Jump to content

All Activity

This stream auto-updates     

  1. Past hour
  2. PJ_Sarpy1

    False Positive

    Please remove sarpy.com from the Malwarebytes hpHosts list. Malwarebytes hpHosts is falsely reporting sarpy.com contains malware. Thanks.
  3. Had to kill the program again in task manager. Now getting the attached error when trying to run it again.
  4. Having the same issue with the version you had me download.
  5. Hello, We are blocking www[.]jlzebszkilcz[.]ru due to Trojan.CoinMiner.
  6. I was trying to view a commission hearing on idahoptv.org/insession/leg.cfm and Malwarebytes blocked the website due to riskware. I do not no how to resolve this. I will continue to need to watch or listen to hearings remotely. I cntacted Idaho Public TV and he assumed it had to do with the Flash stream. I whitelisted Flash in Chrome to no avail. This pop up is occurring in Firefox and Chrome. I am running this on my Acer laptop with a Windows 10 Pro Version 1803, OS Build 17134.228 Malwarebytes is up to date as is all of my software. Please advise. Malwarebytes www.malwarebytes.com -Log Details- Protection Event Date: 8/16/18 Protection Event Time: 1:10 PM Log File: 00679008-a188-11e8-babf-54ab3ae50bb8.json Administrator: Yes -Software Information- Version: 3.5.1.2522 Components Version: 1.0.391 Update Package Version: 1.0.6375 License: Premium -System Information- OS: Windows 10 (Build 17134.228) CPU: x64 File System: NTFS User: System -Blocked Website Details- Malicious Website: 1 , , Blocked, [-1], [-1],0.0.0 -Website Data- Category: RiskWare Domain: www.jlzebszkilcz.ru IP Address: 5.9.61.75 Port: [49768] Type: Outbound File: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (end)
  7. Hello, I have a problem with BitcoinMiner virus as detected by MBAM in my windows folder. I´ve already tried to delete it, but it keeps reapearing after each next reboot. I´ve read several threads here with the same problem, though no file had the same name. Also MSE keeps moving it to quarantine after start up automatically. However, after the first scan with MBAM, it detected a few more files which are gone now. Every try to delete it is to no avail as it is somehow downloading repeatedly. The files are IE.exe and IEcache.exe in windows folder. I enclose MBAM log as well as FRST logs. Thank a lot in advance, dear professionals. mbam-scan.txt Addition.txt FRST.txt
  8. Firefox

    Is there a current beta?

    As far as I know this is the latest version...
  9. I have a couple machines that are infected with Play Search Now adware. Malware Bytes doesn't see it. It affects Safari, Chrome and Firefox. Safari did show an extension called "PlaySearchNow 1.0" and removing it did nothing. All browsers still start up with the Play Search Now page. What I find particularly concerning is that searching the net for "PlaySearchNow.safariextz" turns up only a few hits, and none of them talk about manual removal. There appear to be a few variations on this, some of them also come along with a ~/Library/Application Support/guid/guid.app payload that is somehow involved, or could be another bit of adware. On one computer, the extension is present, but it hasn't taken over loading the play search now page at launch. I somehow suspect that uninstalling the plugin in Safari Preferences actually makes it dig its claws in deeper. It does not appear to be a crossrider variation, I don't see any profiles in terminal, and no profile icon in System Preferences. Where should I go next?
  10. Alby7503

    Pls help

    can you move the post? i don't know how to delete 😕
  11. Driver verifier can run for 24 to 48 hours - it depends on the situation and the system. First try this: https://forums.malwarebytes.com/topic/231155-bsod-from-new-malwarebytes/?page=3&tab=comments#comment-1263800 I put it in a code box because the link directs to the first page - and this post is on the 3rd page. Here's the direct link for the beta: https://downloads.malwarebytes.com/file/mb3 Good luck!
  12. treed

    Searchfeedtech.com

    It seems odd that you would have the same behavior on both Mac and Windows. It's exceedingly unlikely that you would have accidentally installed the same adware on both machines at the same time. Most likely what has happened is that the settings were changed on one machine and that was synced back to the other via Chrome sync. Since you've fixed it on Windows, I'd recommend resetting Chrome sync. First, make sure Chrome is not running on the Mac. Next, go here: https://chrome.google.com/sync Click the Reset Sync button at the bottom of that page. Make sure that your home page setting in Windows is set the way that you want, as that's what will be synced to your Google account. You may want to change the setting, then change it back again, just to make absolutely sure that Chrome sync has recorded your current home page setting Then re-open Chrome on the Mac. See if it picks up the new settings.
  13. Good morning here is the new build we created for the Discovery & Deployment tool: https://malwarebytes.app.box.com/s/d8fsh4vecgrqwshvcujayhcdtryxlhmk It will say preview was not able to load, but you will be able to click the blue Download button in the middle to download. Please login with your cloud credentials and let us know if using this newer version we still see the issues persist?
  14. After doing an initial discovery scan (using AD) and clicking the Refresh button (after installing endpoints), the program hangs with a "Processing, please wait" message. I have to kill the program through Task Manager.
  15. SeanCamby

    Legitimate Malware.Ransom.Agent.Generic

    Thanks again.
  16. miekiemoes

    Legitimate Malware.Ransom.Agent.Generic

    Hi, Thanks! This was a false positive indeed and has been fixed in a meanwhile.
  17. miekiemoes

    MachineLearning/Anomalous.97% Atex Brawl

    Thanks. I looked at the file. This is detected by our MachineLearning engine, which helps to protect even better against 0day threats. Unfortunately, as this is a heuristic engine, it's possible False Positives happen. Thanks for reporting these, as this helps to finetune the engine, so these won't be detected in the future anymore. This should be fixed by now. Please give it some time (max 10 minutes) in order to have it populate, so detection won't happen anymore.
  18. Today
  19. AdvancedSetup

    Infection PUP.Optional.IFEO

    Glad we could help. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this topic with your request. This applies only to the originator of this thread.Other members who need assistance please start your own topic in a new thread. Thanks
  20. We use a n emulator software from IBM to access our AS/400. It is being flagged as ransomware. A zipped copy of the file being flagged is attached. pcsws.zip
  21. rakeshsejwal

    Site blocking

    sorry about the delay, I have put in a request for whitelisting. will update you when the request gets completed.
  22. Demo05

    MachineLearning/Anomalous.97% Atex Brawl

    Sure, Here you go. Atex Brawl.zip
  23. miekiemoes

    MachineLearning/Anomalous.97% Atex Brawl

    Hi, Can you zip and attach the file D:\Progam Files (x86)\Steam\steamapps\common\Atex Brawl\Atex Brawl.exe Thanks!
  24. Hello Malwarebytes Team, I just downloaded a game off steam called Atex Brawl. Every time I try and run the game, Malewarebytes detects and quarantines a file, calling it MachineLearning/Anomalous.97% I've tried restoring the files myself and restarting my computer, but malwarebytes still quarantines the file. Thanks Atex Brawl Machine Learning.txt MBAMSERVICE.LOG
  25. I've checked two of the four users that are experiencing this issue. There have been no windows updates on one. Auto update is disabled.
  26. SeanCamby

    Legitimate MachineLearning/Anomalous.100%

    Thanks. I'll let you know of any issues.
  1. Load more activity
×

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.