-
Posts
16,025 -
Joined
-
Days Won
3
Content Type
Events
Profiles
Forums
Everything posted by TwinHeadedEagle
-
Trojan.Crypt in Malwarebytes file?
TwinHeadedEagle replied to strgzr's topic in Resolved Malware Removal Logs
Yes, it found a malware or PUP. You can go to this directory and fetch the latest report C:\ProgramData\Malwarebytes\MBAMService\ScanResults -
Trojan.Crypt in Malwarebytes file?
TwinHeadedEagle replied to strgzr's topic in Resolved Malware Removal Logs
@strgzr This is a part of Rootkit scan and is normal. If you turn off Rootkit scanning this will not happen. Basically file is locked somewhere on the system and MalwareBytes moves it to its own directory as it has all Read and Write permissions there. -
NetService malware, help needed.
TwinHeadedEagle replied to Ven0m's topic in Resolved Malware Removal Logs
@Ven0m Please ZIP this folder and attach it as well C:\ProgramData\Malwarebytes\MBAMService\Quarantine -
ZoomX.exe and ZoomE.exe heuristics.shuriken
TwinHeadedEagle replied to Androo's topic in Resolved Malware Removal Logs
Hi, Those files are indeed suspicious. Please attach MalwareBytes logs and also logs from this topic. I'm infected - What do I do now? - Windows Malware Removal Help & Support - Malwarebytes Forums Someone will take a look and assist you. -
Potential False Positive on .TMP Files
TwinHeadedEagle replied to saltmountain's topic in File Detections
Yes, this is a False Positive. It is now whitelisted. -
Hi, This will be fixed in the next update.
-
False Positive: PUP.Optional.InstallCore
TwinHeadedEagle replied to mganss's topic in File Detections
Hi, Detection will be removed.- 1 reply
-
- 2
-
- pup
- installcore
-
(and 1 more)
Tagged with:
-
Hi, We will need a sample to verify.
-
Detection is in place only for a free version of Keyturion, Pro/Paid version isn't affected. Other software you shared will be reviewed and detection added if possible.
-
Feel free to send other samples to us and they will be reviewed.
-
Hi, This will be fixed in the next database update.
-
Any keylogger is Riskware.
-
Hi, This is not a False Positive.
-
Hi, This signature was removed 18 hours ago. It is safe to restore these samples from quarantine as this was a false detection.
-
Hi, Your software isn't detected anymore, was taken care of yesterday.
-
Malwarebytes scan detects Privado VPN software files as Trojan?
TwinHeadedEagle replied to Evergap's topic in File Detections
Hi, This will be fixed in the next update. -
Hi, This will be fixed shortly. Thank you for reporting!
-
Hi, This is indeed a false positive and it shall be fixed in the next update.
-
Part of Malwarebytes' own files is getting detected as a PUP
TwinHeadedEagle replied to ramsies's topic in File Detections
Hi, This is a part of rootkit scanning. Not FP. Try to do a scan with rootkit scan off. It is under Settings > Security > Scan for Rootkits. -
Hi, This is a path based detection. Detection logs are needed for further review.
-
@siliconman01 Hi, We have a precisely defined set of criteria for listing software as a PUP. Being Driver Updater doesn't immediately qualify for PUP detection. Software needs to check many other boxes to be a PUP and most common ones are exaggerating the severity findings, using technical support scam tactics, constant pop-ups/reminders to purchase and so on.
- 1 reply
-
- 1