Jump to content

All Activity

This stream auto-updates     

  1. Past hour
  2. What is playZone Home?The Malwarebytes research team has determined that playZone Home is a browser NewTab. These so-called "NewTabs" can manipulate your browser(s), for example to change your startpage or searchscopes, so that the affected browser visits their site or one of their choice.How do I know if my computer is affected by playZone Home?You may see this browser extension:these warnings during install:You may see this icon in your browsers menu-bar:this new startpage:and this new setting:How did playZone Home get on my computer?Browser hijackers use different methods for distributing themselves. This particular one was downloaded from the webstore:after a redirect from their website:How do I remove playZone Home?Our program Malwarebytes can detect and remove this potentially unwanted program.You can use their own uninstall instructions first, but I would advise to follow the steps below anyway. Please download Malwarebytes to your desktop. Double-click mb3-setup-consumer-{version}.exe and follow the prompts to install the program. Then click Finish. Once the program has fully updated, select Scan Now on the Dashboard. Or select the Threat Scan from the Scan menu. If another update of the definitions is available, it will be implemented before the rest of the scanning procedure. When the scan is complete, make sure that all Threats are selected, and click Remove Selected. Restart your computer when prompted to do so. Is there anything else I need to do to get rid of playZone Home? No, Malwarebytes' Anti-Malware removes playZone Home completely. If your browsers have been hijacked, you should read our Restore Browser page. You can read there how to fix additional browser redirect methods. How would the full version of Malwarebytes help protect me?We hope our application and this guide have helped you eradicate this hijacker.As you can see below the full version of Malwarebytes would have protected you against the playZone Home hijacker. It would have blocked the traffic to their domain: Technical details for expertsPossible signs in a FRST log: CHR NewTab: Default -> Active:"chrome-extension://pbnomdmkbldkihfmneeaookohgjflgfi/index.html" CHR Extension: (playZone Home) - C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi [2019-05-20] Significant changes made by the installers: File system details [View: All details] (Selection) --------------------------------------------------- Adds the folder C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0 Adds the file index.html"="7/31/2017 9:39 AM, 6244 bytes, A Adds the file manifest.json"="5/20/2019 10:31 AM, 1399 bytes, A Adds the folder C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\_metadata Adds the file computed_hashes.json"="5/20/2019 10:31 AM, 28903 bytes, A Adds the file verified_contents.json"="8/30/2017 2:29 PM, 8145 bytes, A Adds the folder C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\css Adds the file ABEAKRG.TTF"="7/27/2017 11:21 AM, 40032 bytes, A Adds the file font-awesome.min.css"="7/31/2017 9:39 AM, 17783 bytes, A Adds the file main.css"="8/10/2017 10:50 AM, 25814 bytes, A Adds the file PumaSideBar.css"="7/31/2017 9:39 AM, 8045 bytes, A Adds the folder C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\css\default Adds the file PumaSideBar.css"="7/31/2017 9:39 AM, 8045 bytes, A Adds the file PumaSideBar.min.css"="7/31/2017 9:39 AM, 5842 bytes, A Adds the folder C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\fonts Adds the file FontAwesome.otf"="7/31/2017 9:39 AM, 62856 bytes, A Adds the file fontawesome-webfont.eot"="7/31/2017 9:39 AM, 38205 bytes, A Adds the file fontawesome-webfont.svg"="7/31/2017 9:39 AM, 202561 bytes, A Adds the file fontawesome-webfont.ttf"="7/31/2017 9:39 AM, 80652 bytes, A Adds the file fontawesome-webfont.woff"="7/31/2017 9:39 AM, 44432 bytes, A Adds the folder C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\imgs Adds the file arrow.png"="7/27/2017 11:21 AM, 297 bytes, A Adds the file close-icon.png"="7/27/2017 11:21 AM, 327 bytes, A Adds the file def4.jpg"="7/27/2017 11:21 AM, 2351 bytes, A Adds the file featured-play.png"="7/27/2017 11:21 AM, 1786 bytes, A Adds the file in-favorites.png"="7/27/2017 11:21 AM, 1427 bytes, A Adds the file logo_search.png"="7/27/2017 11:21 AM, 24958 bytes, A Adds the file out-of-favorites.png"="7/27/2017 11:21 AM, 1464 bytes, A Adds the folder C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\imgs\icons Adds the file 356889-200.png"="7/31/2017 9:39 AM, 1810 bytes, A Adds the file icon128.png"="5/20/2019 10:31 AM, 10513 bytes, A Adds the file icon16.png"="5/20/2019 10:31 AM, 558 bytes, A Adds the file icon38.png"="5/20/2019 10:31 AM, 1811 bytes, A Adds the folder C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\imgs\sprite Adds the file css_sprites.png"="7/27/2017 11:21 AM, 4580 bytes, A Adds the folder C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\js Adds the file auto_complete.js"="8/9/2017 2:53 PM, 3361 bytes, A Adds the file background.js"="8/30/2017 4:42 PM, 9819 bytes, A Adds the file bootstrap.min.js"="7/27/2017 11:21 AM, 35607 bytes, A Adds the file content.js"="8/30/2017 3:37 PM, 56290 bytes, A Adds the file jquery.min.js"="7/27/2017 11:21 AM, 93104 bytes, A Adds the file jqueryui.min.js"="7/27/2017 11:21 AM, 228013 bytes, A Adds the file main.js"="7/27/2017 11:21 AM, 163 bytes, A Adds the file offers.js"="7/27/2017 11:21 AM, 2365 bytes, A Adds the file offersgames.js"="7/27/2017 11:21 AM, 2346 bytes, A Adds the file offersmusic.js"="7/27/2017 11:21 AM, 2293 bytes, A Adds the file PumaSideBar.js"="8/9/2017 4:19 PM, 69197 bytes, A Adds the file savetodisk.js"="7/27/2017 11:21 AM, 9201 bytes, A Adds the file settings.json"="7/27/2017 11:21 AM, 3839 bytes, A Adds the folder C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\json Adds the file artists.json"="7/27/2017 11:21 AM, 36037 bytes, A Adds the file games.json"="8/8/2017 2:41 PM, 68429 bytes, A Adds the file movie.json"="7/27/2017 11:21 AM, 4200 bytes, A Adds the folder C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\weather Adds the file weatherwidget.js"="7/27/2017 11:21 AM, 136748 bytes, A Adds the folder C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\weather\css Adds the file weatherwidget.css"="7/27/2017 11:21 AM, 47773 bytes, A Adds the folder C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\weather\fonts Adds the file glyphicons-halflings-regular.eot"="7/27/2017 11:21 AM, 20127 bytes, A Adds the file glyphicons-halflings-regular.svg"="7/27/2017 11:21 AM, 109025 bytes, A Adds the file glyphicons-halflings-regular.ttf"="7/27/2017 11:21 AM, 45404 bytes, A Adds the file glyphicons-halflings-regular.woff"="7/27/2017 11:21 AM, 23424 bytes, A Adds the file glyphicons-halflings-regular.woff2"="7/27/2017 11:21 AM, 18028 bytes, A Adds the file weathericons-regular-webfont.eot"="7/27/2017 11:21 AM, 99774 bytes, A Adds the file weathericons-regular-webfont.svg"="7/27/2017 11:21 AM, 185225 bytes, A Adds the file weathericons-regular-webfont.ttf"="7/27/2017 11:21 AM, 99564 bytes, A Adds the file weathericons-regular-webfont.woff"="7/27/2017 11:21 AM, 56468 bytes, A Adds the file weathericons-regular-webfont.woff2"="7/27/2017 11:21 AM, 44720 bytes, A Adds the folder C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\weather\img Adds the file icn_find.png"="7/27/2017 11:21 AM, 288 bytes, A Adds the file img_spinner.gif"="7/27/2017 11:21 AM, 847 bytes, A Registry details [View: All details] (Selection) ------------------------------------------------ [HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings] "pbnomdmkbldkihfmneeaookohgjflgfi"="REG_SZ", "C7987D0B84EC7D91D2C9B7D8267DC08067E39F52B67131BB2630A6C89AF49A74" The Malwarebytes scan log: Malwarebytes www.malwarebytes.com -Log Details- Scan Date: 5/20/19 Scan Time: 10:46 AM Log File: bdc58164-7adb-11e9-abf1-00ffdcc6fdfc.json -Software Information- Version: 3.7.1.2839 Components Version: 1.0.586 Update Package Version: 1.0.10674 License: Premium -System Information- OS: Windows 7 Service Pack 1 CPU: x64 File System: NTFS User: {computername}\{username} -Scan Summary- Scan Type: Threat Scan Scan Initiated By: Manual Result: Completed Objects Scanned: 236257 Threats Detected: 75 Threats Quarantined: 75 Time Elapsed: 8 min, 24 sec -Scan Options- Memory: Enabled Startup: Enabled Filesystem: Enabled Archives: Enabled Rootkits: Enabled Heuristics: Enabled PUP: Detect PUM: Detect -Scan Details- Process: 0 (No malicious items detected) Module: 0 (No malicious items detected) Registry Key: 0 (No malicious items detected) Registry Value: 1 PUP.Optional.Movix.Generic, HKCU\SOFTWARE\GOOGLE\CHROME\PREFERENCEMACS\Default\extensions.settings|pbnomdmkbldkihfmneeaookohgjflgfi, Quarantined, [14658], [480150],1.0.10674 Registry Data: 0 (No malicious items detected) Data Stream: 0 (No malicious items detected) Folder: 15 PUP.Optional.Movix.Generic, C:\USERS\{username}\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi, Quarantined, [14658], [480150],1.0.10674 PUP.Optional.Movix.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\weather\fonts, Quarantined, [14658], [480150],1.0.10674 PUP.Optional.Movix.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\css\default, Quarantined, [14658], [480150],1.0.10674 PUP.Optional.Movix.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\imgs\sprite, Quarantined, [14658], [480150],1.0.10674 PUP.Optional.Movix.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\weather\css, Quarantined, [14658], [480150],1.0.10674 PUP.Optional.Movix.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\weather\img, Quarantined, [14658], [480150],1.0.10674 PUP.Optional.Movix.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\imgs\icons, Quarantined, [14658], [480150],1.0.10674 PUP.Optional.Movix.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\_metadata, Quarantined, [14658], [480150],1.0.10674 PUP.Optional.Movix.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\weather, Quarantined, [14658], [480150],1.0.10674 PUP.Optional.Movix.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\fonts, Quarantined, [14658], [480150],1.0.10674 PUP.Optional.Movix.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\imgs, Quarantined, [14658], [480150],1.0.10674 PUP.Optional.Movix.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\json, Quarantined, [14658], [480150],1.0.10674 PUP.Optional.Movix.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\css, Quarantined, [14658], [480150],1.0.10674 PUP.Optional.Movix.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\js, Quarantined, [14658], [480150],1.0.10674 PUP.Optional.Movix.Generic, C:\USERS\{username}\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\EXTENSIONS\PBNOMDMKBLDKIHFMNEEAOOKOHGJFLGFI\1.0.0_0, Quarantined, [14658], [480150],1.0.10674 File: 59 PUP.Optional.Movix.Generic, C:\USERS\{username}\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Secure Preferences, Replaced, [14658], [480150],1.0.10674 PUP.Optional.Movix.Generic, C:\USERS\{username}\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Preferences, Replaced, [14658], [480150],1.0.10674 PUP.Optional.Movix.Generic, C:\USERS\{username}\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\EXTENSIONS\PBNOMDMKBLDKIHFMNEEAOOKOHGJFLGFI\1.0.0_0\JSON\MOVIE.JSON, Quarantined, [14658], [480150],1.0.10674 PUP.Optional.Movix.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\css\default\PumaSideBar.css, Quarantined, [14658], [480150],1.0.10674 PUP.Optional.Movix.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\css\default\PumaSideBar.min.css, Quarantined, [14658], [480150],1.0.10674 PUP.Optional.Movix.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\css\ABEAKRG.TTF, Quarantined, [14658], [480150],1.0.10674 PUP.Optional.Movix.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\css\font-awesome.min.css, Quarantined, [14658], [480150],1.0.10674 PUP.Optional.Movix.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\css\main.css, Quarantined, [14658], [480150],1.0.10674 PUP.Optional.Movix.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\css\PumaSideBar.css, Quarantined, [14658], [480150],1.0.10674 PUP.Optional.Movix.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\fonts\fontawesome-webfont.eot, Quarantined, [14658], [480150],1.0.10674 PUP.Optional.Movix.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\fonts\fontawesome-webfont.svg, Quarantined, [14658], [480150],1.0.10674 PUP.Optional.Movix.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\fonts\fontawesome-webfont.ttf, Quarantined, [14658], [480150],1.0.10674 PUP.Optional.Movix.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\fonts\fontawesome-webfont.woff, Quarantined, [14658], [480150],1.0.10674 PUP.Optional.Movix.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\fonts\FontAwesome.otf, Quarantined, [14658], [480150],1.0.10674 PUP.Optional.Movix.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\imgs\icons\356889-200.png, Quarantined, [14658], [480150],1.0.10674 PUP.Optional.Movix.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\imgs\icons\icon128.png, Quarantined, [14658], [480150],1.0.10674 PUP.Optional.Movix.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\imgs\icons\icon16.png, Quarantined, [14658], [480150],1.0.10674 PUP.Optional.Movix.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\imgs\icons\icon38.png, Quarantined, [14658], [480150],1.0.10674 PUP.Optional.Movix.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\imgs\sprite\css_sprites.png, Quarantined, [14658], [480150],1.0.10674 PUP.Optional.Movix.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\imgs\arrow.png, Quarantined, [14658], [480150],1.0.10674 PUP.Optional.Movix.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\imgs\close-icon.png, Quarantined, [14658], [480150],1.0.10674 PUP.Optional.Movix.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\imgs\def4.jpg, Quarantined, [14658], [480150],1.0.10674 PUP.Optional.Movix.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\imgs\featured-play.png, Quarantined, [14658], [480150],1.0.10674 PUP.Optional.Movix.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\imgs\in-favorites.png, Quarantined, [14658], [480150],1.0.10674 PUP.Optional.Movix.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\imgs\logo_search.png, Quarantined, [14658], [480150],1.0.10674 PUP.Optional.Movix.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\imgs\out-of-favorites.png, Quarantined, [14658], [480150],1.0.10674 PUP.Optional.Movix.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\js\auto_complete.js, Quarantined, [14658], [480150],1.0.10674 PUP.Optional.Movix.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\js\background.js, Quarantined, [14658], [480150],1.0.10674 PUP.Optional.Movix.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\js\bootstrap.min.js, Quarantined, [14658], [480150],1.0.10674 PUP.Optional.Movix.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\js\content.js, Quarantined, [14658], [480150],1.0.10674 PUP.Optional.Movix.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\js\jquery.min.js, Quarantined, [14658], [480150],1.0.10674 PUP.Optional.Movix.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\js\jqueryui.min.js, Quarantined, [14658], [480150],1.0.10674 PUP.Optional.Movix.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\js\main.js, Quarantined, [14658], [480150],1.0.10674 PUP.Optional.Movix.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\js\offers.js, Quarantined, [14658], [480150],1.0.10674 PUP.Optional.Movix.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\js\offersgames.js, Quarantined, [14658], [480150],1.0.10674 PUP.Optional.Movix.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\js\offersmusic.js, Quarantined, [14658], [480150],1.0.10674 PUP.Optional.Movix.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\js\PumaSideBar.js, Quarantined, [14658], [480150],1.0.10674 PUP.Optional.Movix.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\js\savetodisk.js, Quarantined, [14658], [480150],1.0.10674 PUP.Optional.Movix.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\js\settings.json, Quarantined, [14658], [480150],1.0.10674 PUP.Optional.Movix.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\json\artists.json, Quarantined, [14658], [480150],1.0.10674 PUP.Optional.Movix.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\json\games.json, Quarantined, [14658], [480150],1.0.10674 PUP.Optional.Movix.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\weather\css\weatherwidget.css, Quarantined, [14658], [480150],1.0.10674 PUP.Optional.Movix.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\weather\fonts\glyphicons-halflings-regular.eot, Quarantined, [14658], [480150],1.0.10674 PUP.Optional.Movix.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\weather\fonts\glyphicons-halflings-regular.svg, Quarantined, [14658], [480150],1.0.10674 PUP.Optional.Movix.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\weather\fonts\glyphicons-halflings-regular.ttf, Quarantined, [14658], [480150],1.0.10674 PUP.Optional.Movix.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\weather\fonts\glyphicons-halflings-regular.woff, Quarantined, [14658], [480150],1.0.10674 PUP.Optional.Movix.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\weather\fonts\glyphicons-halflings-regular.woff2, Quarantined, [14658], [480150],1.0.10674 PUP.Optional.Movix.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\weather\fonts\weathericons-regular-webfont.eot, Quarantined, [14658], [480150],1.0.10674 PUP.Optional.Movix.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\weather\fonts\weathericons-regular-webfont.svg, Quarantined, [14658], [480150],1.0.10674 PUP.Optional.Movix.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\weather\fonts\weathericons-regular-webfont.ttf, Quarantined, [14658], [480150],1.0.10674 PUP.Optional.Movix.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\weather\fonts\weathericons-regular-webfont.woff, Quarantined, [14658], [480150],1.0.10674 PUP.Optional.Movix.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\weather\fonts\weathericons-regular-webfont.woff2, Quarantined, [14658], [480150],1.0.10674 PUP.Optional.Movix.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\weather\img\icn_find.png, Quarantined, [14658], [480150],1.0.10674 PUP.Optional.Movix.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\weather\img\img_spinner.gif, Quarantined, [14658], [480150],1.0.10674 PUP.Optional.Movix.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\weather\weatherwidget.js, Quarantined, [14658], [480150],1.0.10674 PUP.Optional.Movix.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\_metadata\computed_hashes.json, Quarantined, [14658], [480150],1.0.10674 PUP.Optional.Movix.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\_metadata\verified_contents.json, Quarantined, [14658], [480150],1.0.10674 PUP.Optional.Movix.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\index.html, Quarantined, [14658], [480150],1.0.10674 PUP.Optional.Movix.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbnomdmkbldkihfmneeaookohgjflgfi\1.0.0_0\manifest.json, Quarantined, [14658], [480150],1.0.10674 Physical Sector: 0 (No malicious items detected) WMI: 0 (No malicious items detected) (end) As mentioned before the full version of Malwarebytes could have protected your computer against this threat.We use different ways of protecting your computer(s): Dynamically Blocks Malware Sites & Servers Malware Execution Prevention Save yourself the hassle and get protected.
  3. With Malwarebytes i'm not just getting adsense ads but even intrusive ads that don't have those [x] to close them. Before app version 1.4 every ad was blocked but now no ad gets blocked for me. Opting out of adsense requires cross site tracking to be turned off in safari settings and must remain off according to the website and I for one don't like to be tracked. Currently the reputable adblocker i'm using blocks every ad even those from adsense as a good adblocker should. If adblockers you used showed them then they weren't that good. I'll give malwarebytes another try in the future when they get this fixed
  4. There's a very useful free app available from d7x Tech that can be helpful in taking the stress out of booting into Safe Mode - well worth a look. https://www.d7xtech.com/free-software/bootsafe/
  5. Today
  6. Thanks, the block will be reviewed.
  7. There are a lot of phishing domains on that IP - https://www.virustotal.com/#/ip-address/185.141.25.242
  8. Seems that they are sharing the same IP.
  9. Hi there, ever since a suspicious inbound connection was blocked yesterday I've been receiving suspicious outgoing connections. I've run a custom scan of my entire PC using malwarebytes premium and it didn't find anything. I've attached 3 examples of the outgoing connections, and the FRST, Addition and exported threat scan .txt files. I'm not sure how to fix this if malwarebytes can't find the problem. Any help would be appreciated, Thanks in advance. FRST.txt Addition.txt Threat Scan.txt Event 1.txt Event 2.txt Event 3.txt
  10. Sorry you've been scammed but I would have thought the price of 2.42€ would have raised some questions about it perhaps being genuine? Even if the key was successfully used to install the software, it was merely a clone of a genuine key and so Malwarebytes won't recognise it as legitimate.
  11. @MAXBAR1 Does it happen even though you exclude our application from battery optimization?
  12. Hello Liquid Tension, Thank you for your reply. For the elaboration part, it is spontaneously double clicking on the left and right buttons, mostly double clicks, for example if I right clicked to activate the cursor in a box to type it would highlight an entire page as if I was wanting to copy text. If I click the cursor mid sentence to correct a typo instead of the cursor moving to where the point is it again highlights an entire page. It happen in the internet and when opening files/folders. I do not have another mouse to test but I have been using this mouse on another PC and I am not getting this double clicking problem on that PC. I assumed it to be some kind of infection since my machine had started lagging on booting up, and programs have started taking a long time to open. As I mentioned in my first post that I've had a malware or virus like this before in the past and when this problem occured last week, I was reading something on the internet and suddenly a tab opened up on it's own and a file downloaded to my pc, it downloaded so fast that I had no chance to cancel it, but I just moved it to the trash. I had to close my browser down because the tab that opened itself creating a download caused my entire browsers to freeze up, but you seem to read in my logs I have no infection?
  13. Glad we could help. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this topic with your request. This applies only to the originator of this thread. Other members who need assistance please start your own topic in a new thread. Thanks
  14. Glad we could help. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this topic with your request. This applies only to the originator of this thread. Other members who need assistance please start your own topic in a new thread. Thanks
  15. Glad we could help. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this topic with your request. This applies only to the originator of this thread. Other members who need assistance please start your own topic in a new thread. Thanks
  16. Glad we could help. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this topic with your request. This applies only to the originator of this thread. Other members who need assistance please start your own topic in a new thread. Thanks
  17. If you're running Windows 10 Home version then it does not come with BitLocker. Windows 10 Pro and Enterprise do and yes it might be easier if you do temporarily disable BitLocker if you have the Pro version. https://www.anandtech.com/show/9413/windows-10-editions-compared
  18. Excellent, you're very welcome. I'm glad you were able to get the problem resolved and that Malwarebytes is back up and running on your new install. If there is anything else you need our help with please don't hesitate to ask.
  19. Thanks. It looks like this was fixed before already.
  20. After these few days of use everything seemed fine until today the system tray icon didnt appear
  21. Thanks exile360 I followed your instructions and since I have program installed on two different computers, I used the email I purchased for the one in question as you instructed and found the registered Malwarebytes and deactivated it. That fixed the problem, I clicked activate and it took my old license information and the program is now been activated to Premium. Again thank you so much for the assistance.
  22. Unrelated to the freeze issue, I found out PCAPro was installed accidentally by my kid on her account only. That explains why I didn't see it under Settings/Apps as Admin at the first place.
  23. I tried Clean and Reinstall tonight. It froze for ~10 seconds during the last step of reinstall ! After the installation, I started a manual scan from the dashboard, and it froze during Check for Updates for ~10 seconds. The after the scan was completed, it froze while I was getting back to the browser pages. All 3 freezing incidents happened within 10 minutes... I was able to reproduce the freezing 100% of the time by forcing a manual scan and all of them freeze at either "Check for Updates" or "Prescan Operation" stages. After changing the settings to "Never register Malwarebytes in the Windows Action Center", I was able to run manual scan one time without freeze (this is the first time that I was able to do it without a freeze), the other time with ~3 seconds freeze. So it is an improvement. However, my screen froze within 1 minute after I closed the scan summary dialog for a duration of 3~10 seconds. So my conclusion is that the setting change helped but not completely resolved the issue. Attached is a new log file since Clean and Reinstall. This particular computer is a new HP Envy desktop purchased in February. By the way, I didn't see PCAPro installed under Settings/Apps, is the log file saying it is installed? mbst-grab-results.zip
  24. Greetings, I would recommend signing up for an account at My.Malwarebytes.com using, if possible, the same email address you used when you originally purchased your license (this makes synchronizing your license key to your account much easier) and then using the available options there to deactivate any past installation/device to free up your license once more so that you may activate the software with your license key. Instructions on signing up can be found in this support article and additional information on how to deactivate your past installation/device so that you may use it on your new Windows installation can be found in this support article. Further info on how to use the My Account feature to manage your licenses and devices can be found in this support article. If you still have any trouble getting your license to work or getting it to show up in your account at My.Malwarebytes.com then please refer to the information in this support article which shows how to add an existing lifetime license key to your account. If it still won't work for some reason then please contact Malwarebytes Support directly via the form on the bottom of this page and they will reset your license key so that you may activate it on your current system/Windows installation. I hope this helps, and if there is anything else we might assist you with please let us know. Thanks
  25. My Malwarebytes Anti-Malware Pro Order reference # is 52667498. Mind you this was bought directly through Malwarebytes Corporation website and registration provide by Cleverbridge.
  1. Load more activity
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.