David H. Lipman

Is the file still on your Desktop ?

You copied the file to the Desktop. If Windows Defender then detected it, it should be in the quarantine and it is removed by Windows Defender.

Thank you @H4V0C It would be "better" if that VPN dialogue on the Dashboard would/could be Collapsible if VPN is not installed.

FYI: Post ID:1619112

That's OLD ! I still have the WMV with a date of 2007. LOL

Yeah, Permanently delete the email then clear the Browser Cache.

Translated: You will have to clear the Browser cache do delete what the Browser has in it that is being detected. Note that this is not an infector. It is a Phish in email and is ONLY an issue if you fell for the Phish, like a Bank, and tried to logon and gave it your logon credentials. If this is not the case, clearing the the Browser Cache showed remove the detected content and the issue is resolved. Translated:

Accessed via a Web Browser online or via Microsoft Office Outlook software?

Yep, I just downloaded the MBAM v5 Offline Installer and installed it on two systems.

VideioLAN VLC Player does network Streaming.

@Woodhawk What Phone Number did you call?

FYI: https://www.abuseipdb.com/check/72.167.57.16

DOJ quietly removed Russian malware from routers in US homes and businesses References: https://en.wikipedia.org/wiki/Fancy_Bear https://attack.mitre.org/groups/G0007/

Again, what is needed is the fully qualified name and path to the file that was detected. It may be a nothing burger and you are over reacting. It is very important to understand malware and malicious activity because the knowledge about it will be your key in your actual prevention against it.

You posted in the Malware Removal section so it is presumed you want to remove. remediate or verify that the malware is gone. Win32/Wacatac is very generic detection and the "Why" can't be readily answered without seeing the actual log from Windows Defender. What is needed is the fully qualified name and path to the file that was detected. Malwarebytes does not apply signatures to all file types. The Paid-For version uses the Anti Exploitation which prevents the malicious activity malware may present. Thus many file types may not be detected via a Signature but what counts is the the malicious activity that file may present has been blocked. For example Windows Defender may detect a HTML Phishing file that was received in email. Malwarebytes will not, however it will block the malicious web site used by the HTML to harvest Phish'd credentials.

We're glad that we were able to assist you. The following information will help you to keep your computer and data safer as well as improve your overall privacy Recommend using a Password Manager for all websites, etc. that require a password. Never use the same password on more than one site. https://www.howtogeek.com/780233/best-password-manager/ Make sure you're backing up your files https://forums.malwarebytes.com/topic/136226-backup-software/ Keep all software up to date - PatchMyPC - https://patchmypc.com/home-updater#download https://patchmypc.com/about-us Keep your Operating System up to date and current at all times - https://support.microsoft.com/en-us/windows/windows-update-faq-8a903416-6f45-0718-f5c7-375e92dddeb2 Further tips to help protect your computer data and improve your privacy: https://forums.malwarebytes.com/topic/258363-tips-to-help-protect-from-infection/ Please consider installing the following Content Blockers for your Web browsers if you haven't done so already. This will help improve overall security Malwarebytes Browser Guard Google Chrome: https://chrome.google.com/webstore/detail/malwarebytes-browser-guar/ihcjicgdanjaechkgeegckofjjedodee Microsoft Edge: https://support.malwarebytes.com/hc/en-us/articles/4413298736787-Install-Malwarebytes-Browser-Guard-on-Microsoft-Edge-browser Mozilla Firefox: https://addons.mozilla.org/en-US/firefox/addon/malwarebytes/ uBlock Origin Google Chrome: https://chrome.google.com/webstore/detail/ublock-origin/cjpalhdlnbpafiamejdnhcphjbkeiagm Microsoft Edge: https://microsoftedge.microsoft.com/addons/detail/ublock-origin/odfafepnkmbhccpbejgmiehpchacaeak Mozilla Firefox: https://addons.mozilla.org/en-US/firefox/addon/ublock-origin Cybersecurity basics & protection Everything you need to know about cybercrime https://www.malwarebytes.com/cybersecurity Further reading if you'd like to keep up on the malware threat scene: Malwarebytes Blog https://blog.malwarebytes.com/ Hopefully, we've been able to assist you with correcting your system issues. Thank you for using Malwarebytes. Please tell your friends and family if they too need assistance with malware removal If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this topic with your request. This applies only to the originator of this thread. Other members who need assistance please start your own topic in a new thread. Please review the following to help you better protect your computer and privacy Tips to help protect from infection Thank you

False Positive declaration and that since been corrected, IP = 13.89.179.8 Please reference: One Drive - Azure showing compromised

Submit the file to Virus total for a Report. https://www.virustotal.com/gui/home/upload It will give you an indication if it is malicious or not. Example: https://www.virustotal.com/gui/file/c63687e8aaa9c40db79663ab9ae9d375e701e1b38219c4522655c3b19ab41b31/detection

All that was provided was... Malwarebytes <admin-6247581348902@dew43y5jte.logyca.com.mx> That's nothing to go by and it doesn't mean it is a Phish. That being said, it may be some entity trying to obtain monetary gain through a referral to the Malwarebytes store; store.malwarebytes.com which is legitimate. We have been seeing numerous posts and submissions of people getting spam email with FakeAlerts and Renewal notices not by Malwarebytes but in the name of Malwarebytes. I am also seeing ads pushing fake Malwarebytes License Renewal advertisements on AOL and Yahoo Webmail. References: Verify subscription renewal email is legitimate Fake renewal emails being received Malwarebytes' Blog: Software renewal scammers unmasked

TheTruthSpy stalkerware, still insecure, still leaking data Posted: February 13, 2024 by Pieter Arntz The good news is that both groups, SiegedSec and ByteMeCrew, said in a Telegram post that they are not publicly releasing the breached data, given its highly sensitive nature. They provided enough data to enable TechCrunch to verify that it is authentic though, by matching IMEI numbers (numbers that uniquely identify phones) and advertising IDs against a list of previous known-to-be compromised devices. Which means that by installing TheTruthSpy—and a whole fleet of clone apps including Copy9, MxSpy, iSpyoo, SecondClone, TheSpyApp, ExactSpy, FoneTracker and GuestSpy—you are not just spying on someone, you are also potentially exposing their data for anyone to find. The data reportedly shows that TheTruthSpy continues to actively spy on large clusters of victims across Europe, India, Indonesia, the United States, the United Kingdom and elsewhere. Sadly, this is no surprise. According to 2023 research from Malwarebytes, 62 percent of people in the United States and Canada admitted to monitoring their romantic partners online in one form or another, from looking through a spouse’s or significant other’s text messages, to tracking their location, to rifling through their search history, to even installing monitoring software onto their devices. Removing stalkerware If you want to know if your phone is or was infected with TheTruthSpy’s stalkerware you can use the lookup tool provided by TechCrunch, which has been updated to include information about the most recent leak. Malwarebytes, as one of the founding members of the Coalition Against Stalkerware makes it a priority to detect and remove stalkerware from your device. It is good to keep in mind however that by removing the stalkerware you will alert the person spying on you that you know the app is there. Because the apps install under a different name and hide themselves from the user, it can be hard to find and remove them. That is where Malwarebytes for Android can help you. Open Malwarebytes for Android. Open the app’s dashboard Tap Scan now It may take a few minutes to scan your device. If malware is detected you can act on it in the following ways: Uninstall. The threat will be deleted from your device. Ignore Always. The file detection will be added to the Allow List, and excluded from future scans. Legitimate files are sometimes detected as malware. We recommend reviewing scan results and adding files to Ignore Always that you know are safe and want to keep. Ignore Once: A file has been detected as a threat, but you are not sure whether to add it to your Allow List or delete. This option will ignore the detection this time only. It will be detected as malware on your next scan.

A sea faring cat ! Cool !

The word Pastel comes to mind...

Otherwise known as degaussing. It is not just an electromagnet. It must have an alternating magnetic field where the N and S poles are constantly changing with a strong gaussian force. There are 3rd parties that can sanitize magnetic media. Albeit, a Sledge Hammer is quite effect and more Phun ! https://www.shredit.com/en-us/secure-shredding-services/hard-drive-destruction