Jump to content

Recommended Posts

I had a problem running mbam last week, posted about it on 3/20, got help from LDTate (thanks) and was able to complete a full scan. The scan came back with clean, but starting a couple of days ago my cpu meter will go to 50% or more on NTKernel&System. I ran quick scans, they came back clean. This morning the cpu was going crazy again so I ran a quick scan, clean, and then started a full scan, it hung up 30 seconds into the scan on C:/windows/system32/oleacc.dll. Everything froze, I had to force quick the computer. When I restarted I got 6 notices on my toolbar that startup programs had not started up. I tried to run quick scans and full scans and none of them will finish. The full scan went on for 6 hours freezing up, every few seconds it would give me a whirly cursor and say program not responding. The cpu meter wasn't showing mbam as using much, if any power. Any help would be appreciated, Thanks.

Link to post
Share on other sites

  • Staff

Hi and welcome to Malwarebytes.

This does not sound like a malware issue but we will check to be sure.

Please update MBAM, run a Quick Scan, and post its log.

Next, download DDS by sUBs and save it to your Desktop.

Double-click on the DDS icon and let the scan run. When it has run two logs will be produced, please post DDS.txt directly into your reply.

Link to post
Share on other sites

Thank you mbam quick scan:

Malwarebytes' Anti-Malware 1.50.1.1100

www.malwarebytes.org

Database version: 6221

Windows 6.0.6002 Service Pack 2

Internet Explorer 8.0.6001.19019

3/30/2011 8:01:57 PM

mbam-log-2011-03-30 (20-01-57).txt

Scan type: Quick scan

Objects scanned: 161520

Time elapsed: 1 hour(s), 41 minute(s), 57 second(s)

Memory Processes Infected: 0

Memory Modules Infected: 0

Registry Keys Infected: 0

Registry Values Infected: 0

Registry Data Items Infected: 0

Folders Infected: 0

Files Infected: 0

Memory Processes Infected:

(No malicious items detected)

Memory Modules Infected:

(No malicious items detected)

Registry Keys Infected:

(No malicious items detected)

Registry Values Infected:

(No malicious items detected)

Registry Data Items Infected:

(No malicious items detected)

Folders Infected:

(No malicious items detected)

Files Infected:

(No malicious items detected)

running dds next

Link to post
Share on other sites

  • Staff

Don't see any malware here.

Next, please run a free online scan with the ESET Online Scanner

Note: You will need to use Internet Explorer for this scan.

  1. Tick the box next to YES, I accept the Terms of Use.
  2. Click Start
  3. When asked, allow the ActiveX control to install
  4. Click Start
  5. Make sure that the options Remove found threats and the option Scan unwanted applications is checked
  6. Click Scan
    Wait for the scan to finish
  7. Use Notepad to open the logfile located at C:\Program Files\EsetOnlineScanner\log.txt
  8. Copy and paste that log as a reply to this topic

Next, download my Security Check from here or here.

  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.

Next, please run the PCPitstop Full Tests here (NOT the PCMatic scan or any other scan; simply register with the box on the left and you will be taken to the Full Tests/Overdrive Test). When the tests are complete, a results page will pop up. Copy and paste the URL of the Results screen and post it here for me.

Link to post
Share on other sites

Here are the results from the ESET scan, I'll run the others in the morning. Thanks.

ESETSmartInstaller@High as CAB hook log:

OnlineScanner.ocx - registred OK

C:\Documents and Settings\Lisa\AppData\Roaming\0928D29D732236651F2DF851E23BD848\enemies-names.txt Win32/Adware.AntimalwareDoctor.AE.Gen application cleaned by deleting - quarantined

C:\Documents and Settings\Lisa\AppData\Roaming\0928D29D732236651F2DF851E23BD848\local.ini Win32/Adware.AntimalwareDoctor.AE.Gen application cleaned by deleting - quarantined

Link to post
Share on other sites

Security Check:

Results of screen317's Security Check version 0.99.10

Windows Vista Service Pack 2 (UAC is enabled)

Internet Explorer 8

``````````````````````````````

Antivirus/Firewall Check:

Windows Firewall Disabled!

ESET Online Scanner v3

Norton Internet Security

WMI entry may not exist for antivirus; attempting automatic update.

```````````````````````````````

Anti-malware/Other Utilities Check:

Malwarebytes' Anti-Malware

Java 6 Update 11

Out of date Java installed!

Adobe Flash Player 10.2.152.32

Adobe Reader X (10.0.1)

Mozilla Firefox (3.6.16) Firefox Out of Date!

````````````````````````````````

Process Check:

objlist.exe by Laurent

Norton ccSvcHst.exe

``````````End of Log````````````

Link to post
Share on other sites

  • Staff

Navigate to Start --> Run, and type Combofix /uninstall in the box that appears. Click OK afterward. Notice the space between the X and the /uninstall

This uninstalls all of ComboFix's components.

Delete SecurityCheck.

After that, navigate to Start --> Control Panel --> Add or Remove Programs, and uninstall the following programs (if present):

Java

Link to post
Share on other sites

  • 4 weeks later...
  • Staff

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.