amccombs

I think I already did Step 01 Score: Malwarebytes: 1 AdwCleaner: 88 AdwCleaner found 88 issues and one of them was not the same as the one that Malwarebytes found; disappointing. the AdwCleaner seems to have fixed the issue. Thank you.

same results

I have had to Quarantine this registry entry everyday for three weeks and getting tired of it. The registry entry gets restored when Chrome starts. I close Chrome open regedit and navigate to the entry click Quarantine refresh regedit and verify that they entry disappeared I start Chrome refresh regedit and verify that they entry being created Malwarebytes www.malwarebytes.com -Log Details- Scan Date: 12/30/21 Scan Time: 2:43 AM Log File: 36e09008-6944-11ec-bcb6-48022a39491f.json -Software Information- Version: 4.5.0.152 Components Version: 1.0.1538 Update Package Version: 1.0.49176 License: Premium -System Information- OS: Windows 7 Service Pack 1 CPU: x64 File System: NTFS User: System -Scan Summary- Scan Type: Threat Scan Scan Initiated By: Scheduler Result: Completed Objects Scanned: 522824 Threats Detected: 1 Threats Quarantined: 0 Time Elapsed: 1 hr, 13 min, 58 sec -Scan Options- Memory: Enabled Startup: Enabled Filesystem: Enabled Archives: Enabled Rootkits: Disabled Heuristics: Enabled PUP: Detect PUM: Detect -Scan Details- Process: 0 (No malicious items detected) Module: 0 (No malicious items detected) Registry Key: 0 (No malicious items detected) Registry Value: 1 PUP.Optional.TorrentSearch, HKU\S-1-5-21-2738660862-2923674759-3310874622-1001\SOFTWARE\GOOGLE\CHROME\PREFERENCEMACS\DEFAULT\EXTENSIONS.SETTINGS|AFBPDHICLGGHNFFHKINJIKGLGMOLHPEE, No Action By User, 754, 998886, 1.0.49176, , ame, , , Registry Data: 0 (No malicious items detected) Data Stream: 0 (No malicious items detected) Folder: 0 (No malicious items detected) File: 0 (No malicious items detected) Physical Sector: 0 (No malicious items detected) WMI: 0 (No malicious items detected) (end)

The Google Drive program was not running in previous results; I stopped using it when google drive and google photo's split.

Copied to C:\Windows\Temp. Enabled event logging, then the system scan did not find any issues with the .jpg files. Then disabled event logging, ran again, but it couldn't reproduce the previous results. I see that it's skipping the files now. 11/19/21 " 11:56:05.297" 800831336 32ac 236c DEBUG ScanControllerImpl mb::scancontrollerimpl::Scanner::ScanFileImpl "scanner.cpp" 3468 "Failed to read file. skipping it. FilePath = C:\USERS\ALLAN MCCOMBS\GOOGLE DRIVE\GOOGLE PHOTOS\IMGP2062.JPG." logs.7z

I didn't have a malwarebytes menu item, so I had to scan the whole computer. So of course it's going to pick different files. Maybe it's Google Drive, as I copied the file to c:\temp\malwarebytes folder but it did not find it. Google Drive is not running in Task Manager. Malwarebytes www.malwarebytes.com -Log Details- Scan Date: 11/17/21 Scan Time: 5:32 PM Log File: 3b2e3b5c-47f6-11ec-8976-48022a39491f.json -Software Information- Version: 4.4.10.144 Components Version: 1.0.1499 Update Package Version: 1.0.47301 License: Premium -System Information- OS: Windows 7 Service Pack 1 CPU: x64 File System: NTFS User: AllanMcCombs-PC\Allan McCombs -Scan Summary- Scan Type: Threat Scan Scan Initiated By: Manual Result: Completed Objects Scanned: 520290 Threats Detected: 5 Threats Quarantined: 0 Time Elapsed: 32 min, 47 sec -Scan Options- Memory: Enabled Startup: Enabled Filesystem: Enabled Archives: Enabled Rootkits: Disabled Heuristics: Enabled PUP: Detect PUM: Detect -Scan Details- Process: 0 (No malicious items detected) Module: 0 (No malicious items detected) Registry Key: 0 (No malicious items detected) Registry Value: 0 (No malicious items detected) Registry Data: 0 (No malicious items detected) Data Stream: 0 (No malicious items detected) Folder: 0 (No malicious items detected) File: 5 RiskWare.ExtensionMismatch, C:\USERS\ALLAN MCCOMBS\GOOGLE DRIVE\GOOGLE PHOTOS\JPEG_20_20181101_184528.JPG, No Action By User, 11513, 79314, 1.0.47301, , ame, , 535E3DB536054CF567FB57C113A4FFA2, 41324AC4C430A93C8914C18A7A0CC2EEC9649DF6D91BD0113DA5F31908D486D2 RiskWare.ExtensionMismatch, C:\USERS\ALLAN MCCOMBS\GOOGLE DRIVE\GOOGLE PHOTOS\0915172358.JPG, No Action By User, 11513, 79314, 1.0.47301, , ame, , 2533D03AA0BF6328599D42115E464157, ED5431CFA781ACB0DC3FB89DAAD71EFBDC740E4D9B715AF8B5D0B4CDB06C6DB2 RiskWare.ExtensionMismatch, C:\USERS\ALLAN MCCOMBS\GOOGLE DRIVE\GOOGLE PHOTOS\JPEG_22_20181101_184503.JPG, No Action By User, 11513, 79314, 1.0.47301, , ame, , 0464CAE04B6E643127286926DC1724E2, BA3829A1041A445255BD5572E230C7882E3483750BEDD8ECF4AA41B9A8D863FD RiskWare.ExtensionMismatch, C:\USERS\ALLAN MCCOMBS\GOOGLE DRIVE\GOOGLE PHOTOS\IMG_20170804_232502.JPG, No Action By User, 11513, 79314, 1.0.47301, , ame, , DBDA60D92E774B4ACB3B1CD71F909426, 56A59DAE638D9BB45CE729A5D6FDFB0ECBE88B37047E4D6D20DBDEF1FC90BD72 RiskWare.ExtensionMismatch, C:\USERS\ALLAN MCCOMBS\GOOGLE DRIVE\GOOGLE PHOTOS\IMG_20190210_202721.JPG, No Action By User, 11513, 79314, 1.0.47301, , ame, , 0B8D740C2178315BCB1B71F47041B75A, F29203E47A0574EF4C009EC777DCF861053EF5CAADB4FA968BC9E25D98B36CE3 Physical Sector: 0 (No malicious items detected) WMI: 0 (No malicious items detected) RiskWare.ExtensionMismatch, C:\USERS\ALLAN MCCOMBS\GOOGLE DRIVE\GOOGLE PHOTOS\0915172358.JPG, No Action By User, 11513, 79314, 1.0.47301, , ame, , 2533D03AA0BF6328599D42115E464157, ED5431CFA781ACB0DC3FB89DAAD71EFBDC740E4D9B715AF8B5D0B4CDB06C6DB2 (end)

Looks like a photo to me. RiskWare.ExtensionMismatch, C:\USERS\ALLAN MCCOMBS\GOOGLE DRIVE\GOOGLE PHOTOS\20181201_132549.JPG, No Action By User, 11509, 79314, 1.0.47245, , ame, , EB9758F30DB51C2F246E83ADC290D5E6,

photos taken with Google Pixel 2, is there a program that will fix the extensions so that there isn't a mismatch? Malwarebytes www.malwarebytes.com -Log Details- Scan Date: 11/16/21 Scan Time: 2:43 AM Log File: ecad7204-46b0-11ec-97ad-48022a39491f.json -Software Information- Version: 4.4.10.144 Components Version: 1.0.1499 Update Package Version: 1.0.47245 License: Premium -System Information- OS: Windows 7 Service Pack 1 CPU: x64 File System: NTFS User: System -Scan Summary- Scan Type: Threat Scan Scan Initiated By: Scheduler Result: Completed Objects Scanned: 519883 Threats Detected: 12 Threats Quarantined: 0 Time Elapsed: 1 hr, 18 min, 5 sec -Scan Options- Memory: Enabled Startup: Enabled Filesystem: Enabled Archives: Enabled Rootkits: Disabled Heuristics: Enabled PUP: Detect PUM: Detect -Scan Details- Process: 0 (No malicious items detected) Module: 0 (No malicious items detected) Registry Key: 0 (No malicious items detected) Registry Value: 0 (No malicious items detected) Registry Data: 0 (No malicious items detected) Data Stream: 0 (No malicious items detected) Folder: 0 (No malicious items detected) File: 12 RiskWare.ExtensionMismatch, C:\USERS\ALLAN MCCOMBS\GOOGLE DRIVE\GOOGLE PHOTOS\20181201_132549.JPG, No Action By User, 11509, 79314, 1.0.47245, , ame, , EB9758F30DB51C2F246E83ADC290D5E6, C0EACFFD7B53D8CCDEDE570DFE8EB64D28E7C9336283FBEC05CF760078F33A30 RiskWare.ExtensionMismatch, C:\USERS\ALLAN MCCOMBS\GOOGLE DRIVE\GOOGLE PHOTOS\IMG_0035.JPG, No Action By User, 11509, 79314, 1.0.47245, , ame, , 47DAA5FF28E8B7BAB950DE4831119C67, 748CDAC6EB39AE99AD1668DB27536D24E18DD2AA924B1F45821C897F841F8648 RiskWare.ExtensionMismatch, C:\USERS\ALLAN MCCOMBS\GOOGLE DRIVE\GOOGLE PHOTOS\IMG_20180510_202718.JPG, No Action By User, 11509, 79314, 1.0.47245, , ame, , AB42C1D467C0FDF0D2218A7CF2C4F407, 2F3BD90D2B04E784167F24D97411BEE9D01F9DAE2213AE329E7E6B64D833E0C4 RiskWare.ExtensionMismatch, C:\USERS\ALLAN MCCOMBS\GOOGLE DRIVE\GOOGLE PHOTOS\IMG_20190516_155725.JPG, No Action By User, 11509, 79314, 1.0.47245, , ame, , 0A9DE739C10EF46D33101CDA12CDC8F4, 19CA2BF9C07CB4198FA70E2639494B7C65CD1EDC326956BE24B55514673E3796 RiskWare.ExtensionMismatch, C:\USERS\ALLAN MCCOMBS\GOOGLE DRIVE\GOOGLE PHOTOS\JPEG_20_20181101_184528_THUMBNAIL.JPG, No Action By User, 11509, 79314, 1.0.47245, , ame, , D1DB1EFB69C3B84D0A5302EC3B555916, 108E49621434F674FA70ED0143CD94EA060185BDA5A7563E72C58C368D9A680F RiskWare.ExtensionMismatch, C:\USERS\ALLAN MCCOMBS\GOOGLE DRIVE\GOOGLE PHOTOS\JPEG_21_20181002_1838_THUMBNAIL.JPG, No Action By User, 11509, 79314, 1.0.47245, , ame, , 951EE189D02C536D539111A8EB5CF249, 0C9321A8EF32784C8943F5FAE521EE46C611AFD715B7331A8D7A6D424A57F911 RiskWare.ExtensionMismatch, C:\USERS\ALLAN MCCOMBS\GOOGLE DRIVE\GOOGLE PHOTOS\JPEG_23_20181008_1925.JPG, No Action By User, 11509, 79314, 1.0.47245, , ame, , D0BB8852220543A7BF366BC588813F10, 9AED49AB860AA26C6D2F595C4F578FDC4C82855F32CDB7F25645F09C9D5B4767 RiskWare.ExtensionMismatch, C:\USERS\ALLAN MCCOMBS\GOOGLE DRIVE\GOOGLE PHOTOS\JPEG_23_20181008_1925_THUMBNAIL.JPG, No Action By User, 11509, 79314, 1.0.47245, , ame, , 2956C1F68B6C75AB128CAECA4BE6712B, 6C4338CD71986E5D95D218EEED800C7FA5D397F1A47514CA3D655C4A56A37541 RiskWare.ExtensionMismatch, C:\USERS\ALLAN MCCOMBS\GOOGLE DRIVE\GOOGLE PHOTOS\JPEG_25_20181025_204141_THUMBNAIL.JPG, No Action By User, 11509, 79314, 1.0.47245, , ame, , 05957A02F6C1377F6F4F312EBA06605A, 4F988CC25D40C351A0AE1370F20E2C4A5269CB701F9EF24E4AD9A7153545B79E RiskWare.ExtensionMismatch, C:\USERS\ALLAN MCCOMBS\GOOGLE DRIVE\GOOGLE PHOTOS\JPEG_25_20190318_110653_THUMBNAIL (1).JPG, No Action By User, 11509, 79314, 1.0.47245, , ame, , 19DA848116EA2BAFD9D04EE5280C0B2C, BF837405A0C00457BB15ED354E8F107BBB783079FC25F38A1C078A0ACA57D3AD RiskWare.ExtensionMismatch, C:\USERS\ALLAN MCCOMBS\GOOGLE DRIVE\GOOGLE PHOTOS\JPEG_25_20190502_200921_THUMBNAIL.JPG, No Action By User, 11509, 79314, 1.0.47245, , ame, , E9C7521CB548C6B266ACAE0744529488, 3BDCF735CDD62B88825B3FD826CB6C90B9A8D52F7181F38C0318C3AAC52BC270 RiskWare.ExtensionMismatch, C:\USERS\ALLAN MCCOMBS\GOOGLE DRIVE\GOOGLE PHOTOS\JPEG_29_20190418_134031.JPG, No Action By User, 11509, 79314, 1.0.47245, , ame, , 1B4350E0CDF0D308531038DE2666E1EA, 19771666CF44144AB3B3BDCD81825E7959CB3346D4F1B51EBD9E474ECB7DADCD Physical Sector: 0 (No malicious items detected) WMI: 0 (No malicious items detected) (end)

I think this is a false positive because USB-IMAGE-TOOL-1-70-EN-WIN.ZIP has been on my computer since Feb 2019 https://usb-image-tool.en.uptodown.com/windows Malwarebytes www.malwarebytes.com -Log Details- Scan Date: 10/9/21 Scan Time: 2:43 AM Log File: 3f357902-28cc-11ec-9b07-48022a39491f.json -Software Information- Version: 4.4.7.134 Components Version: 1.0.1464 Update Package Version: 1.0.45682 License: Premium -System Information- OS: Windows 7 Service Pack 1 CPU: x64 File System: NTFS User: System -Scan Summary- Scan Type: Threat Scan Scan Initiated By: Scheduler Result: Completed Objects Scanned: 531504 Threats Detected: 1 Threats Quarantined: 0 Time Elapsed: 1 hr, 9 min, 7 sec -Scan Options- Memory: Enabled Startup: Enabled Filesystem: Enabled Archives: Enabled Rootkits: Disabled Heuristics: Enabled PUP: Detect PUM: Detect -Scan Details- Process: 0 (No malicious items detected) Module: 0 (No malicious items detected) Registry Key: 0 (No malicious items detected) Registry Value: 0 (No malicious items detected) Registry Data: 0 (No malicious items detected) Data Stream: 0 (No malicious items detected) Folder: 0 (No malicious items detected) File: 1 Malware.AI.3191640762, C:\USERS\ALLAN MCCOMBS\DOWNLOADS\USB-IMAGE-TOOL-1-70-EN-WIN.ZIP, No Action By User, 1000000, 0, 1.0.45682, 9AB23338E9855135BE3C92BA, dds, 01456684, 1F54FC53FE9B3731B16297C776EA37B5, 0CAA2AE82D20CED0E71BAF711782E69934FB03199F198C366C511940570E92A9 Physical Sector: 0 (No malicious items detected) WMI: 0 (No malicious items detected) (end)

This was found during nightly scan. The instructions to report have too many steps, and they no longer fit the application (for example: there isn't a History tab, but there is a History Detections button, and clicking that there isn't any Application Logs tab to click on, which blocks the rest of the steps in the instructions). Please add a Report False Detection button. Malwarebytes www.malwarebytes.com -Log Details- Scan Date: 7/4/21 Scan Time: 2:43 AM Log File: 2d2a3b88-dc93-11eb-9321-00248c4445f8.json -Software Information- Version: 4.4.2.123 Components Version: 1.0.1358 Update Package Version: 1.0.42648 License: Premium -System Information- OS: Windows 10 (Build 19042.1052) CPU: x64 File System: NTFS User: System -Scan Summary- Scan Type: Threat Scan Scan Initiated By: Scheduler Result: Completed Objects Scanned: 607039 Threats Detected: 1 Threats Quarantined: 0 Time Elapsed: 1 hr, 1 min, 40 sec -Scan Options- Memory: Enabled Startup: Enabled Filesystem: Enabled Archives: Enabled Rootkits: Disabled Heuristics: Enabled PUP: Detect PUM: Detect -Scan Details- Process: 0 (No malicious items detected) Module: 0 (No malicious items detected) Registry Key: 0 (No malicious items detected) Registry Value: 0 (No malicious items detected) Registry Data: 0 (No malicious items detected) Data Stream: 0 (No malicious items detected) Folder: 0 (No malicious items detected) File: 1 Malware.AI.959013818, C:\USERS\ALLAN MCCOMBS\DOWNLOADS\FREEFILESYNC_11.11_WINDOWS_SETUP.EXE, No Action By User, 1000000, 0, 1.0.42648, 3AE7623578A4F804392963BA, dds, 01317912, EF0B3DC31FEC5DF03B131E5F2A65EE98, A39CF2EF2A70E0729300AB73D28890FF086B612421E4A8D28EA8B26272DB4127 Physical Sector: 0 (No malicious items detected) WMI: 0 (No malicious items detected) (end)

When I searched for it - it only appears on in the store, no one else has posted anything about it, so I exchanged it for a scale that does not have an app.

I am using Pixel2, Android 10, Malwarebytes 3.7 Free I bought a weight scale from Amazon. The scale uses an app called Fitdays (package cn.fitdays.fitdays). This app uses Bluetooth to talk with the scale to collect measurements. I found out that the app needs to have a Wi-Fi connection and the router needs internet access for the app to collect data from the scale, which seems weird, is it sending my data to somewhere in real time? I also found out that if you use their Help > Others, which is just a blank form with a 'submit' button, this will zip up a file and email it out with the text entered, although you do not need to enter text for the submit button to do something. The 'Submit' button will check for internet access before zipping a file, without internet it will complain and not zip. I know there is a zip file because when Support replies they reply with original email content that shows the file > Log Path: applog/0d7a75ca5a7ebfa46770803bdfa36b98.zip , I searched the storage and I could not find the zip file. Malwarebytes free (current app version 3.7.5.8, Malware database 2020.08.17.01, Phishing database 2020.08.18.09) does not find anything wrong with this app/or my phone. I am also concerned that this could this be new variant that Google Plays does not know about, yet. -Can this app get my passwords? -Will Real Time Protection see if it will try to get passwords?

I wanted an hour. I restored from quarantined Check for updates , it said it was already update I attempted to run again and it got quarantined

hope you meant MBAMSERVICE.LOG MBAMSERVICE.zip myMD5win.7z

I got a Malware.Heuristic.106 on a program that I wrote using Visual Studio 2017 in C#. It calculates the MD5 of a file and saves to a file with the same name with a different extension. After over an hour with the Malwarebytes tool, it gave up with "We were unable to create mbst-greab-results.zip" Is there any other diagnostic stuff that I can do to resolve this?

I have Amazon Assistant for Chrome and I don't remember Malwarebytes complaining about that, thus I am assuming this is false positive, also because installed it. Firefox shows version 77.0.1 Amazon Assistant in Firefox shows version 10.2005.6.12051 Yesterday I installed Amazon Assistant for Firefox. This shows today: Malwarebytes www.malwarebytes.com -Log Details- Scan Date: 6/29/20 Scan Time: 2:43 AM Log File: e04f2022-b9d3-11ea-9ba9-00248c4445f8.json -Software Information- Version: 4.1.0.56 Components Version: 1.0.955 Update Package Version: 1.0.26141 License: Premium -System Information- OS: Windows 10 (Build 18362.900) CPU: x64 File System: NTFS User: System -Scan Summary- Scan Type: Threat Scan Scan Initiated By: Scheduler Result: Completed Objects Scanned: 537516 Threats Detected: 1 Threats Quarantined: 0 Time Elapsed: 43 min, 12 sec -Scan Options- Memory: Enabled Startup: Enabled Filesystem: Enabled Archives: Enabled Rootkits: Disabled Heuristics: Enabled PUP: Detect PUM: Detect -Scan Details- Process: 0 (No malicious items detected) Module: 0 (No malicious items detected) Registry Key: 0 (No malicious items detected) Registry Value: 0 (No malicious items detected) Registry Data: 0 (No malicious items detected) Data Stream: 0 (No malicious items detected) Folder: 0 (No malicious items detected) File: 1 PUP.Optional.Amazon1Button, C:\USERS\ALLAN MCCOMBS\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AW546X73.DEFAULT-RELEASE-1589463550338\EXTENSIONS\ABB@AMAZON.COM.XPI, No Action By User, 3194, 493346, 1.0.26141, , ame, Physical Sector: 0 (No malicious items detected) WMI: 0 (No malicious items detected) (end)

I think these might be false as I have been using Malwarebytes for a couple of years now and the files that it's flagging are from 2014. -Thank you Malwarebytes www.malwarebytes.com -Log Details- Scan Date: 2/15/19 Scan Time: 2:43 AM Log File: 6b9a05fc-30f5-11e9-9bc0-48022a39491f.json -Software Information- Version: 3.7.1.2839 Components Version: 1.0.538 Update Package Version: 1.0.9276 License: Premium -System Information- OS: Windows 7 Service Pack 1 CPU: x64 File System: NTFS User: System -Scan Summary- Scan Type: Threat Scan Scan Initiated By: Scheduler Result: Completed Objects Scanned: 481764 Threats Detected: 10 Threats Quarantined: 0 Time Elapsed: 44 min, 23 sec -Scan Options- Memory: Enabled Startup: Enabled Filesystem: Enabled Archives: Enabled Rootkits: Disabled Heuristics: Enabled PUP: Detect PUM: Detect -Scan Details- Process: 0 (No malicious items detected) Module: 0 (No malicious items detected) Registry Key: 0 (No malicious items detected) Registry Value: 0 (No malicious items detected) Registry Data: 0 (No malicious items detected) Data Stream: 0 (No malicious items detected) Folder: 0 (No malicious items detected) File: 10 PUP.Optional.ASK.OPC, C:\USERS\ALLAN MCCOMBS\APPDATA\ROAMING\UTORRENT\UPDATES\3.4.1_30768.EXE, No Action By User, [12865], [639652],1.0.9276 PUP.Optional.ASK.OPC, C:\USERS\ALLAN MCCOMBS\APPDATA\ROAMING\UTORRENT\UPDATES\3.4.1_30946.EXE, No Action By User, [12865], [639652],1.0.9276 PUP.Optional.ASK.OPC, C:\USERS\ALLAN MCCOMBS\APPDATA\ROAMING\UTORRENT\UPDATES\3.4.1_30971.EXE, No Action By User, [12865], [639652],1.0.9276 PUP.Optional.ASK.OPC, C:\USERS\ALLAN MCCOMBS\APPDATA\ROAMING\UTORRENT\UPDATES\3.4.1_31227.EXE, No Action By User, [12865], [639652],1.0.9276 PUP.Optional.ASK.OPC, C:\USERS\ALLAN MCCOMBS\APPDATA\ROAMING\UTORRENT\UPDATES\3.4.2_33394.EXE, No Action By User, [12865], [639652],1.0.9276 PUP.Optional.ASK.OPC, C:\USERS\ALLAN MCCOMBS\APPDATA\ROAMING\UTORRENT - COPY\UPDATES\3.4.1_30768.EXE, No Action By User, [12865], [639652],1.0.9276 PUP.Optional.ASK.OPC, C:\USERS\ALLAN MCCOMBS\APPDATA\ROAMING\UTORRENT - COPY\UPDATES\3.4.1_30946.EXE, No Action By User, [12865], [639652],1.0.9276 PUP.Optional.ASK.OPC, C:\USERS\ALLAN MCCOMBS\APPDATA\ROAMING\UTORRENT - COPY\UPDATES\3.4.1_30971.EXE, No Action By User, [12865], [639652],1.0.9276 PUP.Optional.ASK.OPC, C:\USERS\ALLAN MCCOMBS\APPDATA\ROAMING\UTORRENT - COPY\UPDATES\3.4.1_31227.EXE, No Action By User, [12865], [639652],1.0.9276 PUP.Optional.ASK.OPC, C:\USERS\ALLAN MCCOMBS\APPDATA\ROAMING\UTORRENT - COPY\UPDATES\3.4.2_33394.EXE, No Action By User, [12865], [639652],1.0.9276 Physical Sector: 0 (No malicious items detected) WMI: 0 (No malicious items detected) (end)

Malwarebytes www.malwarebytes.com -Log Details- Scan Date: 11/14/18 Scan Time: 2:43 AM Log File: 034cae26-e7e1-11e8-9976-00ffc53d43f2.json -Software Information- Version: 3.6.1.2711 Components Version: 1.0.482 Update Package Version: 1.0.7833 License: Premium -System Information- OS: Windows 7 Service Pack 1 CPU: x64 File System: NTFS User: System -Scan Summary- Scan Type: Threat Scan Scan Initiated By: Scheduler Result: Completed Objects Scanned: 488570 Threats Detected: 7 Threats Quarantined: 0 Time Elapsed: 31 min, 27 sec -Scan Options- Memory: Enabled Startup: Enabled Filesystem: Enabled Archives: Enabled Rootkits: Disabled Heuristics: Enabled PUP: Detect PUM: Detect -Scan Details- Process: 0 (No malicious items detected) Module: 0 (No malicious items detected) Registry Key: 3 Trojan.Agent.Generic, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\AVG-Secure-Search-Update_JUNE2013_TB_rmv, No Action By User, [3706], [597948],1.0.7833 Trojan.Agent.Generic, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{03BB80E3-8B23-4D8B-9E77-79E4D430A4B2}, No Action By User, [3706], [597948],1.0.7833 Trojan.Agent.Generic, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\LOGON\{03BB80E3-8B23-4D8B-9E77-79E4D430A4B2}, No Action By User, [3706], [597948],1.0.7833 Registry Value: 0 (No malicious items detected) Registry Data: 0 (No malicious items detected) Data Stream: 0 (No malicious items detected) Folder: 0 (No malicious items detected) File: 4 Trojan.Agent.Generic, C:\WINDOWS\TASKS\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job, No Action By User, [3706], [597948],1.0.7833 Trojan.Agent.Generic, C:\WINDOWS\SYSTEM32\TASKS\AVG-Secure-Search-Update_JUNE2013_TB_rmv, No Action By User, [3706], [597948],1.0.7833 RiskWare.ExtensionMismatch, C:\$RECYCLE.BIN\S-1-5-21-2738660862-2923674759-3310874622-1001\$R0VIR34.JPG, No Action By User, [10494], [79311],1.0.7833 RiskWare.ExtensionMismatch, C:\$RECYCLE.BIN\S-1-5-21-2738660862-2923674759-3310874622-1001\$R297QK3.JPG, No Action By User, [10494], [79311],1.0.7833 Physical Sector: 0 (No malicious items detected) WMI: 0 (No malicious items detected) (end)

Malwarebytes 3.6.1 claims that there are threats on my system, these files are 5 years old, why are they saying Trojan.Agent.Generic unless it's false-positive? And I think the .jpg files are also false-positive for RiskWare.ExtensionMismatch, as the only .jpg in the Recycle Bin were created using my Android phone.

2 pages are blocked, here are the links, are these false positives? Download blocked due to reputation We strongly recommend you do not download this file. File blocked: blob:https://www.visualstudio.com/d117c333-d7fd-4ecd-9ca4-58ce1bee2ba9 Download blocked due to reputation We strongly recommend you do not download this file. File blocked: blob:https://www.visualstudio.com/0ebbfdd7-9f46-40bc-99c5-f39d29266549

I think I removed them. As well as manually removed cosstminn from chrome, I wonder why malwarebytes did not find that. I was wondering if anyone else had issues with the "auto" part as maybe there is a bug in it. Thanks.

Both of those are already set to that setting. Thanks.

Running 2.0.2.1012 on Windows 7 Professional The Settings/Advanced Settings has Automatically quarantine detected items. The scheduler scan found PUP.Optional.Superfish.A and PUP.Optional.Groovorio. Malwarebytes did not auto-quarantine them. I manually clicked on remove and rebooted the computer I then was able to manually update the database, because as you might know the database cannot update if there are found items. I think after the database update, that it triggered a scan and then it found PUP.Optional.AirAdInstaller again, auto-quarantine did not remove them. I manually clicked on remove and rebooted the computer

I did not reboot after the upgrade since the install did not tell me that it need to reboot to function properly. I had to reboot for a different software update, so now it works, it can scan 1 file. Thanks

Hi daledoc1 The upgrade saved my context menu during the upgrade, that's why it was a menu choice in Windows Explorer. I opened Settings -> General Settings, I clicked No, then it was not a choice in Windows Explorer, I then click Yes, click the X to close the dialog window. Then Right click on an exe in Windows Explorer, select Scan with Anti-Malware, then the Malewarebytes General Settings appears, it does not scan the file as expected.