Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

The requested resource is in use


  • This topic is locked This topic is locked
112 replies to this topic

#1 death3000

death3000

  • Members
  • 63 posts
  • OFFLINE
  •  
  • Local time:02:56 PM

Posted 29 March 2017 - 08:45 AM

I am trying to get rid of malware and when i try to open malwarebytes this pops up. And it isn't just malwarebyts, this happens in Spyhunter, rougekiller, etc anything that has an exe at the end.

Attached Files


Edited by death3000, 29 March 2017 - 09:16 AM.


BC AdBot (Login to Remove)

 


#2 B-boy/StyLe/

B-boy/StyLe/

    Bleepin' Freestyler


  • Malware Response Team
  • 8,307 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Bulgaria
  • Local time:10:56 PM

Posted 29 March 2017 - 09:23 AM

Hello! Welcome to BleepingComputer Forums! :welcome:
My name is Georgi and and I will be helping you with your computer problems.

Before we begin, please note the following:

  • I will working be on your Malware issues, this may or may not, solve other issues you have with your machine.
  • The logs can take some time to research, so please be patient with me.
  • Stay with the topic until I tell you that your system is clean. Missing symptoms does not mean that everything is okay.
  • Instructions that I give are for your system only!
  • Please do not run any tools until requested ! The reason for this is so I know what is going on with the machine at any time. Some programs can interfere with others and hamper the recovery process.
  • Please perform all steps in the order received. If you can't understand something don't hesitate to ask.
  • Again I would like to remind you to make no further changes to your computer unless I direct you to do so. I will not help you if you do not follow my instructions.

 

STEP 1

 

  • Download Malwarebytes Anti-Rootkit Beta and extract it to a folder of your choice.
  • Follow these steps to perform a scan.
  • A reboot might be required to clean the Threats found.
  • After that go back in the mbar folder and look for a text file called mbar-log-TODAY'S-DATE.txt.
  • Copy/paste the content of that log in your next reply.

 

STEP 2

 

Please download the latest version of Farbar Recovery Scan Tool and save it to your desktop.

Note: You need to run the version compatibale with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.

  • Double-click to run it. When the tool opens click Yes to disclaimer.
  • Make sure that Additional.txt is checked.
  • Press Scan button.
  • It will make 2 logs (FRST.txt and Addition.txt) in the same directory the tool is run. Please copy and paste them to your reply.

 

Regards,

Georgi


cXfZ4wS.png


#3 death3000

death3000
  • Topic Starter

  • Members
  • 63 posts
  • OFFLINE
  •  
  • Local time:02:56 PM

Posted 29 March 2017 - 09:30 AM

First one didn't work but i recently did a scan with the 2nd option and these are the logs 

Attached File  attach.txt   24.7KB   0 downloadsAttached File  dds.txt   45.3KB   0 downloads

Edited by death3000, 29 March 2017 - 09:34 AM.


#4 B-boy/StyLe/

B-boy/StyLe/

    Bleepin' Freestyler


  • Malware Response Team
  • 8,307 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Bulgaria
  • Local time:10:56 PM

Posted 29 March 2017 - 09:35 AM

Hi,

 

What do you mean it didn't work? Did you read the instructions provided in the link I posted here:

 

https://support.malwarebytes.com/customer/portal/articles/2097176?b_id=6400

 

This is an alternative way to start the program so please try it and let me know about the results.

 

Also the logs you posted are not from FRST (Farbar Recovery Scan Tool) but from DDS! They are not the same!

 

So please read my instructions again and post the required logs in your next reply!

 

 

Regards,

Georgi


Edited by B-boy/StyLe/, 29 March 2017 - 11:23 AM.
typo

cXfZ4wS.png


#5 death3000

death3000
  • Topic Starter

  • Members
  • 63 posts
  • OFFLINE
  •  
  • Local time:02:56 PM

Posted 29 March 2017 - 09:37 AM

Yea i did but i cant open that either.



#6 B-boy/StyLe/

B-boy/StyLe/

    Bleepin' Freestyler


  • Malware Response Team
  • 8,307 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Bulgaria
  • Local time:10:56 PM

Posted 29 March 2017 - 09:39 AM

Even after you clicked on the mbar.cmd?

 

Also I still need you to scan with FRST and not with DDS.

 

 

Regards,

Georgi


cXfZ4wS.png


#7 death3000

death3000
  • Topic Starter

  • Members
  • 63 posts
  • OFFLINE
  •  
  • Local time:02:56 PM

Posted 29 March 2017 - 09:41 AM

Yes even after. And it is scanning as we speak


The CMD opened for like a half a second



#8 death3000

death3000
  • Topic Starter

  • Members
  • 63 posts
  • OFFLINE
  •  
  • Local time:02:56 PM

Posted 29 March 2017 - 09:51 AM

Here they are

Attached Files



#9 B-boy/StyLe/

B-boy/StyLe/

    Bleepin' Freestyler


  • Malware Response Team
  • 8,307 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Bulgaria
  • Local time:10:56 PM

Posted 29 March 2017 - 10:34 AM

Hi,

 

 

STEP 1

 

 

Please download the following file => Attached File  fixlist.txt   116bytes   21 downloads and save it to the Desktop.
NOTE. It's important that both files, FRST and fixlist.txt are in the same location or the fix will not work.

Run FRST and press the Fix button just once and wait.
The tool will make a log on the Desktop (Fixlog.txt). Please post it to your reply.

This script was written specifically for you, for use on that particular machine.

 

 

STEP 2

 

 

We will need to run this fix in the Recovery Environment. You will need a USB Flash drive.

Please download the attached file => Attached File  fixlist.txt   1.89KB   19 downloads to your USB flash drive.

 

Next please download Farbar Recovery Scan Tool and save it to your USB flash drive.

 

Note: You need to run the version compatible with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.

 

 

Note: In case you can not enter System Recovery Options by using the methods described in the article above, you can use Windows installation disc, or make a repair disc. Any Windows installation disc or a repair disc made on another computer can be used.
To make a repair disk on Windows 10 consult:
https://www.tenforums.com/tutorials/36083-create-system-repair-disc-windows-10-a.html

To enter System Recovery Options by using Windows installation disc:

 

  • Insert the installation disc.
  • Restart your computer.
  • If prompted, press any key to start Windows from the installation disc. If your computer is not configured to start from a CD or DVD, check your BIOS settings.
  • Select your language preferences, and click/tap on Next.
  • Click Repair your computer.
  • After that, it will show you the three options and now you’ll need to select the second one called “Troubleshoot” and then right under the troubleshoot menu, select the third option called “Advanced options”.
  • On the System Recovery Options menu select Command Prompt

 

Once in the Command Prompt:

 

  • In the command window type in notepad and press Enter.
  • The notepad opens. Under File menu select Open.
  • Select "Computer" and find your flash drive letter and close the notepad.
  • In the command window type e:\frst (for x64 bit version type e:\frst64) and press Enter
    Note: Replace letter e with the drive letter of your flash drive.
  • The tool will start to run.
  • When the tool opens click Yes to disclaimer.
  • Press the Fix button.
  • When finished, a log file (Fixlog.txt) will pop up and saved in the same location the tool was ran from.

Note: You need to run the version compatible with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.

 

Restart the computer. Please copy and paste its contents in your next reply.

 

Regards,

Georgi


Edited by B-boy/StyLe/, 29 March 2017 - 10:36 AM.
typo

cXfZ4wS.png


#10 death3000

death3000
  • Topic Starter

  • Members
  • 63 posts
  • OFFLINE
  •  
  • Local time:02:56 PM

Posted 29 March 2017 - 10:46 AM

Is there an easier way?



#11 B-boy/StyLe/

B-boy/StyLe/

    Bleepin' Freestyler


  • Malware Response Team
  • 8,307 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Bulgaria
  • Local time:10:56 PM

Posted 29 March 2017 - 10:57 AM

MBAR was the easier way but probably they blocked it or something else prevented it from running on your system...


cXfZ4wS.png


#12 death3000

death3000
  • Topic Starter

  • Members
  • 63 posts
  • OFFLINE
  •  
  • Local time:02:56 PM

Posted 29 March 2017 - 10:58 AM

Oh yea forgot



#13 death3000

death3000
  • Topic Starter

  • Members
  • 63 posts
  • OFFLINE
  •  
  • Local time:02:56 PM

Posted 29 March 2017 - 11:02 AM

i got this error while creating the disc https://gyazo.com/ad53e121e9730983a9b4e9d2fc728b29

 


i got this error while creating the disc 

Attached Files


Edited by death3000, 29 March 2017 - 11:03 AM.


#14 B-boy/StyLe/

B-boy/StyLe/

    Bleepin' Freestyler


  • Malware Response Team
  • 8,307 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Bulgaria
  • Local time:10:56 PM

Posted 29 March 2017 - 11:16 AM

Try this way:

 

1. Download Windows 10.iso Home 64-bit using the following tool => Microsoft Windows ISO Download Tool 4.23

 

2. Burn it with a third-party software like Burnaware

 

The setting is renamed now to Burn Iso (not Burn Image) but the icon is the same:

 

FoXIo71.png

 

3. Boot the computer with that CD, selecting Repair my Computer with it.

 

 

Regards,

Georgi


Edited by B-boy/StyLe/, 29 March 2017 - 11:24 AM.
typo

cXfZ4wS.png


#15 death3000

death3000
  • Topic Starter

  • Members
  • 63 posts
  • OFFLINE
  •  
  • Local time:02:56 PM

Posted 29 March 2017 - 11:30 AM

actually this is more an issue it interuppted my download

Attached Files


Edited by death3000, 29 March 2017 - 11:31 AM.





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users