Jump to content

ronzie009

Members
  • Content Count

    18
  • Joined

  • Last visited

About ronzie009

  • Rank
    New Member

Recent Profile Visitors

1,181 profile views
  1. Does this mean that this file installed malware on my pc when I ran it five years ago? Malware that neither Windows Defender or MBAM can find?
  2. After a regular scheduled quick scan today, 21 installation files in my Downloads folder were flagged by MBAM as either PUPs or Malware. These files have been there for various lengths of time and never been flagged bad before. They were all originally downloaded while MBAM real time protection was running and not flagged, and I scanned every one of them with MBAM after downloading them and they were not flagged then, so I think it is extremely unlikely that they are dangerous now. I have attached the report, but due to the large number of files involved I have not attached them. 2018-10-06FalsePositives.txt
  3. Same thing here when trying to let VLC update itself. I downloaded the VLC install program from the VLC website, scanned it with MBAM which said it was OK, and manually upgraded with no problems. I think MBAM is somehow seeing the automatic upgrade process as an exploit. Here's the log from the exploit action: Malwarebytes www.malwarebytes.com -Log Details- Protection Event Date: 9/1/18 Protection Event Time: 6:38 AM Log File: 1e47ec42-add3-11e8-a0fd-001e37255085.json -Software Information- Version: 3.5.1.2522 Components Version: 1.0.421 Update Package Version: 1.0.6595 License: Premium -System Information- OS: Windows 10 (Build 17134.228) CPU: x64 File System: NTFS User: System -Exploit Details- File: 0 (No malicious items detected) Exploit: 1 Malware.Exploit.Agent.Generic, , Blocked, [0], [392684],0.0.0 -Exploit Data- Affected Application: VLC Player Protection Layer: Application Behavior Protection Protection Technique: Exploit payload process blocked File Name: D:\tmp\vlc-3.0.4-win64.exe URL: (end)
  4. Wow, just found this article about it: https://arstechnica.com/information-technology/2018/02/salon-to-ad-blockers-can-we-use-your-browser-to-mine-cryptocurrency/ They never gave me the option to turn off my adblocker, though, as the linked article above claimed they would. MBAM just started blocking it in the last day or so, as far as I can tell, but I don't go there regularly so I can't say for sure when it started. Thanks for the swift reply!
  5. MBAM blocking salon.com for riskware, program claims to be up to date, results from MBAM support tool attached. mbst-grab-results.zip
  6. VirusTotal shows MBAM as the only positive (1/67) on this file. I don't know exactly when this file was installed because the latest Windows 10 update caused the add/remove programs control panel to now show the date of the update as the install date for all applications installed at that time. Windows 10 Home version 1803 OS build 17134.1 2018-05-04_scan_report.txt rpcapd.rar
  7. My copy of MBAM claims it's current, yet I'm still seeing these blocks. Malwarebytes www.malwarebytes.com -Log Details- Protection Event Date: 11/17/17 Protection Event Time: 9:32 AM Log File: 307405b6-cba4-11e7-8ceb-001e37255085.json Administrator: Yes -Software Information- Version: 3.2.2.2029 Components Version: 1.0.212 Update Package Version: 1.0.3282 License: Premium -System Information- OS: Windows 10 (Build 16299.19) CPU: x64 File System: NTFS User: System -Blocked Website Details- Malicious Website: 1 , , Blocked, [-1], [-1],0.0.0 -Website Data- Domain: gn.symcd.com IP Address: 23.50.75.27 Port: [15502] Type: Outbound File: C:\Program Files\Mozilla Firefox\firefox.exe (end) Malwarebytes www.malwarebytes.com -Log Details- Protection Event Date: 11/17/17 Protection Event Time: 9:32 AM Log File: 30882a3c-cba4-11e7-ac33-001e37255085.json Administrator: Yes -Software Information- Version: 3.2.2.2029 Components Version: 1.0.212 Update Package Version: 1.0.3282 License: Premium -System Information- OS: Windows 10 (Build 16299.19) CPU: x64 File System: NTFS User: System -Blocked Website Details- Malicious Website: 1 , , Blocked, [-1], [-1],0.0.0 -Website Data- Domain: gn.symcd.com IP Address: 23.50.75.27 Port: [15502] Type: Outbound File: C:\Program Files\Mozilla Firefox\firefox.exe (end) Malwarebytes www.malwarebytes.com -Log Details- Protection Event Date: 11/17/17 Protection Event Time: 9:37 AM Log File: dc32fab0-cba4-11e7-93f2-001e37255085.json Administrator: Yes -Software Information- Version: 3.2.2.2029 Components Version: 1.0.212 Update Package Version: 1.0.3282 License: Premium -System Information- OS: Windows 10 (Build 16299.19) CPU: x64 File System: NTFS User: System -Blocked Website Details- Malicious Website: 1 , , Blocked, [-1], [-1],0.0.0 -Website Data- Domain: ss.symcd.com IP Address: 23.54.187.27 Port: [15631] Type: Outbound File: C:\Program Files (x86)\Internet Explorer\iexplore.exe (end)
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.