AdvancedSetup

Root Admin
  • Content count

    63,528
  • Joined

  • Last visited

About AdvancedSetup

  • Rank
    Staff
  • Birthday

Contact Methods

  • Website URL
    http://www.malwarebytes.org

Profile Information

  • Location
    US

Recent Profile Visitors

324,724 profile views
  1. Shutdown 17104 / 1000 = 17.1 seconds Startup 90354 / 1000 = 90.35 seconds Okay, please let me get new FRST logs including the Addition.txt file by placing a check mark in the box for it and attach. Please download Farbar Recovery Scan Tool and save it to your desktop. Note: You need to run the version compatible with your system. You can check here if you're not sure if your computer is 32-bit or 64-bit Double-click to run it. When the tool opens click Yes to disclaimer. Press Scan button. It will make a log (FRST.txt) in the same directory the tool is run. Please attach it to your reply. The first time the tool is run, it also makes another log (Addition.txt). Please attach it to your reply as well.
  2. Okay, please go ahead and reinstall Google Chrome now and let me know how it goes
  3. No problem, I see that you have a Killer Network card in your system. They've had some issues with older drivers. Please visit the manufacturer's website to see if they have updated network card drivers for your system. Then install them and reboot even if not asked to reboot and let me know if the issue with MBAM continues or not. I also see that Microsoft Edge keeps crashing too but not really sure why that's happening. Please try the network driver and see if that helps Edge too or not.
  4. Go ahead and try to run what you can with it running so we can get some progress. Thanks
  5. Glad we could help. :)If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.Other members who need assistance please start your own topic in a new thread. Thanks!
  6. Hi Sam, good news. A bit late for the both of us, but this turns out to have been a false positive. One of our rules was inadvertently detecting this as a bad IP. That rule has been removed and this should no longer be showing in your logs. You do have an old entry that should no longer be running on your system. Please run the item below and it will remove that for us. Please download the attached fixlist.txt file and save it to the Desktop. NOTE. It's important that both files, FRST or FRST64 and fixlist.txt are in the same location or the fix will not work. NOTICE: This script was written specifically for this user, for use on this particular machine. Running this on another machine may cause damage to your operating system. Run FRST or FRST64 and press the Fix button just once and wait. If the tool needs a restart please make sure you let the system restart normally and let the tool complete its run after restart. The tool will make a log on the Desktop (Fixlog.txt). Please attach or post it to your next reply. Note: If the tool warned you about an outdated version please download and run the updated version. fixlist.txt Thanks
  7. When you say as soon as the anti-ransomware is reinstalled. Just checking, you were not supposed to reinstall the anti-ransomware software. Just the new MBAM 3 beta that has the anti-ransomware module built-in. Did you reinstall the stand alone version?
  8. Are you sure that ALL of the Malwarebytes files have been removed? If all of our software has been removed there should not be any boot scan going on.. The times have not improved in this log either. Please confirm if MBAM software is still removed and these logs are after it's removal. Thank you
  9. Just go to VirusTotal Then click the "Choose File" button and browse to the location of steam. C:\Program Files (x86)\Steam\ Then find the STEAM.EXE and upload it. They will scan it and let you know. Then you can post the link from the scan and post back here. If VirusTotal says the file has already been scanned, tell it to go ahead and rescan it. Thanks
  10. Okay, so the main Steam engine executable looks to be old to me, but I believe that is automatically updated by them, yet the date is pretty old which I would not expect. Also, the renamed file is the exact same file as the hash is identical. C:\Program Files (x86)\Steam\Steam.exe --a---- 2860832 bytes [08:37 15/03/2012] [01:58 13/10/2016] D2CE6EA0E9F641D7153462D40C6B4193 C:\Program Files (x86)\Steam\Steam.exe.old --a---- 2860832 bytes [08:37 15/03/2012] [01:58 13/10/2016] D2CE6EA0E9F641D7153462D40C6B4193 I don't play any games with Steam myself so not 100% certain what an up to date version of the program should be. I would suggest either checking another computer with Steam on it, or checking with other users what date they have on their file and possibly uploading it to virustotal.com to let them scan it for any possible infection to ensure it is the signed valid file from Steam. (pretty sure it is). That file may just be a stub launcher that then links to a larger DLL file that actually runs the program and thus they may not have updated that exe file since 2012, but checking to make sure would be a good thing.
  11. Hello @prophecyfilm12 and Please restart the computer first and then run the following steps and post back the logs when ready as attachments. STEP 01 Please download Junkware Removal Tool to your desktop. Shutdown your antivirus to avoid any conflicts. Right click over JRT.exe and select Run as administrator on Windows Vista or Windows 7, double-click on XP. The tool will open and start scanning your system. Please be patient as this can take a while to complete. On completion, a log (JRT.txt) is saved to your desktop and will automatically open. Post the contents of JRT.txt into your next reply message When completed make sure to re-enable your antivirus STEP 02 Fix with AdwCleaner Please download AdwCleaner by Xplode and save the file to your Desktop. Right-click on icon and select Run as Administrator to start the tool. Accept the Terms of use. Wait until the database is updated. Click Scan. When finished, please click Clean. Your PC should reboot now. After reboot, logfile will be opened. Copy its content into your next reply. Note: Reports will be saved in your system partition, usually at C:\Adwcleaner STEP 03 Download Sophos Free Virus Removal Tool and save it to your desktop. Double click the icon and select Run Click Next Select I accept the terms in this license agreement, then click Next twice Click Install Click Finish to launch the program Once the virus database has been updated click Start Scanning If any threats are found click Details, then View Log file (bottom left-hand corner) Copy and paste the results in your reply Close the Notepad document, close the Threat Details screen, then click Start cleanup Click Exit to close the program If no threats were found, please confirm that result. STEP 04 Please download the Farbar Recovery Scan Tool and save it to your desktop. Note: You need to run the version compatible with your system. You can check here if you're not sure if your computer is 32-bit or 64-bit Double-click to run it. When the tool opens, click Yes to disclaimer. Press the Scan button. It will make a log (FRST.txt) in the same directory the tool is run. Please attach it to your reply. The first time the tool is run, it also makes another log (Addition.txt). If you've, run the tool before you need to place a check mark here. Please attach the Additions.txt log to your reply as well. Thanks
  12. Glad we could help. :)If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.Other members who need assistance please start your own topic in a new thread. Thanks!
  13. You might try doing a System Restore to before this happened. Have you tried that? Give it a try and then do a scan with MBAM and let me know how things are going after that.
  14. Just run FRST and post back the logs as attachments. Should not need to launch as admin Please download Farbar Recovery Scan Tool and save it to your desktop. Note: You need to run the version compatible with your system. You can check here if you're not sure if your computer is 32-bit or 64-bit Double-click to run it. When the tool opens click Yes to disclaimer. Press Scan button. It will make a log (FRST.txt) in the same directory the tool is run. Please attach it to your reply. The first time the tool is run, it also makes another log (Addition.txt). Please attach it to your reply as well.
  15. Please download the attached fixlist.txt file and save it to the Desktop. NOTE. It's important that both files, FRST or FRST64 and fixlist.txt are in the same location or the fix will not work. NOTICE: This script was written specifically for this user, for use on this particular machine. Running this on another machine may cause damage to your operating system. Run FRST or FRST64 and press the Fix button just once and wait. If the tool needs a restart please make sure you let the system restart normally and let the tool complete its run after restart. The tool will make a log on the Desktop (Fixlog.txt). Please attach or post it to your next reply. Note: If the tool warned you about an outdated version please download and run the updated version. fixlist.txt