Jump to content

Version 0.87

RubbeR DuckY
 Share

Recommended Posts

sho-dan

sho-dan

Posted
Posted

Hello Marcin

The Beta team never sleeps, the keyword is in bold.

I was checking out the ver.0.87 About page at the bottom left, this line:

Possible command line option: /quickscan /runupdate

So I tried it:

Microsoft Windows XP [Version 5.1.2600]

© Copyright 1985-2001 Microsoft Corp.

C:\Documents and Settings\Owner>/quickscan

'/quickscan' is not recognized as an internal or external command,

operable program or batch file.

C:\Documents and Settings\Owner> /rundate

'/rundate' is not recognized as an internal or external command,

operable program or batch file.

Should that line be on the page or you were thinking outloud ;)

Link to post
Share on other sites
adchia

adchia

Posted
Posted

well...

if you installed mbam in "C:\Program Files\Malwarebytes' AntiMalware" (I think thats what it is)

then you should type in the following"

"C:\Program Files\Malwarebytes' AntiMalware\mbam.exe" /quickscan

"C:\Program Files\Malwarebytes' AntiMalware\mbam.exe" /runupdate

I'll try it later when I get back to my computer.

Link to post
Share on other sites
Hardhead

Hardhead

Posted
Posted

Congrat's to all that have helped MBAM be where it is today. ;)

0.87 is working great here on Vista and XP.

Malwarebytes' Anti-Malware Version 0.87

Database version: 242

Scan type: Quick Scan

Objects scanned: 15802

Time elapsed: 1 minute(s), 26 second(s)

Memory Processes Infected: 0

Memory Modules Infected: 0

Registry Keys Infected: 0

Registry Values Infected: 0

Registry Data Items Infected: 0

Folders Infected: 0

Files Infected: 0

Memory Processes Infected:

(No malicious items detected)

Memory Modules Infected:

(No malicious items detected)

Registry Keys Infected:

(No malicious items detected)

Registry Values Infected:

(No malicious items detected)

Registry Data Items Infected:

(No malicious items detected)

Folders Infected:

(No malicious items detected)

Files Infected:

(No malicious items detected)

Note that the above scan is not a cached scan but a quick can and my Vista SATA drive.

Cached scan below:

Malwarebytes' Anti-Malware Version 0.87

Database version: 242

Scan type: Quick Scan

Objects scanned: 15914

Time elapsed: 33 second(s)

Memory Processes Infected: 0

Memory Modules Infected: 0

Registry Keys Infected: 0

Registry Values Infected: 0

Registry Data Items Infected: 0

Folders Infected: 0

Files Infected: 0

Memory Processes Infected:

(No malicious items detected)

Memory Modules Infected:

(No malicious items detected)

Registry Keys Infected:

(No malicious items detected)

Registry Values Infected:

(No malicious items detected)

Registry Data Items Infected:

(No malicious items detected)

Folders Infected:

(No malicious items detected)

Files Infected:

(No malicious items detected)

Link to post
Share on other sites
Tigger93

Tigger93

Posted
Posted

Malwarebytes' Anti-Malware Version 0.87

Database version: 242

Scan type: Quick Scan

Objects scanned: 14781

Time elapsed: 2 minute(s), 31 second(s)

Memory Processes Infected: 0

Memory Modules Infected: 0

Registry Keys Infected: 0

Registry Values Infected: 0

Registry Data Items Infected: 0

Folders Infected: 0

Files Infected: 3

Memory Processes Infected:

(No malicious items detected)

Memory Modules Infected:

(No malicious items detected)

Registry Keys Infected:

(No malicious items detected)

Registry Values Infected:

(No malicious items detected)

Registry Data Items Infected:

(No malicious items detected)

Folders Infected:

(No malicious items detected)

Files Infected:

C:\bot.dll (Trojan.Proxy) -> Quarantined and deleted successfully.

C:\uxnc.exe (Trojan.Vundo) -> Quarantined and deleted successfully.

C:\wgpo.exe (Trojan.Vundo) -> Quarantined and deleted successfully.

The only thing is, none of the files exist. Even when viewing System and Hidden files.... Any ideas? They reappear after every scan.

Link to post
Share on other sites
joe53

joe53

Posted
Posted

I'm apparently the only tester to continue to have MBAM keep generating (and subsequent heuristic scans detecting) these pesky 0 byte files.

With the last several versions, including .87, I have uninstalled the previous version and installed the latest as cleanly as I know how. The result is always the same: the first quick and full scans detect nothing, but when I reboot and scan- there those 0 byte file detections are. I have disabled Windows Defender, BOCleaner and Comodo FWP 3 from my startup list, but to no effect.

Congrats on your public release. I hope my experience is specific to my PC.

Malwarebytes' Anti-Malware Version 0.87

Database version: 242

Scan type: Quick Scan

Objects scanned: 18067

Time elapsed: 40 second(s)

Memory Processes Infected: 0

Memory Modules Infected: 0

Registry Keys Infected: 0

Registry Values Infected: 0

Registry Data Items Infected: 0

Folders Infected: 0

Files Infected: 12

Memory Processes Infected:

(No malicious items detected)

Memory Modules Infected:

(No malicious items detected)

Registry Keys Infected:

(No malicious items detected)

Registry Values Infected:

(No malicious items detected)

Registry Data Items Infected:

(No malicious items detected)

Folders Infected:

(No malicious items detected)

Files Infected:

C:\Program Files\Common Files\VideoCap11.dll (Trojan.Downloader) -> Quarantined and deleted successfully.

C:\Program Files\Common Files\VideoCap12.exe (Trojan.Downloader) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\drivers\VideoCap10.sys (Rootkit.Agent) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\drivers\VideoCap11.sys (Rootkit.Agent) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\ksys.sys (Rootkit.Ntrootkit) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\drivers\symavc32.sys (Rootkit.Agent) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\drivers\Jcq41.sys (Rootkit.Agent) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\drivers\pcoj42.sys (Rootkit.Agent) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\kernelw.sys (Rootkit.Agent) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\drivers\rhp37.sys (Rootkit.Agent) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\sysrest32.exe (Rootkit.Agent) -> Quarantined and deleted successfully.

C:\Documents and Settings\Default User\Local Settings\Temp\dnlsvc.exe (Trojan.Downloader) -> Quarantined and deleted successfully.

Link to post
Share on other sites
gerardwil

gerardwil

Posted
Posted
woohoonaner2gy.gifyes2bb.gif

Congratulations to everyone on the MBAM team!!

Not sure this is a bug, but the monitor test gave me an error that it had failed to run. I had also gotten a notice that it was already running so seemed a bit strange. Online Armor wanted to know if it should be allowed to run ant start up and I said yes. This has happened before with the monitor, but I am not sure what we decided was the issue. ;)

Hi Jean,

I don't have this problem (OA+). I have these settings

Cheers,

Gerard

post-1477-1199626097_thumb.png

post-1477-1199626097_thumb.png

Link to post
Share on other sites
Crufix

Crufix

Posted
Posted

Yay! for the public release. Been looking forward to this cant wait for the monitor also. Havent been able to post many bug reports but a few, but i have been using the program thoroughly and i love it. I will continue to post what i can to do my part. (Very busy with work) Cant wait to see what the "gift" is for the beta testers...

Link to post
Share on other sites
eaglehorse

eaglehorse

Posted
Posted

scanner worked great.

Malwarebytes' Anti-Malware Version 0.87

Database version: 242

Scan type: Quick Scan

Objects scanned: 18600

Time elapsed: 5 minute(s), 26 second(s)

Memory Processes Infected: 0

Memory Modules Infected: 0

Registry Keys Infected: 0

Registry Values Infected: 0

Registry Data Items Infected: 0

Folders Infected: 0

Files Infected: 2

Memory Processes Infected:

(No malicious items detected)

Memory Modules Infected:

(No malicious items detected)

Registry Keys Infected:

(No malicious items detected)

Registry Values Infected:

(No malicious items detected)

Registry Data Items Infected:

(No malicious items detected)

Folders Infected:

(No malicious items detected)

Files Infected:

C:\569.tmp (Malware.Trace) -> No action taken.

C:\907.tmp (Malware.Trace) -> No action taken.

When I tried the remove button it just froze

Detected these two things when none of the other had will upload to jotti to see If I can find anymore but I think it was some leftovers of a generic adware that AVG removed. ;) B) Overall love it but if you use comodo three it goes nuts.Thanks for the hard work

Link to post
Share on other sites
eaglehorse

eaglehorse

Posted
Posted

Ok this is odd I had deleted the files you had requested shortly I had found them and befor I read your post. I tried a system restore point to about 0800 GMT-5 this morning . The files were not there. So I reinstalled And reran and this is the log. It has found a trojan. Adaware Spybot AVG antispy(free) And AVG AV have never detected this.

Malwarebytes' Anti-Malware Version 0.87

Database version: 242

Scan type: Quick Scan

Objects scanned: 18569

Time elapsed: 6 minute(s), 21 second(s)

Memory Processes Infected: 0

Memory Modules Infected: 0

Registry Keys Infected: 0

Registry Values Infected: 0

Registry Data Items Infected: 0

Folders Infected: 0

Files Infected: 1

Memory Processes Infected:

(No malicious items detected)

Memory Modules Infected:

(No malicious items detected)

Registry Keys Infected:

(No malicious items detected)

Registry Values Infected:

(No malicious items detected)

Registry Data Items Infected:

(No malicious items detected)

Folders Infected:

(No malicious items detected)

Files Infected:

C:\Documents and Settings\Default User\Local Settings\Temp\dnlsvc.exe (Trojan.Downloader) -> No action taken.

I have done nothing else yet and Malwarebytes is still running.

Link to post
Share on other sites
eaglehorse

eaglehorse

Posted
Posted

Sounds like it could be some sort of Trojan since it is located in Temp. Have you tried Jotti yet with that file.
Waiting for them to slow down. In the quaritine folder there are some files from the previous install that survived the sys restore is it possible that that would help you with the earlier issue? It is o bytes and jotti says it cant scan it
Link to post
Share on other sites
Guest
This topic is now closed to further replies.
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.