Jump to content

Possible malware - PROGRAM_ERROR_UPDATING (2, 0, CreateFile)


Recommended Posts

Greetings,

This forum is a great resource--thanks. I think I've been infected with malware, based on the following:

1. I can't update Malwarebytes; I get the PROGRAM_ERROR_UPDATING (2, 0, CreateFile) error.

2. Windows looks different. Text and graphics look slightly stretched in all programs, and display resolution and scaling have not changed.

3. My laptop appears unable to hold a charge (based on the power supply icon on my taskbar).

These all occurred at the same time. Something's amiss.... Avast and Malwarebytes scans found Trojan.Agent.GGEP, but no actions were taken. Is this likely a false positive?

Below are my Malwarebytes and DDS logs. I also ran a GMER rootkit scan per instructions found in these forums; let me know if I should post that log as well. I would appreciate any and all advice on how to proceed. Thanks!

-----------------------------------------

Malwarebytes' Anti-Malware 1.50.1.1100

www.malwarebytes.org

Database version: 6619

Windows 6.0.6002 Service Pack 2 (Safe Mode).

Internet Explorer 8.0.6001.19048

6/14/2011 12:39:13 AM

mbam-log-2011-06-14 (00-39-03).txt

Scan type: Full scan (C:\|D:\|)

Objects scanned: 370743

Time elapsed: 57 minute(s), 50 second(s)

Memory Processes Infected: 0

Memory Modules Infected: 0

Registry Keys Infected: 0

Registry Values Infected: 0

Registry Data Items Infected: 0

Folders Infected: 0

Files Infected: 1

Memory Processes Infected:

(No malicious items detected)

Memory Modules Infected:

(No malicious items detected)

Registry Keys Infected:

(No malicious items detected)

Registry Values Infected:

(No malicious items detected)

Registry Data Items Infected:

(No malicious items detected)

Folders Infected:

(No malicious items detected)

Files Infected:

c:\Windows\winsxs\amd64_microsoft-windows-mfvdsp_31bf3856ad364e35_6.0.6001.18000_none_55db3ef909cb5f94\mfvdsp.dll (Trojan.Agent.GGEP) -> No action taken.

-------------------------------------------

.

DDS (Ver_2011-06-12.02) - NTFSAMD64

Internet Explorer: 8.0.6001.19088 BrowserJavaVersion: 1.6.0_24

Run by MCadmin at 19:05:43 on 2011-06-15

Microsoft

Link to post
Share on other sites

  • Staff

Hi,

Please do the following:

  • Download and run mbam-clean.exe from here
  • It will ask to restart your computer, please allow it to do so very important
  • After the computer restarts, temporarily disable your Anti-Virus and install the latest version of Malwarebytes' Anti-Malware from here
    • Note: You will need to reactivate the program using the license you were sent via email if using the Pro version
    • Launch the program and set the Protection and Registration. Then go to the UPDATE tab if not done during installation and check for updates.
      Restart the computer again and verify that MBAM is in the task tray if using the Pro version. Now setup any file exclusions as may be required in your Anti-Virus/Internet-Security/Firewall applications and restart your Anti-Virus/Internet-Security applications. You may use the guides posted in the FAQ's here or ask and we'll explain how to do it.

Link to post
Share on other sites

  • 1 month later...
  • Staff

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.