Jump to content

Recommended Posts

I purchased MBAM PRO recently and I was going through the log to report a false positive and I saw that the IP protection keeps going on and off over a very short period of time! Should I be worried or is this normal? If it is normal, why does it occur?

I will paste the part about the protection being reset below ( copy pasted from the log file)

02:18:19 Chatura MESSAGE IP Protection stopped

02:18:29 Chatura MESSAGE Database updated successfully

02:18:30 Chatura MESSAGE IP Protection started successfully

11:24:05 Chatura MESSAGE Protection started successfully

11:24:10 Chatura MESSAGE IP Protection started successfully

11:30:42 Chatura MESSAGE IP Protection stopped

11:30:44 Chatura MESSAGE Database updated successfully

11:30:45 Chatura MESSAGE IP Protection started successfully

12:52:35 Chatura MESSAGE Protection started successfully

12:52:39 Chatura MESSAGE IP Protection started successfully

17:03:39 Chatura MESSAGE Protection started successfully

17:03:44 Chatura MESSAGE IP Protection started successfully

As you can see the protection keeps going on an off. Can someone please explain why?

Link to post
Share on other sites

  • Root Admin

No I can't explain why. It would seem that something is wrong here. Please download and run the following and post back the logs please.

Download
DDS
and save it to your desktop

Disable any script blocker if your Anti-Virus/Anti-Malware has it.

Once downloaded you can disconnect from the Internet and disable your Ant-Virus temporarily if needed.

Then double click
dds.scr
to run the tool.

When done, the
DDS.txt
will open.

Click Yes at the next prompt for Optional Scan.


    When done, DDS will open two (2) logs:

  1. DDS.txt

  2. Attach.txt

  • Save both reports to your desktop
  • Please include the following logs in your next reply:
    DDS.txt
    and
    Attach.txt

Link to post
Share on other sites

  • Root Admin

You have a lot of stuff running there as services. You also have AVast AV running so please review the following link and ensure you have file and folder exclusions for MBAM setup.

http://forums.malwarebytes.org/index.php?showtopic=10138

There are also a couple of programs that interact with the network stack which potentially might be part of the issue, but please try the AV exclusions first.

Link to post
Share on other sites

I also want to inform you (if this helps narrow down the cause), I installed MBAM as recommended by a moderator/admin in the Avast support forums because I had an infection on my computer and once I scanned the system using MBAM it got detected and successfully cleaned the computer. I ran a full scan and a quick scan again to make sure the system is clean and nothing was detected, also did a full scan using avast and SAS no infections at all.

So if i should exclude one of these on the other, should i exclude MBAM on Avast or is it the other way around ? MBAM does freeze for a small amount of time ( less than 30secs) when scanning. So if I am to exclude it on Avast - where should I exclude it ? because there are so many protection modules on avast ( so many shields as they call it) - so should i exclude on general options or also on file system shield options ? please let me know as the link above doesnt mention anything about Avast.

Link to post
Share on other sites

  • Root Admin

I'm not really sure about SAS as it is similar to our product and it may or may not allow exclusions for other products.

Avast appears to say they don't need exclusions setup for MBAM

From my reading on the SAS forum it should not conflict with MBAM but I don't know for sure.

Please provide all the logs in a zip file so that we can review it further to see if there really is a pattern here.

Thanks

Link to post
Share on other sites

I excluded the files on avast but like you said since they go well together ( I was told this earlier by an Avast moderator/ admin, he was the one who recommended this software) I removed them from exclusions.

By the log files I think you mean the DDS, Attach and the protection logs of MBAM ? I attached all of them below.

PS I constantly keep getting the popup saying MBAM blocked outgoing/ incoming ports by Skype.exe and avastsvc.exe , sometimes i get it every 1-2minutes so it can get very annoying, any idea why this happens ? the ports and ip addresses are included in the log files attached, please go through them and help me with this issue. :)Logs.zip

Thanks!

Link to post
Share on other sites

  • Root Admin

A few things.

1. The log patterns appear okay for MBAM because of your update and scanning schedules.

2. The outgoing blocks are probably due to Skype because they use P2P networks to gain access for their service which unfortunately has many IPs that are blocked for malware or other security risk activities. Avast is always shown as the outgoing program due to how it controls the network stack.

3. Your logs also show that you're using keygens to obtain and run Adobe software which is illegal

Due to item #3 your post here will be closed unless you wish to remove the Adobe software and all signs of any other type of illegal software.

Link to post
Share on other sites

"3. Your logs also show that you're using keygens to obtain and run Adobe software which is illegal Due to item

#3 your post here will be closed unless you wish to remove the Adobe software and all signs of any other type of illegal software. "

The Adobe Software I have installed were already there when I bought this laptop, I bought it from a contact and he confirmed that he had paid and bought these software under student concession. however i do have a keygen and the installation files stored on my computer but it doesnt belong to me. That entire folder was copied as a backup from a friends computer as he wanted to format his hard drive.

I am a programming student myself and I know the trouble developers have to go through to code and finish programs. I always support buying original software. After I bought this laptop I purchased MBAM SAS Avast IS, all paid and purchased.

Also I was unaware that storing a keygen is illegal, sorry about it I will inform him and get rid of this.

After I checked, the adobe license I had was invalid and I uninstalled it and will be purchasing a valid key and reinstalling it.

Thank You AdvancedSetup for the information you gave, and for pointing out that I had illegal software installed, saved me a lot of trouble :) really appreciate what you did!

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.