Over 1 million tech questions and answers.

Malware blocking MalwareBytes (post-update), fake anti-malware program

Q: Malware blocking MalwareBytes (post-update), fake anti-malware program

Hi all,My dad has asked me to take a look at his computer after it's been acting odd, and it looks like he's got a doozy of something running on the system. He's been getting some pop ups advertising various programs, the desktop is changed to text reading "Your system is infected! System has been stopped due to a serious malfunction. Spyware activity has been detected" (which is not something any program that should be running would display", Task Manager is blocked from opening and a fake piece of anti-spyware has taken up residence (don't have the name off hand).Looking at the log, I found a couple of things that I'm not a fan of - batmeter16.dll, for starters. There's a couple others I don't recognize, but I am not sure if they are bad or not.Unfortunately, my attempts to fix it have been thwarted - an AVG scan said it cleared it up, but more pop ups came. I tried to run Malware Bytes, but when I download the latest update through the program, I get a nice warning message saying "The database you are using is not supported by this version of Malwarebytes' Anti-Malware. Download the latest version of the program."Additionally, this came about because I tried to start into Safe Mode to get this cleaned up. I couldn't get my keyboard to register keystrokes before Windows started, which kept me from accessing the dialogue allowing Safe Mode to be entered, so I modified boot.ini to force a safe mode boot. Unfortunately, this brought about a blue screen that only went away when I was able to get back in and return boot.ini to its normal state. I haven't tried this again, simply because I don't want to have to mess with fixing that again.I've attached the Hijack This log to this post.Thanks so much for the help!I have some bad news - I restarted the computer, and now when I try to enter a user account on XP, it instantly logs me back out.I tried to do a reinstall of XP off the CD that came with the computer, but it didn't even start. The CD works; I can't say for sure that the computer recognized the CD, but the computer sounded like it did.I cannot access the boot menu as the computer is starting up; the keyboard just doesn't register before the start of Windows.I'm going out of town early Sunday and will be unable to help my dad for a week after that. Any help would be appreciated; quick help would be really appreciated!Merged posts. ~ OB

RELEVANCY SCORE 200
Preferred Solution: Malware blocking MalwareBytes (post-update), fake anti-malware program

I recommend downloading and running DAP. It can help sort out any driver and firmware related issues on your system

It's worked out well for many of us in the past.

You can download it direct from this link http://downloaddap.org. (This link will open the download page of DAP so you can save a copy to your computer.)

A: Malware blocking MalwareBytes (post-update), fake anti-malware program

Hello, my name is fenzodahl512 and welcome to the forum.. Please do the following....Please download The Comedian.exe by Rorschach112 to your desktopPlease disable all of your antivirus/firewall before doing this step. Please visit HERE if you don't know how..Double click the program to run it. It will only take around several minutes to run.It will do a series of tasks and tell you when each one is finished.You will be prompted to press any key after each stepWhen it is done it will close and exit itself automatically.You can delete The_Comedian.exe once it is finishedSTOP! if you can't complete this step.. Tell me more about it..NEXTPlease download OTL by OldTimer and save it to your desktop.Under the Custom Scans/Fixes box paste this innetsvcs
%SYSTEMDRIVE%\*.exe
/md5start
eventlog.dll
scecli.dll
netlogon.dll
cngaudit.dll
sceclt.dll
ntelogon.dll
logevent.dll
iaStor.sys
nvstor.sys
atapi.sys
IdeChnDr.sys
viasraid.sys
AGP440.sys
vaxscsi.sys
nvatabus.sys
viamraid.sys
nvata.sys
nvgts.sys
iastorv.sys
ViPrt.sys
eNetHook.dll
ahcix86.sys
KR10N.sys
nvstor32.sys
ahcix86s.sys
/md5stop
%systemroot%\*. /mp /s
CREATERESTOREPOINTDon't change any setting... Just click on the Run Scan button.. Let it scan till finish..Then a log will pop-up at your Desktop. Post the content of the log hereNEXTWe need to scan for Rootkits with GMERPlease download GMER from one of the following locations, and save it to your desktop:Main Mirror
This version will download a randomly named file (Recommended)Zip Mirror
This version will download a zip file you will need to extract first. If you use this mirror, please extract the zip file to your desktop.Close any and all open programs, as this process may crash your computer.Double click or on your desktop.Allow the gmer.sys driver to load if asked.You may see this window. If you do, click No.
Click on and wait for the scan to finish.If you see a rootkit warning window, click OK.Push and save the logfile to your desktop.Copy and Paste the contents of that file in your next post.Post me these logs in your next reply.. Post each log in separate post..1. OTL2. GMER

Read other 3 answers
RELEVANCY SCORE 116.4

i have security suite virus and i know about the removal prossec from this site blog. after installing Malwarebyte Anti-malware i need to update it (in safemode) but when i click "Check for Updates" a window pops up and reads "An error has occurred. Please report this error code to our support team MBAM_ERROR_UPDATING(12007, 0, WinHttpSendRequest)" and i need this updat to remove Security Suites Virus/trojan...b4 the updat it caught 1 trojan but i kno there more...Som1 help!plz reply!

A:i cnt update the "MALWAREBYTES' Anti-Malware program

Hello,Please follow the instructions in ==>This Guide<==. If you cannot complete a step, skip it and continue.Once the proper logs are created, then make a NEW TOPIC and post it ==>HERE<== Please include a description of your computer issues and what you have done to resolve them.If you can produce at least some of the logs, then please create the new topic and explain what happens when you try to create the log(s) that you couldn't get. If you cannot produce any of the logs, then still post the topic and explain that you followed the Prep. Guide, were unable to create the logs, and describe what happens when you try to create the logs.Orange Blossom

Read other 1 answers
RELEVANCY SCORE 102.8

My son's PC got infected. WinXP. My Win7 PC has Norton on it and it's OK.
I have a hardware and software firewall but I (stupidly) disabled my Antivirus app on my son's PC.
I get most of the fake error messages you mention.
The only way I can get anything to "listen to me" is to run in safe mode.
I could follow the directions up to downloading Malwarebytes Anti-Malware ... then I get "The webpage cannot be found".
I tried download.bleepingcomputer.com and get the same "The webpage cannot be found".
I have Avast on the PC (disabled) but I cannot re-enable it even in safe mode (I believe it's "ultra defragger" at work).
The cmdtool (cmd.exe) is even affected ... I can't see the 2 copies of rkill I downloaded ... even though I can see them & run them in WIndows Explorer.

Is this hopeless? I'm afraid it's been infected for awhile and my son just didn't tell me.

A:ultra defragger appears to be blocking my ability to download Malwarebytes Anti-Malware

tell him to go into safe mode by pressing F8 repetedly and select "safe mode with networking", it cant't run there. then when inside safe mode download malwarebytes and run a scan, when its done, reboot and see if its gona, then if its not, post the log here. it should work getting this of the system.
Hope i helped!
dozernet

Read other 9 answers
RELEVANCY SCORE 101.6

Hi, A suspicious SVCHOST.exe just popped into my startup list. I bet it's not the only one causing my sudden computer slowdwon. I attached my HijackThis log and I hope someone gets to help me. Thanks!

A:Malware. Unable to Update any Anti Virus/Malware Program

Hello and welcome to TSF.

We want all our members to perform the steps outlined in the link given below, before posting for assistance. There's a sticky at the top of this forum, and a
Quote:




Having problems with spyware and pop-ups? First Steps




link at the top of each page.

Please follow our pre-posting process outlined here:

http://www.techsupportforum.com/f50/...lp-305963.html

After running through all the steps, you shall have a proper set of logs. Please post them in a new topic, as this one shall be closed.

If you have trouble with one of the steps, simply move on to the next one, and make note of it in your reply.

Read other 1 answers
RELEVANCY SCORE 101.2

I tried removing it with MBAM, but it only seems to have made things worse. Now the computer can't even boot up at all!It goes through the boot process, windows loading screen pops up, then an error messege comes up... saying Windows had trouble loading and it asks me to pick an option for restart. Only... my keyboard won't work when it comes up... so it stays on the 'restart normally' option and loops endlessly. I tried using a different keyboard... and it was able to access the Bios... so I know it functions... but when it goes back to the error screen it won't function. Something tells me it's the virus putting that screen up... so I believe I need a way to kill it before loading Windows. Fortunately I have this computer (although it was hit with a different virus the other day [friggen google link redirect virus] it still seems to well enough) so I can download and burn to CD any programs needed.Please help!

A:Fake anti malware program

Hello, please see if you can follow the steps below.I will move this thread to a more appropriate forum.Please download OTLPE (filesize 120,9 MB)When downloaded double click on OTLPENet.exe and make sure there is a blank CD in your CD drive. This will automatically create a bootable CD.Reboot your system using the boot CD you just created.Note : If you do not know how to set your computer to boot from CD follow the steps hereYour system should now display a REATOGO-X-PE desktop.Depending on your type of internet connection, you should be able to get online as well so you can access this topic more easily.Double-click on the OTLPE icon.Ensure the box "Automatically Load All Remaining Users" is checked and press OKOTL should now start.Press Run Scan to start the scan.When finished, the file will be saved in drive C:\OTL.txtCopy this file to your USB drive if you do not have internet connection on this systemPlease post the contents of the OTL.txt file in your reply.

Read other 26 answers
RELEVANCY SCORE 101.2

Sady news, i found a fake program called AntiMalware GO from my old computer windows XP, but i was gave to my little sister, so i have tried remove from program Malwarebytes Anti-Malware, but they don't let me open it, it is from fake antimalware, how are they build that fake. Geez. so my old computer is very old, and seem weak, since 6 years, from my my birthday, my dad brought for me. it is completed destroy. i hate fake program.

I have a tried way other, but found this link, still don't work, Remove AntiMalware Go (Uninstall Guide)

A:Fake program Anti-malware

  
Quote: Originally Posted by reborn7778


Sady news, i found a fake program called AntiMalware GO from my old computer windows XP, but i was gave to my little sister, so i have tried remove from program Malwarebytes Anti-Malware, but they don't let me open it, it is from fake antimalware, how are they build that fake. Geez. so my old computer is very old, and seem weak, since 6 years, from my my birthday, my dad brought for me. it is completed destroy. i hate fake program.

I have a tried way other, but found this link, still don't work, Remove AntiMalware Go (Uninstall Guide)


Run Malwarebytes in safe mode with networking

Read other 6 answers
RELEVANCY SCORE 101.2

I believe I have a malware problem but I can't work out how to fix it. Help would be much appreciated.
I can't open or run AVG 2014 (free) - the following error message just comes up whenever I try to open the program:
"This program is blocked by group policy. For more information, contact your system administrator."
 
I had installed updates, though I'm unsure whether AVG was among them, 5 days before the problem started.  The reason I noticed was that my access to a TV streaming subscription kept failing for an undeterminable reason (password got me in but the stream failed), so I tried to run a virus scan (after checking everything else I could think of) and this message came up.
 
I'm running Windows 7 (64-bit) and have already tried the following:
- Restart in safe mode and run Rkill, followed by Malwarebytes
- Uninstalled Malwarebytes due to AVG compatibility concerns
- Restarted again in safe mode, ran Rkill followed by AVG 2014
- Uninstalled and re-installed AVG 2014 (free)
- Installed and ran FARBAR
- Burned the AVG Rescue CD (as an .iso image) and tried to boot from the CD (I just get a message saying "isolinux disk error 04..." so have not been able to use the tool)
 
Even after these attempts, when I start up normally (i.e. not in safe mode) I still have the same message when trying to open and run AVG.
 
Malwarebytes found and quarantined two files but (stupidly) I no longer have the log because I uninstalled Malwarebytes. Otherwise, I ca... Read more

A:Possible malware blocking anti-virus program

Use AVG Remover to uninstall AVG: http://www.avg.com/us-en/utilities
Then try to reinstall it again.

Read other 22 answers
RELEVANCY SCORE 101.2

I'm following BC instructions on how to remove RapidAntivirus using Malwarebytes' Anti-malware program. However when I try to run the program, i get an error message saying, "invalid floating point operation." A bunch more error messages pop up including one that says. "exception E InvalidOp in module mbam-setup.tmp at 778500D5 Invalid floating point operation." How can a get rid of RapidAntivirus when I can't even run the fix?

A:can't run malwarebytes anti-malware program

You can try running it in safe mode or follow the steps below...Please download and install Super Anti Spyware 1.Double click SUPERAntiSypware.exe and use the default settings for installation2.When the installation finishes a shortcut on your desktop will be created, please double click that to launch SAS3.If asked to update the programs definitions please click Yes . If not then update the definitions before scanning by clicking Check for Updates4.Under the Configuration and Preferences, click the Preferences button5.Click the General and startup tab, and under Start-Up Options, make sure Start SUPERAntiSpyware when windows starts is Unchecked.6.Click the "Scanning Control" tab, and under Scanner Options make sure the that the following are checked (leave all others unchecked):Close browsers before scanning.Scan for tracking cookies.Terminate memory threats before quarantining.7.Click the Close button to leave the control center screen and exit the program.8.Do not run a scan just yet.Reboot your computer in "Safe Mode " using the F8 method. To do this, restart your computer and after hearing your computer beep once during startup (but before the Windows icon appears) press the F8 key repeatedly. A menu will appear with several options. Use the arrow keys to navigate and select the option to run Windows in "Safe Mode".Scan with SUPERAntiSpyware once in safe mode using the instructions below:1.Launch the program and back on the main screen, un... Read more

Read other 2 answers
RELEVANCY SCORE 98.4

Recent Changes


(FIXED) Minor issue with updating.(FIXED) Certain types of freezing during full and quick scans.(FIXED) Problem with Estonian language and installer.(FIXED) Certain folders showing up as files in results list.(FIXED) Scan time improperly displayed if Abort Scan clicked after Pause Scan.(FIXED) Error during loading log files after database update.(FIXED) Issues with freezing in protection mode. Certain conflicts with anti-virus software.(ADDED) Some proxy support, please see /proxy command line parameter.(ADDED) New command line parameters: /logtofolder, /logtofile (see help file).



source

A:Malwarebytes' Anti-Malware Update 1.38

Thanks Aaron that program is on my husbands XP machine, only use it on a Monday morning during my routine maintenance but do keep it up to date.

Read other 2 answers
RELEVANCY SCORE 98.4

Announcement: Malwarebytes Anti-Malware Update to 2.1.6

Issues Fixed:
Fixed crash during Heuristic Analysis phase when scanning
Fixed SDK database load errors by making a change to temporarily ignore the Check for updates before scanning setting for Scheduled Scans
Fixed crash when editing or removing an Access Policy if the name and description fields in the policy were different
Fixed issue where the Restart computer when required for threat removal setting did not appear correctly on Add or Edit Schedule dialogs
Updated end user license agreement

Download: mbam-setup-consumer-2.1.6.1022.exe

Over the next week or so we'll get this new version posted on our main website and will continue to roll it out more widely.

As usual, the above update may be manually installed over-the-top of the previous installed version.
VT: 0/57

A:Malwarebytes Anti-Malware Update to 2.1.6

Just checked an hour ago and I didn't receive any update. I'll check again later on. Since 2.0 I've never experienced a single issue so far so I've got that going for ne

Read other 2 answers
RELEVANCY SCORE 97.6

Malwarebytes Anti-Malware 1.65.0.1400
http://www.malwarebytes.org/products/malwarebytes_pro/

New Features:
Implemented comprehensive API's for controlling settings and configuration for Business customers
Future versions will be able to upgrade without requiring a reboot after installation
Protection module now controllable for the entire machine instead of being limited to individual user accounts
Japanese language support added

Improvements:
Malwarebytes Chameleon enhanced to be even more effective against the latest threats
Realtime protection now starts much faster on Windows Vista and Windows 7
Eliminated performance issues caused by database updates and Ignore List manipulation on Windows Vista and Windows 7

change log
http://forums.malwarebytes.org/index.php?showtopic=3283&st=0&gopid=595554&#entry595554


 

A:update Malwarebytes Anti-Malware 1.65.1.1000

RE: Malwarebytes Anti-Malware 1.65.0.1400 is out

This program keeps getting better and better,
 

Read other 9 answers
RELEVANCY SCORE 96.4

I am running Windows XP Home Edition Version 2002, updating to SP3, with all critical updates installed (to date). IE8 and Firefox. ESET Smart Security, COMODO Firewall, Wired DSL (Belkin) modem/router. (System Summary at the end of this post.)

My two main concerns that I'd like to address right now are listed directly below. Other anomalies and steps I have already taken are explained further down. You might like to know upfront that I did have a rootkit several months ago. Since then, I have reformatted twice.

1. When trying to install MalwareBytes' Anti-Malware I receive the following error message:

C:\WINDOWS\system32\drivers\mbamswissarmy.sys

An error occured while trying to create a file in the destination directory:
Access is denied

2. When trying to update Spybot - Search & Destroy I receive -two- error messages, both indicating the same problem. (ie. unable to copy certain files across.) I am currently unable to replicate the error to provide exact error codes as Spybot - S&D says that there are no updates available. But I fear the updates were not properly implemented because of these two error messages.

----------

Other Anomalies

. I am unable to rename or copy some of my files & folders. I have noticed this seems to happen to files and folders I have recently been working on. The windows error message states that it is being used by another program.

. My computer's fan is peddling its little heart out, soundin... Read more

A:Cannot install MalwareBytes' Anti-Malware or Update my Spybot - S&D

Problem abated.

Infection Trojan.Agent removed.

Trojan.Agent
Date spotted:
First seen on 2008-01-15.
Last seen on 2009-09-13.

Detection statistics:
This object is 6.34% of all objects detected.
109,666,256 instances detected worldwide.

The reason why various files and folders couldn't be copied/moved/renamed was do to Comodo's Proactive Defense system.

When you first load Comodo Internet Security (version 3.11), you should be on the "summary" tab. Near the bottom right you will find, Proactive Defense. Undernearth Proactive defense, click "waiting for your review".

I had over a thousand entries in the My Pending Files window, so I ticked the "All" box to select them all. Then I clicked the "Move to" button and selected, "My own safe files". Then I was able to install MalwareBytes' Anti-Malware, which is what found the above-mentioned Trojan, which incidently, was a file called:

EXE.exe

So if anyone else is having similar problems, particularly with noticing a blue dot intermittently appearing on or under your mouse pointer, search your computer for this file. Of course, it is more than likely to be called something else on your system; obviously it would be best to run MalwareBytes' Anti-Malware, as the following listed programs (to date) didn't pick it up:

ESET Smart Security
COMODO Anti-Virus (part of COMODO internet security)
SpyBot Search & Destroy

-----

Just to tidy up a little,

Re:... Read more

Read other 1 answers
RELEVANCY SCORE 96.4

2 Days ago the computer would not reboot because it said:
 

Waiting for MBAM ..

and forget the rest that it said but .. was something about how it was waiting for it to either shut down or update or something .. and it said it was "preventing Windows from restarting".
 
Anyway after reboot it said that there was an update so I updated it and it was successful. That was last night.. Then today after another reboot (was trying to fix a video driver issue) I tried to run a scan and it stopped working.
 

Faulting application name: mbam.exe, version: 1.0.0.532, time stamp: 0x53518532
Faulting module name: mbam.exe, version: 1.0.0.532, time stamp: 0x53518532
Exception code: 0xc0000005
Fault offset: 0x001a2580
Faulting process id: 0xb64
Faulting application start time: 0x01cf7cca2bd72418
Faulting application path: C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
Faulting module path: C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
Report Id: 30cd95d4-e8d4-11e3-a187-00219b0df89b

A:I updated Malwarebytes Anti-Malware (Premium) and it won't update

2 Days ago the computer would not reboot because it said:
 

Waiting for MBAM ..

and forget the rest that it said but .. was something about how it was waiting for it to either shut down or update or something .. and it said it was "preventing Windows from restarting".
 
Anyway after reboot it said that there was an update so I updated it and it was successful. That was last night.. Then today after another reboot (was trying to fix a video driver issue) I tried to run a scan and it stopped working.
 

Faulting application name: mbam.exe, version: 1.0.0.532, time stamp: 0x53518532
Faulting module name: mbam.exe, version: 1.0.0.532, time stamp: 0x53518532
Exception code: 0xc0000005
Fault offset: 0x001a2580
Faulting process id: 0xb64
Faulting application start time: 0x01cf7cca2bd72418
Faulting application path: C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
Faulting module path: C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
Report Id: 30cd95d4-e8d4-11e3-a187-00219b0df89b


 I'd go to the Programs and Features applet of the Control Panel and uninstall Malwarebytes, then reboot and reinstall it.  After that I'd run chkdsk on my hard drive and let it check for and attempt repair of any bad sectors.
 
Good luck.

Read other 10 answers
RELEVANCY SCORE 95.2

Hi,
I have been using AVIRA, Malwarebytes, and Registry Mechanic for awhile. But I think I got either a virus or malware via a colleagues thumbdrive. I have had constant hijacking from google results when using Mozilla, IE, and Chrome. I have also been unable to update malwarebytes, or registry mechanic. I have removed AVIRA, Malwarebytes, and Registry Mechanic and am currently running Trend Micro OfficeScan 10. OfficeScan blocks the hijacking, but it is annoying to see that something wants to still divert my browser. But I am unable to even view certain websites like Malwarebytes.org, or Microsoft webpages, and somtetimes unable to open the browser at all. Sometimes when I am using MyComputer, the layout switches from XP to the Windows-safe-mode type layout.

Start-up is also extremely slow on this machine. I have attached my hijack this log file. If anyone can help that would be great! I am considering wiping the machine and starting over....
 

Read other answers
RELEVANCY SCORE 95.2

My internet browser has been hijacked by some ad virus.
Anytime I type in something in a search or click on a link a window or tab opens displaying either automotive ads or grotesque porn.

I tried using Malwarebytes' Anti-Malware.
First I scanned, got rid of some things it found, restarted my comp but the issue is still unresolved.
Now when I scan it says there's no problems and when I try to use Malwarebytes' Anti-Malware's "Update" option, I get a prompt that says:

Update Failed. Make sure you are connected to the Internet and your firewall is set to allow Malwarebytes' Anti-Malware access to the internet.

I AM connected to the internet and my firewall is NOT the issue. F#$*ing ads!
I've used Malwarebytes' Anti-Malware dozens of times and have never encountered a problem until now.

Please help, I'm at my wits end.

A:Browser Hijacked/Malwarebytes' Anti-Malware Update Blocked

Hello,i am moving this to the AM I Infected forum from XP as it is malware related.Please run these nextFrom your regular user account..Download Attribune's ATF Cleaner and then SUPERAntiSpyware , Free Home Version. Save both to desktop ..DO NOT run yet.Open SUPER from icon and install and Update itUnder Scanner Options make sure the following are checked (leave all others unchecked):Close browsers before scanning.Scan for tracking cookies.Terminate memory threats before quarantining.Click the "Close" button to leave the control center screen and exit the program. DO NOT run yet.Now reboot into Safe Mode: How to enter safe mode(XP)Using the F8 MethodRestart your computer. When the machine first starts again it will generally list some equipment that is installed in your machine, amount of memory, hard drives installed etc. At this point you should gently tap the F8 key repeatedly until you are presented with a Windows XP Advanced Options menu. Select the option for Safe Mode using the arrow keys. Then press enter on your keyboard to boot into Safe Mode. Double-click ATF-Cleaner.exe to run the program.Under Main "Select Files to Delete" choose: Select All.Click the Empty Selected button.If you use Firefox or Opera browser click that browser at the top and choose: Select AllClick the Empty Selected button.If you would like to keep your saved passwords, please click No at the prompt.Click Exit on the Main menu to close the program.NOW Scan with SUPEROpen... Read more

Read other 13 answers
RELEVANCY SCORE 94.8

Hello. I am working on a friends machine that seems to have a nasty infection. This machine is a dedicated server running Windows Server 2003 Web. Everything I am doing to it is via remote desktop which is making it a little more of a challenge. Web browsing on the server was incredibly slow when he asked me to take a look at it. I figured he was infected with something so I was going to try and install a few things on it and run a few scans, only to find that all of the sites that I found to use are blocked or disable by whatever is infecting the server. Any attempt to access an anti-virus or anti-malware website results in a message stating server cannot be found. Any other website can be accessed though.

There is an FTP server running on this machine, so I do have that availability to FTP to the server to get any file or program to it that I need to. Please just let me know what you need from me and I will get it up here as soon as I can. I am a fairly experienced user and can grasp things pretty easily. Thanks for your time, I greatly appreciate it.


Jamie

A:Malware Blocking all Anti-Malware/Anti Virus websites

If it doesn't block you from softpedia or download.com, the get the anti virus software from their sites instead. Hopefully it won't block them. When they are downloaded, rename the file names.

Read other 2 answers
RELEVANCY SCORE 94

Should I install Malwarebytes Anti-Malware beside Emsisoft Anti-Malware for extra protection? Will it slow down my computer?
 

A:Should I install Malwarebytes Anti-Malware beside Emsisoft Anti-Malware?

Emsisoft is more than enough by itself.
 

Read other 61 answers
RELEVANCY SCORE 94

Based on your opinions and reasoning which is the better product.
I will still be using both products regardless of the votes.
 

A:Malwarebytes Anti-Malware 2.x vs Zemana Anti-Malware 2.x (Premium only)

This is difficult. I use both as on-demand scanners. I've been using Malwarebytes for years and it's saved my butt on numerous occasions. For that simple fact alone, I'm going with Malwarebytes, but do not shy away from Zemana (in fairness to Zemana, it's a fairly new program). If anything I'd say Zemana AntiMalware feels a bit lighter, but that's really the only fault I can provide. I'll be interested to see what others think.
 

Read other 5 answers
RELEVANCY SCORE 93.6

I did a hijackthis scan and here's what I got:Logfile of Trend Micro HijackThis v2.0.2Scan saved at 12:18:17 PM, on 4/20/2009Platform: Windows XP SP3 (WinNT 5.01.2600)MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)Boot mode: NormalRunning processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\SYSTEM32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\Explorer.EXEC:\WINDOWS\system32\spoolsv.exeC:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exeC:\WINDOWS\System32\DVDRAMSV.exeC:\Program Files\Java\jre6\bin\jqs.exeC:\WINDOWS\System32\nvsvc32.exeC:\WINDOWS\System32\svchost.exeC:\Program Files\Common Files\Softwin\BitDefender Communicator\xcommsvr.exeC:\Program Files\Common Files\Softwin\BitDefender Scan Server\bdss.exeC:\WINDOWS\System32\00THotkey.exeC:\WINDOWS\system32\TFNF5.exeC:\Program Files\SigmaTel\SigmaTel AC97 Audio Drivers\stacmon.exeC:\Program Files\Common Files\Softwin\BitDefender Update Service\livesrv.exeC:\WINDOWS\AGRSMMSG.exeC:\Program Files\Synaptics\SynTP\SynTPLpr.exeC:\Program Files\Synaptics\SynTP\SynT... Read more

A:Malware Blocking Acess to Spybot, Microsoft Malicious Removal Tool and other anti-malware programs

Hey guys I solved my own problem. I completely reinstalled windows. (It was about that time anyway)

Read other 2 answers
RELEVANCY SCORE 93.6

I have been fighting whatever is on this computer for months. Search results are often redirected, I can't open the pages of some anti-malware or anti-virus--especially Spybot Search and Destroy. Most antimalware/virus won't update (they say it cannot connect to the server). This happens on all browsers I have tried, Firefox, IE, Google Chrome, and Safari. It's not limited to Google results, but sometimes a second window will open when I search and it tries to connect to search.gugle.com or google-analytics.com. I also get a fake security warning from time to time, and ads on a couple websites I usually frequent are overlaid with ads from Clicksor, I don't see Clicksor ads on those pages when viewing from another computer. There are a few other types of pages I cannot stay on even if I type in the address myself, Blogspot, some news stations, some shopping websites--they get redirected after a couple seconds, too. I am running XP Pro, I do not have the restore or original install disks as the computer is second hand. I also cannot open in Safe Mode, it starts loading processes and seems to get stuck.Here is my DDS scan:DDS (Ver_10-03-17.01) - NTFSx86 Run by Owner at 18:25:38.39 on Thu 05/20/2010Internet Explorer: 7.0.5730.11 BrowserJavaVersion: 1.6.0_20Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.3574.2611 [GMT -4:00]AV: avast! Antivirus *On-access scanning enabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}FW: ZoneAlarm Firewall *... Read more

A:Search engine results redirected, fake alerts, anti-malware won't update

Hello and Welcome to the forums! My name is Gringo and I'll be glad to help you with your computer problems. Somethings to remember while we are working together.1.Please do not run any other tool untill instructed to do so!2.Please reply to this thread, do not start another!3.Please tell me about any problems that have occurred during the fix.4.Please tell me of any other symptoms you may be having as these can help also.5.Please try as much as possible not to run anything while executing a fix.If you follow these instructions, everything should go smoothly."GMER Rootkit Scanner"Download GMER Rootkit Scanner from here or here.Extract the contents of the zipped file to desktop. Double click GMER.exe. If asked to allow gmer.sys driver to load, please consent . If it gives you a warning about rootkit activity and asks if you want to run scan...click on NO, then use the following settings for a more complete scan..In the right panel, you will see several boxes that have been checked. Uncheck the following ...Sections IAT/EAT Drives/Partition other than Systemdrive (typically C:\) Show All (don't miss this one)Then click the Scan button & wait for it to finish. Once done click on the [Save..] button, and in the File name area, type in "ark.txt" or it will save as a .log file which cannot be uploaded to your post.Save it where you can easily find it, such as your desktop **Caution**Rootkit scans often produce false positives. D... Read more

Read other 24 answers
RELEVANCY SCORE 92.8

Hi. There is something going on with my computer, can't get on internet and many pop up messages, and I have tried to run MBAm. When I click on "Remove Selected" it starts doing the removal but then a box pops up with "Malwarebytes Anti-Malware has encountered a problem and needs to close." There are three boxes to choose to click on...Debug, Send Error Report, or Don't Send. When I click on Debug I get a new pop up box with "DrWatson Postmortem Debugger has encountered a problem and needs to close". Same three boxes to choose to click. I click on Debug and then get a pop up box with "Microsoft Visual C++ Runtime Library. Runtime error. Program:C:\Windows\System32\svchost.exe.

I have multiple pop up boxes coming up when I just log on:

dsca.exe-Application error

27578134.exe has encountered a problem

Sysfader:IEXPLORE.EXE-application error. Instruction at "0x03a0bdd9" referenced memory at "0x03a0bdd9". The memory could not be written. When I click "OK" to terminate this it came up with multiple other boxes with different numbers...0x0403bdd9,0x03eabdd9,0x0455bdd9,0x053abdd9.

ctfmom.exe Application error

Data Execution Prevention-Microsoft Windows...to help protect your computer Windows has closed this program: Internet Explorer.

I am unable to get on the internet from my computer and am currently using my husbands laptop to post.

I would appreciate anyones advise or help.... Read more

A:Malwarebytes Anti-Malware unable to remove selected malware

I would try logging in to safemode with networking and then run the scanfrom there. To log in to safemode gently tap the F8 key as the computer reboots and then select safemode with networking from the list. If you are able to run the scan in safemode then there's probably some infection that was preventing it from runnig in the regular Windows mode. If not then there may be a problem with the Malwarebytes. I have had a similar problem and I had to un-install it and then re-install it. I emailed their tech support and was told it was possibly a conflict between it and AVG free though I'd never had that problem before... EVER.

I suspected it was something buggy with the update that had come through.

Read other 4 answers
RELEVANCY SCORE 92.4

Monday I noticed that any Google search link I clicked was being redirected to an ad site or another suspicious site rather than the actual URL I was trying to go to.

Norton Internet Security 2010 did not detect any intrusions and did not find any infections during both a quick scan and a full system scan.

Malwarebytes Anti-Malware was unable to update. Error code 732 (12007, 0)
Un-updated Malwarebytes detected the following:
C:\Program Files\Norton Internet Security\Engine\17.5.0.127\msl.dll (Adware.Agent) -> Delete on reboot.

Rebooted system.

Rescan with Malwarebytes detected the following:
Files Infected:
C:\WINDOWS\system32\spool\prtprocs\w32x86\00003842.tmp (Trojan.FakeAlert) -> Quarantined and deleted successfully.

Rebooted system.

Rescan with Malwarebytes detected no security threats. Scan with Super-Anti Spyware detected no security threats. Scan with Norton Internet Security 2010 still detected no security threats.

Still unable to run updates on Malwarebytes. Still getting browser redirects in Firefox when doing a Google search. Unable to reach Malwarebytes or Symantec websites by typing the URL into the address bar. Edited to add: Unable to disable Norton Internet Security 2010 through Run -> services.msc

OS: Windows XP Home, SP3 with all current updates.
Browser of choice: Firefox 3.0.17 (Husband occasionally uses I.E. 8.0 - Suspected source of infection: visiting MySpace and clicking t... Read more

Read other answers
RELEVANCY SCORE 91.6

Have a fake Windows XP Recovery virus so I downloaded and ran Rkill to remove it, then downloaded and ran TDSSKiller to get any rootkit infections. TDSSKiller comes up clean now. I downloaded Malwarebytes' Anti-Malware, but can't finish the installation to launch and update it. It tells me access denied then when I try to run it again it says it needs to reboot because it wasn't fully installed the first time. I reboot and the Windows Recovery virus starts all over. Thank you for your help! -Rosie

DDS.txt log below. Attach.txt attached. Ark.txt attached.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_16
Run by Rose at 23:18:35 on 2011-11-02
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.1023.397 [GMT -6:00]
.
.
============== Running Processes ===============
.
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\WINDOWS\system32\spoolsv.exe
svchost.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Spyware Doctor\pctsAuxs.exe
C:\WINDOWS\System32\svchost.exe -k imgsvc
C:\Program Files\Canon\CAL\CALMAIN.exe
C:\WINDOWS\system32\CTHELPER.EXE
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIADA.EXE
C:\Program Files\iTunes\iTunesHel... Read more

A:Windows XP Recovery infection, unable to finish install/Update/Launch Malwarebytes' Anti-Malware

Hello and Welcome to the forums! My name is Gringo and I'll be glad to help you with your computer problems. Somethings to remember while we are working together.Do not run any other tool untill instructed to do so!Please Do not Attach logs or put in code boxes.Tell me about any problems that have occurred during the fix.Tell me of any other symptoms you may be having as these can help also.Do not run anything while running a fix.We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.Click on the Watch Topic Button and select Immediate Notification and click on proceed, this will help you to get notified faster when I have replied and make the cleaning process faster.In order for me to see the status of the infection I will need a new set of logs to start with.Please print out or make a copy in notpad of any instructions given, as sometimes it is necessary to go offline and you will lose access to them.DeFogger: Please download DeFogger to your desktop.

Double click DeFogger to run the tool.
The application window will appear Click the Disable button to disable your CD Emulation drivers Click Yes to continue A 'Finished!' message will ap... Read more

Read other 6 answers
RELEVANCY SCORE 87.2

Good afternoon,
 
  After 2 years of no problems, it seems I may have been infected with Malware.  The hard drive spins constantly, making my laptop nearly worthless.  I rebooted my computer in Safe Mode and ran several programs to try and find/remove the Malware.  Some programs run OK and find nothing, but at least 3 programs run for a short time, then freeze up and the hard drive spins constantly.
 
  Here is what I've tried so far:
- Norton Power Eraser - Finds no problems
- Panda Cloud Cleaner - Did find and quarantine a few issues
- Kaspersky - I ran a through scan on everything - it took several hours and did find 2 infections.  Cleaned or quarantined both
- Malwarebytes - Gets to a certain point, then freezes.   Hard drive spins constantly
- ESET - Gets to a certain point, then freezes.  Hard drive spins constantly
- House Call - Gets to a certain point, then freezes.  Hard drive spins constantly
 
- AdwCleaner - Ran this, log looks clean except for 1 Firefox and 1 Google Chrome file that are listed
- Junkware Removal Tool - Only tried to run in Safe Mode w/ Networking.  Shows a command prompt screen, but nothing happens
- ComboFix - I have run this, can produce the log file if needed.
 
Any help you can give would be greatly appreciated!!

A:Malware Infection - Freezes computer when Anti Malware Program is run

Hello having run ComboFix, you need to repos this with that ComboFix log in this forum...Virus, Trojan, Spyware, and Malware Removal Logs

Read other 4 answers
RELEVANCY SCORE 86

Please say which you would choose and why?

Malwarebytes Anti-Exploit (Premium) (Great enhanced exploit protection) and Zemana Anti-Malware Premium (Ransomeware, malware protection) vs HitmanPro.Alert (Exploit, Ransomeware Protection + great scanning capabilities)
 

Read other answers
RELEVANCY SCORE 85.6

So, I've been talking to my father, and fed slightly by paranoia, I've come to the conclusion that I want to secure our computers and network as much as possible. I honestly love Malwarebytes. They offer good software, and their prices are very attractive.
 
As the title suggests, I'm curious what other people's experience is with these two programs. I already have some experience with MBAM Premium from the past, and I have to say I'm pleased. Does Anti Exploit work as good as it is said to be?
 
Please note that I don't really care about "needing it" or not. I just want to know if it does a good job at what it's supposed to do, just like MBAM. If it does, then I'm buying it. Any layer of defense I can get, I'll grab.

A:Malwarebytes Anti Malware + Anti Exploit Premium worth it?

Malwarebytes Anti-Exploit (MBAE), formerly ExploitShield by ZeroVulnerabilityLabs, is a security program that runs in the background as a standard Windows Service and protects against zero-day exploits that target browser and application vulnerabilities, blocks exploit kits and defends against drive-by download attacks.Malwarebytes Anti-Exploit provides three layers of exploit protection (against Operating System security bypasses, memory caller protection, application behavior protection). MBAE continuously monitors popular applications, preventing vulnerabilities in software and browsers from being exploited, blocks unknown and known exploit kits, proactively preventing the exploit from installing its payload before it can do damage. This means that it will protect against code execution that uses a certain vulnerability in an application. MBAE leaves a small footprint...meaning it is not intrusive, does not utilize a lot of system resources and does not use a signature database so there is no need for constant updating.Malwarebytes Anti-Exploit includes a 14-day trial mode for the Premium version which you can enable during installation by checking the box when prompted. Malwarebytes Anti-Exploit Premium includes additional protecton (Shields) for PDF readers, Microsoft Office (Word, Excel, Powerpoint), Media players and allows the ability to add/manage custom shields. The Premium version requires a registration ID and purchase of a license key after the trial period expir... Read more

Read other 9 answers
RELEVANCY SCORE 84.8

Which one is better for protection? Are there key difference between the two? We have some users who only seem to be having issues while browsing and generally clearing out everything in terms of cookies and history has been fixing this issue. So in that case, would Anti-Exploit be better?
 
Like I said, are there key differences between the two programs? We also have Kaspersky running so we need something that can run side-by-side with that.

A:Emsisoft Anti-Malware or Malwarebytes Anti-Exploit?

They are entirely two different programs.Emsisoft Anti-Malware (EAM) is an antivirus platform that includes anti-malware protection which uses two scanning engines and three security levels (or layers) of protection to prevent the installation of malware and stop malicious processes before they can infect your computer. EAM uses advanced behavior blocking analysis which is extremely difficult to penetrate...it continually monitors the behavior of all active programs looking for any anomalies that may be indicative of malicious activity and raises an alert as soon as something suspicious occurs. Emsisoft’s Behavior Blocker is able to detect unknown zero-day attacks and file-encrypting malware (ransomware) attacks. Emsisoft also has the added advantage of blocking the installation of most Potentially Unwanted Programs (PUPs) (such as adware, spyware, unwanted toolbars, browser hijackers) if you enable that feature.Malwarebytes Anti-Exploit (MBAE) is an action level security application (behavior based) that runs in the background as a standard Windows Service and protects against, the malicious action of exploiting software vulnerabilities, blocks zero-day exploits that target browser and application vulnerabilities, blocks exploit kits and defends against drive-by download attacks. MBAE provides four layers of exploit protection to include application hardening, protection against Operating System security bypasses, memory caller protection, and application behavior prot... Read more

Read other 37 answers
RELEVANCY SCORE 84.8

Which one is better for protection? Are there key difference between the two? We have some users who only seem to be having issues while browsing and generally clearing out everything in terms of cookies and history has been fixing this issue. So in that case, would Anti-Exploit be better?
 
Like I said, are there key differences between the two programs? We also have Kaspersky running so we need something that can run side-by-side with that.

A:Emsisoft Anti-Malware or Malwarebytes Anti-Exploit?

They are entirely two different programs.Emsisoft Anti-Malware (EAM) is an antivirus platform that includes anti-malware protection which uses two scanning engines and three security levels (or layers) of protection to prevent the installation of malware and stop malicious processes before they can infect your computer. EAM uses advanced behavior blocking analysis which is extremely difficult to penetrate...it continually monitors the behavior of all active programs looking for any anomalies that may be indicative of malicious activity and raises an alert as soon as something suspicious occurs. Emsisoft’s Behavior Blocker is able to detect unknown zero-day attacks and file-encrypting malware (ransomware) attacks. Emsisoft also has the added advantage of blocking the installation of most Potentially Unwanted Programs (PUPs) (such as adware, spyware, unwanted toolbars, browser hijackers) if you enable that feature.Malwarebytes Anti-Exploit (MBAE) is an action level security application (behavior based) that runs in the background as a standard Windows Service and protects against, the malicious action of exploiting software vulnerabilities, blocks zero-day exploits that target browser and application vulnerabilities, blocks exploit kits and defends against drive-by download attacks. MBAE provides four layers of exploit protection to include application hardening, protection against Operating System security bypasses, memory caller protection, and application behavior prot... Read more

Read other 15 answers
RELEVANCY SCORE 83.6

Hello and thanks in advance for your help. I have been experiencing a myriad of malware problems for a few weeks such as unauthorized firefox plug-ins and url redirects. The worst was 99% CPU usage from svchost.exe. I tried to fix the problem myself through a variety of software and am still having problems. It's mostly better except for a nagging issue described below.

I am using a Malware Bytes Anti-Malware trial version. It keeps notifying of blocked outgoing contact with threatening urls. See below for example log.
2013/01/20 11:28:58 -0800 MESSAGE IP Protection started successfully
2013/01/20 11:30:07 -0800 IP-BLOCK 212.113.33.138 (Type: outgoing)
2013/01/20 11:31:02 -0800 IP-BLOCK 89.28.19.75 (Type: outgoing)
2013/01/20 11:47:06 -0800 IP-BLOCK 31.133.47.237 (Type: outgoing)
2013/01/20 12:02:18 -0800 IP-BLOCK 31.133.56.58 (Type: outgoing)
2013/01/20 12:17:24 -0800 IP-BLOCK 31.133.32.235 (Type: outgoing)
2013/01/20 12:18:48 -0800 IP-BLOCK 222.70.142.21 (Type: outgoing)
2013/01/20 12:31:39 -0800 IP-BLOCK 219.153.106.160 (Type: outgoing)
2013/01/20 12:31:56 -0800 IP-BLOCK 77.78.237.218 (Type: outgoing)
2013/01/20 13:02:40 -0800 IP-BLOCK 89.28.123.79 (Type: outgoing)
2013/01/20 13:02:42 -0800 IP-BLOCK 93.114.42.214 (Type: outgoing)
2013/01/20 13:03:43 -0800 IP-BLOCK 89.28.1.142 (Type: outgoing)
2013/01/20 13:17:31 -0800 IP-BLOCK 89.28.15.249 (Type: outgoing)

DDS log below.

DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 8.0.6001.18702 BrowserJavaVersio... Read more

A:Malwarebytes blocking outgoing IP access but does not find source malware

Hello and welcome to Bleeping Computer! I am HelpBot: an automated program designed to help the Bleeping Computer Staff better assist you! This message contains very important information, so please read through all of it before doing anything. We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here. To help Bleeping Computer better assist you please perform the following steps:*************************************************** In order to continue receiving help at BleepingComputer.com, YOU MUST tell me if you still need help or if your issue has already been resolved on your own or through another resource! To tell me this, please click on the following link and follow the instructions there.CLICK THIS LINK >>> http://www.bleepingcomputer.com/logreply/482445 <<< CLICK THIS LINK If you no longer need help, then all you needed to do was the previous instructions of telling me so. You can skip the rest of this post. If you do need help please continue with Step 2 below.*************************************************** If you still need help, I would like you to post a Reply to this topic (click the "Add Reply" button in the lo... Read more

Read other 12 answers
RELEVANCY SCORE 83.2

Hi. I am running Windows XP. I had no problems until today after I disabled adblock on a website. This led me to be redirected to some security thing. I enabled Malwarebyes Anti-Malware real time protection and since then I have been having constant pop ups telling me its blocked outgoing/ingoing IPs.
Some of them are from China such as 222.186.13.71 I also received an incoming one from Doha 178.152.15.122. I'm not sure if this might be caused by my uTorrent as I always have it on and seeding. Malwarebyes Anti-Malware full scan came up with threats but those are just trainers for games installed on the computer and do not do anything. I have had those trainers installed for a while. What do I do? I have not been redirected recently only that one time.
 
 

A:Malwarebyes Anti-Malware keeps blocking IPs

Update: I just shut down uTorrent and so far no pop ups about blocking IPs. I'll keep uTorrent off for a while and see if any pop ups happen. I'm still a bit worried as I was redirected that one time.

Read other 3 answers
RELEVANCY SCORE 82.8

Hello, recently I have found my PC to be infected with numberous things.. I already scanned with Antivir and installed Comodo.. and on that part.. the problem seems to be fixed.

When i scanend with Anti-Malware.. I found a huge list of things that are probably working on the background and was not aware of them.

Could someone please take a look and see what is safe to delete and what is not? Thank you!!


Quote:




Malwarebytes' Anti-Malware 1.28
Database version: 1266
Windows 5.1.2600 Service Pack 2

10/13/2008 5:21:14 PM
mbam-log-2008-10-13 (17-21-11).txt

Scan type: Quick Scan
Objects scanned: 53236
Time elapsed: 11 minute(s), 34 second(s)

Memory Processes Infected: 1
Memory Modules Infected: 0
Registry Keys Infected: 26
Registry Values Infected: 2
Registry Data Items Infected: 0
Folders Infected: 4
Files Infected: 74

Memory Processes Infected:
C:\WINDOWS\system32\drivers\svchost.exe (Heuristics.Reserved.Word.Exploit) -> No action taken.

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
HKEY_CLASSES_ROOT\CLSID\{0656a137-b161-cadd-9777-e37a75727e78} (Fake.Dropped.Malware) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\{0b682cc1-fb40-4006-a5dd-99edd3c9095d} (Fake.Dropped.Malware) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\{0e1230f8-ea50-42a9-983c-d22abc2eeb4c} (Fake.Dropped.Malware) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\{9dd4258a-7138-49c4-8d34-587879a5c7a4} (Fake.Dropped... Read more

A:Malwarebytes' Anti-Malware Log

Hello ja5219 and welcome,

We do not generally work from MBAM logs right off the bat, but your system is severely infected with some of the worst nasties out there.

In the future, kindly refer to our sticky topic Important - Please Read This Before Posting for Malware Removal Help

***************************************************

Yes, allow the tool to fix them, but I highly recommend you install the Windows Recovery console first.

Read through this entire procedure and if you have any questions, please ask them before you begin. Then either print out, or copy this page to Notepad and save to your desktop for reference as you will not have any browsers open while you are carrying out portions of these instructions.


It's IMPORTANT to carry out the instructions in the sequence listed below.


***************************************************


Download ComboFix.exe from here

**Note: It is important that it is saved directly to your desktop**

--------------------------------------------------------------------

With malware infections being as they are today, it's strongly recommended to have this pre-installed on your machine before doing any malware removal.

The Windows Recovery Console will allow you to boot up into a special recovery (repair) mode. This allows us to more easily help you should your computer have a problem after an attempted removal of malware. It is a simple procedure that will only take a few mome... Read more

Read other 19 answers
RELEVANCY SCORE 82.8

Here is the malwarebytes anti-malware log for the program downloaded from the first of the two choices and downloaded over my instalation of the program:

Malwarebytes' Anti-Malware 1.19
Database version: 914
Windows 5.1.2600 Service Pack 3

2:12:35 PM 7/2/2008
mbam-log-7-2-2008 (14-12-35).txt

Scan type: Quick Scan
Objects scanned: 39663
Time elapsed: 2 minute(s), 58 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)

thanks

A:Malwarebytes Anti-malware Log

The log shows that Malwarebytes didn't find anything. Are you experiencing problems?

Read other 1 answers
RELEVANCY SCORE 82.8

Hi,
 
I'm new to the forum and not the most technically minded computer user in the world. I'm running Windows 7 64 bit and use Vipre and Malwarebytes as my anti-virus and anti-malware software. I've started (as of today) getting very annoying pop-ups from MBAM saying that it "successfully blocked access to a potentially malicious website".
 
I ran Vipre and it quarantined several items: Win32.Generic!BT, Win32.Sirefef.ag (v), Win32.Sirefef (fs), and Win32.Zaccess.ca(v). I opted to delete all of them. I've run MBAM again and it did not show anything. However, the annoying pop-ups keep happening every minute or so.
 
Is there a way for me to stop this behavior? Can someone please speak to me without too much technical jargon (my aged brain begins to melt down with terminology with which I'm not familiar).
 
Any help would be appreciated.
 
Mike

A:Malwarebytes Anti-Malware pop-ups

Hello Mike -Please read Section G - IP Protection Module as your MBAM Pro is performing normally.You can reset for Excluding certain IPs if you wish, but these Pop-ups are generally classified as "Bad Sites". If you want more details, you can always get more specific details from posting at the Malwarebytes Forum - Thank You -

Read other 4 answers
RELEVANCY SCORE 82.8

Malwarebytes Anti-Malware for Mac

1.2.5.715 / October 31, 2016

Changes

Enhancements to the engine to allow improved detection of new threats
Added capability to detect threats in all user folders
Fixed bug that could cause a crash under rare circumstances, if bad data is received from the update server
Cleaned up log file to remove duplicate entries
Now requires Mac OS X 10.9 or later

 

Read other answers
RELEVANCY SCORE 82.8

Hi friends,
i got Malwarebytes Anti-Malware & want to know before i can start running it on my com...my friend told me that before installing it i need to disable my firewall,AV,UAC,disconnect from network etc...then go about it & after scanning uninstall it...How right is he, i want to know....

Thank you

A:How to use Malwarebytes Anti-Malware

I just downladed with no problem
Do you have the free version, if so it makes its scan with no preparation necessary.

Read other 7 answers
RELEVANCY SCORE 82.8

Hey Guys,I have a few problems with my pc. On start up it it multiple boxes open saying unable to load ***.exe and whe I use google it always redirects. In the past I've used a combination of cc cleaner and anti malwarebytes and that used to work well. Only recently when I use malwarebytes the same virus's appear time and again even after reboot. The log is below.Thanks in advance for your help! Malwarebytes' Anti-Malware 1.46www.malwarebytes.orgDatabase version: 4638Windows 5.1.2600 Service Pack 3Internet Explorer 8.0.6001.1870217/09/2010 12:56:58mbam-log-2010-09-17 (12-56-58).txtScan type: Quick scanObjects scanned: 227151Time elapsed: 11 minute(s), 13 second(s)Memory Processes Infected: 1Memory Modules Infected: 0Registry Keys Infected: 0Registry Values Infected: 1Registry Data Items Infected: 2Folders Infected: 0Files Infected: 2Memory Processes Infected:C:\Documents and Settings\Administrator\Application Data\Microsoft\svchost.exe (Backdoor.Bot) -> Unloaded process successfully.Memory Modules Infected:(No malicious items detected)Registry Keys Infected:(No malicious items detected)Registry Values Infected:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\svchost (Backdoor.Bot) -> Quarantined and deleted successfully.Registry Data Items Infected:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Userinit (Trojan.Agent) -> Data:... Read more

A:Malwarebytes' Anti-Malware Log

Hello and welcome to Bleeping ComputerWe apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine. If you have not done so, include a clear description of the problems you're having, along with any steps you may have performed so far.Upon completing the steps below another staff member will review and take the steps necessary with you to get your machine back in working order clean and free of malware.If you have already posted a DDS log, please do so again, as your situation may have changed.Use the 'Add Reply' and add the new log to this thread.Thanks and again sorry for the delay.We need to see some information about what is happening in your machine. Please perform the following scan:Download DDS by sUBs from one of the following links. Save it to your desktop.DDS.scrDDS.pifDouble click on the DDS icon, allow it to run.A small box will open, with an explaination about the tool. No input is needed, the scan is running.Notepad will open with the ... Read more

Read other 2 answers
RELEVANCY SCORE 82.8

I keep getting notices from MBAM saying that it has blocked access to a potentially malicious website (I am browising collegehumor.com and cracked.com)

Is this a false positive or is there something wrong with the computer?

Thanks again!

A:Malwarebytes Anti-malware

Welcome aboard Download Security Check from HERE, and save it to your Desktop. * Double-click SecurityCheck.exe * Follow the onscreen instructions inside of the black box. * A Notepad document should open automatically called checkup.txt; please post the contents of that document.=============================================================================Please download MiniToolBox and run it.Checkmark following boxes:Report IE Proxy SettingsReport FF Proxy SettingsList content of HostsList IP configurationList last 10 Event Viewer logList Users, Partitions and Memory sizeClick Go and post the result.=============================================================================Download Malwarebytes' Anti-Malware (aka MBAM): http://www.malwarebytes.org/products/malwarebytes_free to your desktop. * Double-click mbam-setup.exe and follow the prompts to install the program. * At the end, be sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish. * If an update is found, it will download and install the latest version. * Once the program has loaded, select Perform quick scan, then click Scan. * When the scan is complete, click OK, then Show Results to view the results. * Be sure that everything is checked, and click Remove Selected. * When completed, a log will open in Notepad. * Post the log back here.Be sure to restart the computer.The log can also be found here:C... Read more

Read other 1 answers
RELEVANCY SCORE 82.8

I was following the instructions on this page:

www.bleepingcomputer.com/virus-removal/uninstall-antivirus-2009 (I'm assuming this is the virus I have)

I got to step 5 and downloaded the Anti-Malware program. But when I try to open it I get this popup message:

"Application cannot be executed. The file mbam.exe is infected. Do you want to activate your antivirus software now?"

This is the same message I get when I try to Run something or open something in the Control Panel. Is there some way to get past this?

A:Can't Run Malwarebytes' Anti-Malware

Try these directions and see if you get any better results. First, Download rkill to your desktop. Double-click on the rkill.com in order to automatically attempt to stop any processes associated with Rogue programs. Please be patient while the program looks for various malware programs and ends them. When it has finished, the black window will automatically close and you can continue with the next step. If you get a message that rkill is an infection, do not be concerned. This message is just a fake warning given by these Rogue programs when it terminates programs that may potentially remove it. If you run into these infections warnings that close Rkill, a trick is to leave the warning on the screen and then run Rkill again. By not closing the warning, this typically will allow you to bypass the malware trying to protect itself so that rkill can terminate these Rogue Programs. So, please try running Rkill until malware is no longer running. You will then be able to proceed with the rest of the instructions.Scan for Spyware/AdwareThe process of cleaning your computer may require you to temporarily disable some security programs. If you are using SpyBot Search and Destroy, please refer to Note 2 at the bottom of this page.Please download Malwarebytes Anti-Malware Free version and save it to your desktop.NOTE: Before saving MBAM please rename it to zztoy.exe....now save it to your desktop.alternate download link 1alternate download link 2Make sure you are connected to the In... Read more

Read other 15 answers
RELEVANCY SCORE 82.8

I have been infected by something nasty here. It happened when I tried to visit drunkenstepfather...com
I could not get to Malwarebytes' website because of this infection, so I downloaded Anti-Malware using another computer and installed on the one that has been infected. I was able to install it but it won't let me execute.

What do I do here? I have a feeling that if I reboot the system now, something is going to go bad.
Any help would be appreciated.

A:Cannot run Malwarebytes' Anti-Malware

Hello,open the Malwarebytes' Anti-Malware folder in Program Files, right-click on mbam.exe and change the .exe. Change it to sodina.exeThen double-click on it to run..Are you getting an error message?

Read other 3 answers
RELEVANCY SCORE 82.8

Hi I have noticed that Malwarebytes' Anti-Malware has been recommended quite a lot in the Am I Infected? What Do I Do? forum. I was wondering if this is a good tool to use as an on-demand scanner. Does anyone use this and if so, what do you think of it?Replies will be greatly appreciated for this Regards,David.

A:Malwarebytes' Anti-malware

Its a very good program which I have used many times. We also recommend its use in several of our self-help guides for malware removal. You can read more about it atMalwarebytes' Anti-Malware.

Read other 12 answers
RELEVANCY SCORE 82.8

what are Malwarebytes Anti-Malware ? if i have a good anti virus like kaspersky or avast then do i need to install thiis? is it antivirus program or what.....please help so that i could know that shoul i install this or not? thank you

A:what are Malwarebytes Anti-Malware

Virus's are different from malware. AV programs on look for virus's and not malware. I would highly recommend using Malwarebytes and a few others as well because one doesn't find them all.

Malwarebytes
Spybot Search and Destroy
SuperAntispyware
Ccleaner
Tdsskiller

Read other 7 answers
RELEVANCY SCORE 82.8

Today when I started up my computer, a few things were going wrong. the desktop was acting strange, not responding, going purple and such. Google chrome wouldn't open, the task manager and file explorer wouldn't respond. That subsided a few minutes later, but I later realized that Malwarebytes wouldn't run, whether or not if I ran it as administrator or used chameleon. My other antivirus programs, Trend Micro Titanium and Avast work completely fine, but they didn't detect anything malicious, although when I scanned with RogueKiller, it detected something in processes.
 
Status: Error[12]
type: ZeroAccess
PID: 2612
name: coreServiceShell.exe
 
Also there were a few things in the registry, but I think they've been deleted.
adwcleaner presumably detected the same entries in the registry, but they do appear to have been deleted.
 
 This has had me on edge all day, and If anyone can tell me what this is, it would be greatly appreciated.
 
-EDIT  (this post is being constantly updated if anything happens)
What was happening on startup may have been caused by trying to restore to a previous system restore point. And I should probably mention trying to do a system restore failed for some reason, so I tried it multiple times, to no avail. Don't know why it didn't work though.
Also I think I recall Malwarebytes may have been working when I started the computer, but I restarted it a couple times and it wouldn't work after that.
I've also run rkill.exe, but ... Read more

A:Malwarebytes Anti-Malware will not run! can someone help?

Try http://www.microsoft.com/security/scanner/en-us/default.aspx it helped me find a virus in Java. But my malwarebytes still won't run either.

Read other 2 answers
RELEVANCY SCORE 82.8

I currently have kaspersky internal security 2010 and I was thinking about downloading malwarebytes anti-malware for extra protection against malware. Would malwarebytes anti-malware free edition conflict with the kaspersky program.

A:malwarebytes anti-malware

I have both, and no there is not a conflict because MalwareBytes is an on demand scanner.

Read other 1 answers
RELEVANCY SCORE 82.8

Is this product anygood for removal , or is it
trouble in desquise?

Thanks in advance,
IJ

A:Malwarebytes Anti-malware

I use MBAM. Its a reputable anti-malware program and probably one of the best. Its safe

Read other 13 answers
RELEVANCY SCORE 82.8

I'm following this guide http://www.bleepingcomputer.com/malware-re...e-antivirus-360 to get rid antivirus 360. I've downloaded the Malwarebytes' Anti-Malware but when I open it and click scan it closes after a few seconds. I've done this several times and restarted my computer but it keeps happening, does anyone know why and what I can do. Please help.

A:Malwarebytes' Anti-Malware

Hello.

I'm letting a MOD know, to move you to the AII forum. It seems there might be a rootkit infection involved here. I'm not exactly sure but it could be. We will verify this in that forum, as this forum is for protection methods and questions related to that. Not malware removal.

Thanks for understanding

With Regards,
Extremeboy

Read other 10 answers
RELEVANCY SCORE 82.8

Hello,

I have downloaded Malwarebytes' Anti-Malware and it would not run. I then renamed the file, and it installed successfully, it gives the options to check for updates and start program, but the program interface will not show. I can see the program in the processes in task manager. Spybot S&D will not show user interface either. Also, I cannot get to windows update site, web browser will be redirected every time.

I need this system working properly, as it has simply accounting on here.

Please help
Thanks, Timone
 

Read other answers