
AlternateDataStreams: C:\ProgramData\TEMP:A688DC0C [228]
AlternateDataStreams: C:\ProgramData\TEMP:A73595DE [232]
AlternateDataStreams: C:\ProgramData\TEMP:A81A3C86 [248]
AlternateDataStreams: C:\ProgramData\TEMP:A9DD0FE7 [242]
AlternateDataStreams: C:\ProgramData\TEMP:ABC84E05 [251]
AlternateDataStreams: C:\ProgramData\TEMP:ABD8D871 [247]
AlternateDataStreams: C:\ProgramData\TEMP:AE72EDE2 [502]
AlternateDataStreams: C:\ProgramData\TEMP:B69CF390 [189]
AlternateDataStreams: C:\ProgramData\TEMP:C09C0F71 [247]
AlternateDataStreams: C:\ProgramData\TEMP:C5DA63E1 [251]
AlternateDataStreams: C:\ProgramData\TEMP:C98828D3 [251]
AlternateDataStreams: C:\ProgramData\TEMP:CEF5B610 [224]
AlternateDataStreams: C:\ProgramData\TEMP:D03C606E [498]
AlternateDataStreams: C:\ProgramData\TEMP:D6791B3F [247]
AlternateDataStreams: C:\ProgramData\TEMP:D6EEC2F8 [227]
AlternateDataStreams: C:\ProgramData\TEMP:D75951BC [241]
AlternateDataStreams: C:\ProgramData\TEMP:D7F3F733 [230]
AlternateDataStreams: C:\ProgramData\TEMP:DBE046F5 [223]
AlternateDataStreams: C:\ProgramData\TEMP:DC0B1070 [207]
AlternateDataStreams: C:\ProgramData\TEMP:E265ED33 [245]
AlternateDataStreams: C:\ProgramData\TEMP:E2E09709 [248]
AlternateDataStreams: C:\ProgramData\TEMP:E604EE00 [237]
AlternateDataStreams: C:\ProgramData\TEMP:E705C43B [237]
AlternateDataStreams: C:\ProgramData\TEMP:E8AEB2BF [241]
AlternateDataStreams: C:\ProgramData\TEMP:F256A4FE [226]
AlternateDataStreams: C:\ProgramData\TEMP:F512B2D9 [506]
AlternateDataStreams: C:\ProgramData\TEMP:F56BE392 [224]
AlternateDataStreams: C:\ProgramData\TEMP:F7BF538D [242]
AlternateDataStreams: C:\ProgramData\TEMP:FD8BCF62 [249]

 

You can do the following to clean the TEMP folders using an elevated admin command prompt. Enter each line, one by one, and then press the Enter key on each line.

 

CD "%TEMP%\"
RD /S /Q "%TEMP%\"

CD "%WINDIR%\TEMP"
RD /S /Q "%WINDIR%\TEMP"

 

Then restart the computer again.

 

Then run the following from the elevated Admin command prompt.

SFC /SCANNOW

If that finds errors and fixes them you're done with that. If it finds issues but cannot correct them then run the following.

DISM.exe /Online /Cleanup-image /Restorehealth

Then run the SFC command again and this time it should fix the errors.

 

Once all of the items above have been completed then do a Clean Removal and reinstall of Malwarebytes and let me know if that corrects the issues you're having with the program.

 

 

 

Can you please do the following?

  • Download the Malwarebytes Support Tool
  • In your Downloads folder, open the mb-support-x.x.x.xxx.exe file
  • In the User Account Control pop-up window, click Yes to continue the installation
  • Run the MBST Support Tool
  • In the left navigation pane of the Malwarebytes Support Tool, click Advanced
  • In the Advanced Options, click the CLEAN button and follow the onscreen instructions to reinstall Malwarebytes
  • NOTE: Please have patience as it can take a while to remove and reinstall. The computer will restart to complete

After the restart please do the following

  • Run the MBST Support Tool
  • In the left navigation pane of the Malwarebytes Support Tool, click Advanced
  • In the Advanced Options, click Gather Logs. A status diagram displays the tool is Getting logs from your machine
  • A zip file named mbst-grab-results.zip will be saved to your desktop, please upload that file on your next reply

 

If you have any questions please let me know and I'll try to assist.

Thank you

 

Link to post
Share on other sites

3 hours ago, AdvancedSetup said:

Thank you for the logs @MSimm1

 

Actually, the logs do look pretty good overall. I was expecting to see many errors but there are only a few.

I'd suggest a few possible fixes that may help.

Open an elevated admin command prompt and run the following and press the Enter key. Then restart the computer and do not touch any keys and let the disk check run.

ECHO Y|CHKDSK C: /F

 

After the disk check move on to the next steps below

 

The logs show an error with VSS which could be temporary but if it is really not working that would cause the issues you're seeing.

 

Please download and run the following  Volume Shadow Copy Service (VSS), Diagnostic Tool, from Acronis

Acronis VSS Doctor

Free tool for diagnosing and repairing Volume Shadow Copy Service issues. Download link on the bottom of the page.
Download - Acronis VSS Doctor

In many cases, it can correct the issues on its own. If not, then it will give details on what may be causing the issues. Please save the report in text format and post back that log on your next reply.


You can also try the tool from Macrium Reflect if the Acronis tool did not work.

Macrium Reflect Volume Shadow Copy Service (VSS) Repair Tool


Once you've run the repair tool you need to restart your computer.
 

 

 

After that, then run the diagnostics for your Search engine to make sure it's working well

https://docs.microsoft.com/en-us/troubleshoot/windows-client/shell-experience/fix-problems-in-windows-search

 

 

You have a LOT of Alternate Data Streams on your Temp folder. You can use the following tool to remove those.

https://docs.microsoft.com/en-us/sysinternals/downloads/streams

AlternateDataStreams: C:\ProgramData\TEMP:01E20268 [498]
AlternateDataStreams: C:\ProgramData\TEMP:03A2597D [253]
AlternateDataStreams: C:\ProgramData\TEMP:03A39BFB [472]
AlternateDataStreams: C:\ProgramData\TEMP:04C27085 [252]
AlternateDataStreams: C:\ProgramData\TEMP:0AD90625 [248]
AlternateDataStreams: C:\ProgramData\TEMP:0C65EA0E [227]
AlternateDataStreams: C:\ProgramData\TEMP:115EA582 [235]
AlternateDataStreams: C:\ProgramData\TEMP:12FDB918 [244]
AlternateDataStreams: C:\ProgramData\TEMP:1613CC83 [222]
AlternateDataStreams: C:\ProgramData\TEMP:1715662B [498]
AlternateDataStreams: C:\ProgramData\TEMP:1A14B3AF [468]
AlternateDataStreams: C:\ProgramData\TEMP:1FF82161 [450]
AlternateDataStreams: C:\ProgramData\TEMP:2658F5EB [231]
AlternateDataStreams: C:\ProgramData\TEMP:26D061B8 [227]
AlternateDataStreams: C:\ProgramData\TEMP:2CB9631F [134]
AlternateDataStreams: C:\ProgramData\TEMP:2D212047 [229]
AlternateDataStreams: C:\ProgramData\TEMP:2D5180DD [242]
AlternateDataStreams: C:\ProgramData\TEMP:2E1B8BE7 [240]
AlternateDataStreams: C:\ProgramData\TEMP:2F49ABE3 [242]
AlternateDataStreams: C:\ProgramData\TEMP:32414169 [476]
AlternateDataStreams: C:\ProgramData\TEMP:3AEDA9E4 [240]
AlternateDataStreams: C:\ProgramData\TEMP:3C4BD225 [223]
AlternateDataStreams: C:\ProgramData\TEMP:3CC2D8AB [490]
AlternateDataStreams: C:\ProgramData\TEMP:417C2BC3 [456]
AlternateDataStreams: C:\ProgramData\TEMP:4618ABB0 [230]
AlternateDataStreams: C:\ProgramData\TEMP:4B96F9E4 [448]
AlternateDataStreams: C:\ProgramData\TEMP:4C496DBA [244]
AlternateDataStreams: C:\ProgramData\TEMP:5008417E [231]
AlternateDataStreams: C:\ProgramData\TEMP:5539129F [235]
AlternateDataStreams: C:\ProgramData\TEMP:58AC077F [232]
AlternateDataStreams: C:\ProgramData\TEMP:594B56B9 [247]
AlternateDataStreams: C:\ProgramData\TEMP:5B70097C [247]
AlternateDataStreams: C:\ProgramData\TEMP:5C3E8CB5 [223]
AlternateDataStreams: C:\ProgramData\TEMP:5CA968FD [243]
AlternateDataStreams: C:\ProgramData\TEMP:5E11B614 [478]
AlternateDataStreams: C:\ProgramData\TEMP:5F10D493 [224]
AlternateDataStreams: C:\ProgramData\TEMP:5F6F915F [244]
AlternateDataStreams: C:\ProgramData\TEMP:64B8197A [243]
AlternateDataStreams: C:\ProgramData\TEMP:65949863 [484]
AlternateDataStreams: C:\ProgramData\TEMP:6C74C778 [235]
AlternateDataStreams: C:\ProgramData\TEMP:73848ABF [490]
AlternateDataStreams: C:\ProgramData\TEMP:7929462F [242]
AlternateDataStreams: C:\ProgramData\TEMP:797D4F54 [240]
AlternateDataStreams: C:\ProgramData\TEMP:79EAEF54 [492]
AlternateDataStreams: C:\ProgramData\TEMP:7A5BA354 [229]
AlternateDataStreams: C:\ProgramData\TEMP:807012A3 [446]
AlternateDataStreams: C:\ProgramData\TEMP:841E05D6 [454]
AlternateDataStreams: C:\ProgramData\TEMP:898B0A1F [239]
AlternateDataStreams: C:\ProgramData\TEMP:89B7A4D9 [251]
AlternateDataStreams: C:\ProgramData\TEMP:8A40FEFF [226]
AlternateDataStreams: C:\ProgramData\TEMP:900EBAFA [472]
AlternateDataStreams: C:\ProgramData\TEMP:91B663FA [480]
AlternateDataStreams: C:\ProgramData\TEMP:93DC6654 [239]
AlternateDataStreams: C:\ProgramData\TEMP:94B25DF5 [227]
AlternateDataStreams: C:\ProgramData\TEMP:9A311B60 [504]
AlternateDataStreams: C:\ProgramData\TEMP:9CD8FF2A [229]
AlternateDataStreams: C:\ProgramData\TEMP:A4AF8D0D [158]
AlternateDataStreams: C:\ProgramData\TEMP:A5DAA05A [246]
AlternateDataStreams: C:\ProgramData\TEMP:A688DC0C [228]
AlternateDataStreams: C:\ProgramData\TEMP:A73595DE [232]
AlternateDataStreams: C:\ProgramData\TEMP:A81A3C86 [248]
AlternateDataStreams: C:\ProgramData\TEMP:A9DD0FE7 [242]
AlternateDataStreams: C:\ProgramData\TEMP:ABC84E05 [251]
AlternateDataStreams: C:\ProgramData\TEMP:ABD8D871 [247]
AlternateDataStreams: C:\ProgramData\TEMP:AE72EDE2 [502]
AlternateDataStreams: C:\ProgramData\TEMP:B69CF390 [189]
AlternateDataStreams: C:\ProgramData\TEMP:C09C0F71 [247]
AlternateDataStreams: C:\ProgramData\TEMP:C5DA63E1 [251]
AlternateDataStreams: C:\ProgramData\TEMP:C98828D3 [251]
AlternateDataStreams: C:\ProgramData\TEMP:CEF5B610 [224]
AlternateDataStreams: C:\ProgramData\TEMP:D03C606E [498]
AlternateDataStreams: C:\ProgramData\TEMP:D6791B3F [247]
AlternateDataStreams: C:\ProgramData\TEMP:D6EEC2F8 [227]
AlternateDataStreams: C:\ProgramData\TEMP:D75951BC [241]
AlternateDataStreams: C:\ProgramData\TEMP:D7F3F733 [230]
AlternateDataStreams: C:\ProgramData\TEMP:DBE046F5 [223]
AlternateDataStreams: C:\ProgramData\TEMP:DC0B1070 [207]
AlternateDataStreams: C:\ProgramData\TEMP:E265ED33 [245]
AlternateDataStreams: C:\ProgramData\TEMP:E2E09709 [248]
AlternateDataStreams: C:\ProgramData\TEMP:E604EE00 [237]
AlternateDataStreams: C:\ProgramData\TEMP:E705C43B [237]
AlternateDataStreams: C:\ProgramData\TEMP:E8AEB2BF [241]
AlternateDataStreams: C:\ProgramData\TEMP:F256A4FE [226]
AlternateDataStreams: C:\ProgramData\TEMP:F512B2D9 [506]
AlternateDataStreams: C:\ProgramData\TEMP:F56BE392 [224]
AlternateDataStreams: C:\ProgramData\TEMP:F7BF538D [242]
AlternateDataStreams: C:\ProgramData\TEMP:FD8BCF62 [249]

 

You can do the following to clean the TEMP folders using an elevated admin command prompt. Enter each line, one by one, and then press the Enter key on each line.

 

CD "%TEMP%\"
RD /S /Q "%TEMP%\"

CD "%WINDIR%\TEMP"
RD /S /Q "%WINDIR%\TEMP"

 

Then restart the computer again.

 

Then run the following from the elevated Admin command prompt.

SFC /SCANNOW

If that finds errors and fixes them you're done with that. If it finds issues but cannot correct them then run the following.

DISM.exe /Online /Cleanup-image /Restorehealth

Then run the SFC command again and this time it should fix the errors.

 

Once all of the items above have been completed then do a Clean Removal and reinstall of Malwarebytes and let me know if that corrects the issues you're having with the program.

 

 

 

Can you please do the following?

  • Download the Malwarebytes Support Tool
  • In your Downloads folder, open the mb-support-x.x.x.xxx.exe file
  • In the User Account Control pop-up window, click Yes to continue the installation
  • Run the MBST Support Tool
  • In the left navigation pane of the Malwarebytes Support Tool, click Advanced
  • In the Advanced Options, click the CLEAN button and follow the onscreen instructions to reinstall Malwarebytes
  • NOTE: Please have patience as it can take a while to remove and reinstall. The computer will restart to complete

After the restart please do the following

  • Run the MBST Support Tool
  • In the left navigation pane of the Malwarebytes Support Tool, click Advanced
  • In the Advanced Options, click Gather Logs. A status diagram displays the tool is Getting logs from your machine
  • A zip file named mbst-grab-results.zip will be saved to your desktop, please upload that file on your next reply

 

If you have any questions please let me know and I'll try to assist.

Thank you

 

Good Evening, AdavacedSetup

I accomplished everything listed above and a fresh set of logs and Acronis VSS Doctor log

Only issue I had was the Clean installation of Malwarebytes, did not request a restart after installation and the Cleanup Results said it backuped license information, it did not, it was in free version

I had to reactivate my license ID and Key within the program, see mbst clean results

Thank you, Porthos I will ask about that

Thank you for your assistance and your time

Stay Safe

 

mbst-clean-results.txt AcronisVSSDoctorReport_2021-08-20-17-53-21.txt mbst-grab-results.zip

Link to post
Share on other sites

7 hours ago, AdvancedSetup said:

Thanks @MSimm1

All of the Alternate Data Streams still show on your TEMP folder. Please try the removal again. It should show a success message once completed properly

How is the Malwarebytes program running now? Are you still having issues with it?

 

Good Morning, AdvancedSetup

I re-ran the streams.exe & the Streams64, just like yesterday they ran faster than you blink with no messages of any kind

The C:\ProgramData\TEMP was empty yesterday, but C:\Windows\Temp was not emptied

I manually deleted the files from C:\Windows\Temp, except for the 5 files that would not delete, then restarted my system

I have screenshots of both temp directories and a fresh set of logs

So far this morning, Malwarebytes is running great without any issues of any kind

The only thing I haven't done yet is use the Support Tool to clean Malwarebytes and see if it does retain the license information, it failed to so yesterday

Yesterday, the re-installation of Malwarebytes did not request a system restart and installed the Free version

Thank you for your assistance and time

Stay Safe

 

 

 

 

 

Screenshot 2021-08-21 075238.png

Screenshot 2021-08-21 075340.png

mbst-grab-results.zip

Link to post
Share on other sites

  • Root Admin

Please download the attached fixlist.txt file and save it to the Desktop or location where you ran FRST from.
NOTE. It's important that both files, FRST or FRST64, and fixlist.txt are in the same location or the fix will not work.

Please make sure you disable any real-time antivirus or security software before running this script. Once completed, make sure you re-enable it.

NOTICE: This script was written specifically for this user, for use on this particular machine. Running this on another machine may cause damage to your operating system that cannot be undone.

Run FRST or FRST64 and press the Fix button just once and wait.
If the tool needs a restart please make sure you let the system restart normally and let the tool complete its run after restart.
The tool will make a log on the Desktop (Fixlog.txt) or wherever you ran FRST from. Please attach or post it to your next reply.

Note: If the tool warned you about an outdated version please download and run the updated version.

NOTE-1:  This fix will run a scan to check that all Microsoft operating system files are valid and not corrupt and attempt to correct any invalid files. It will also run a disk check on the restart to ensure disk integrity. Depending on the speed of your computer this fix may take 30 minutes or more.

NOTE-2: As part of this fix all temporary files will be removed. If you have any open web pages that have not been bookmarked please make sure you bookmark them now as all open applications will be automatically closed. Also, make sure you know the passwords for all websites as cookies will also be removed. The use of an external password manager is highly recommended instead of using your browser to store passwords.

 

The following directories are emptied:

  • Windows Temp
  • Users Temp folders
  • Edge, IE, FF, Chrome, and Opera caches, HTML5 storages, Cookies and History
  • Recently opened files cache
  • Flash Player cache
  • Java cache
  • Steam HTML cache
  • Explorer thumbnail and icon cache
  • BITS transfer queue (qmgr*.dat files)
  • Recycle Bin

Important: items are permanently deleted. They are not moved to quarantine. If you have any questions or concerns please ask before running this fix.

The system will be rebooted after the fix has run.

fixlist.txt

Thanks

 

Link to post
Share on other sites

1 hour ago, AdvancedSetup said:

Please download the attached fixlist.txt file and save it to the Desktop or location where you ran FRST from.
NOTE. It's important that both files, FRST or FRST64, and fixlist.txt are in the same location or the fix will not work.

Please make sure you disable any real-time antivirus or security software before running this script. Once completed, make sure you re-enable it.

NOTICE: This script was written specifically for this user, for use on this particular machine. Running this on another machine may cause damage to your operating system that cannot be undone.

Run FRST or FRST64 and press the Fix button just once and wait.
If the tool needs a restart please make sure you let the system restart normally and let the tool complete its run after restart.
The tool will make a log on the Desktop (Fixlog.txt) or wherever you ran FRST from. Please attach or post it to your next reply.

Note: If the tool warned you about an outdated version please download and run the updated version.

NOTE-1:  This fix will run a scan to check that all Microsoft operating system files are valid and not corrupt and attempt to correct any invalid files. It will also run a disk check on the restart to ensure disk integrity. Depending on the speed of your computer this fix may take 30 minutes or more.

NOTE-2: As part of this fix all temporary files will be removed. If you have any open web pages that have not been bookmarked please make sure you bookmark them now as all open applications will be automatically closed. Also, make sure you know the passwords for all websites as cookies will also be removed. The use of an external password manager is highly recommended instead of using your browser to store passwords.

 

The following directories are emptied:

  • Windows Temp
  • Users Temp folders
  • Edge, IE, FF, Chrome, and Opera caches, HTML5 storages, Cookies and History
  • Recently opened files cache
  • Flash Player cache
  • Java cache
  • Steam HTML cache
  • Explorer thumbnail and icon cache
  • BITS transfer queue (qmgr*.dat files)
  • Recycle Bin

Important: items are permanently deleted. They are not moved to quarantine. If you have any questions or concerns please ask before running this fix.

The system will be rebooted after the fix has run.

fixlist.txt 5.47 kB · 1 download

Thanks

 

Good Afternoon, AdvancedSetup

I ran the fixlist file, then SFC /scannow, after chkdsk re-boot, which found no system integrity violations, re-booted system after completion 

Gathered a fresh set of Support Tool logs and included the fixlog 

Thank you for your assistance and your time

Stay Safe

 

Fixlog_23-08-2021 13.24.28.txt mbst-grab-results.zip

Link to post
Share on other sites

  • Root Admin

Excellent, thank you for the logs @MSimm1 they look pretty good. Let's go ahead and check a couple more things out.

 

Please download and run the following tool to have it check for and update any other old software

Patch My PC Home Updater
https://patchmypc.com/home-updater

 

Then restart the computer.

Then click on Start / Search and type in "Check for updates" and allow Windows to update itself.

Let me know what it finds and/or if there are any issues.

Thank you

 

Link to post
Share on other sites

52 minutes ago, AdvancedSetup said:

Excellent, thank you for the logs @MSimm1 they look pretty good. Let's go ahead and check a couple more things out.

 

Please download and run the following tool to have it check for and update any other old software

Patch My PC Home Updater
https://patchmypc.com/home-updater

 

Then restart the computer.

Then click on Start / Search and type in "Check for updates" and allow Windows to update itself.

Let me know what it finds and/or if there are any issues.

Thank you

 

Good Afternoon, AdvancedSetup

I did download and run Patch My PC Home Updater

The only app I have installed that is not up-to-date is Gimp 2.10.10, which should be 2.10.24, all others installed listed were green

The last time I updated Gimp was with version 2.10.12, and it completely screwed my system up with its file associations and took me forever and a day to fix even with some batch files

So, I went back to version 2.10.10 which I only use to convert PSD format images to either PNG or Jpg, which is rarely opened and used

I go by "fool me once, shame on you; fool me twice, shame me", so I can live with the outdated version

Thank you for your assistance and your time

Stay Safe 

Link to post
Share on other sites

  • Root Admin

Glad we could help.

If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this topic with your request.

This applies only to the originator of this thread. Other members who need assistance please start your own topic in a new thread.

Please review the following for Tips to help protect from infection

Thank you

 

 

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.