Jump to content


Trusted Advisors
  • Content Count

  • Joined

Everything posted by 1PW

  1. Hello @Pedrolp1991: Excellent. Please let the forum know if you need help again. Season's Greetings to you and yours.
  2. Hello @Pedrolp1991 and Thank you for posting the valuable MBST grab. The Windows system of the computer in question must have unimpeded Internet access with all Malwarebytes Servers. For the Malwarebytes product licensing activation procedure to succeed and sustain, this condition, on that computer, must be corrected in either of two ways: 1) (Preferred) Reset the Windows HOSTS file to its default by following Microsoft's support document for the version of Windows installed using: How to reset the Hosts file back to the default or 2) With a text editor or the Windows Notepad, please open the HOSTS file at: %WinDir%\System32\drivers\etc\HOSTS Then, please permanently delete the following present entry line in the above HOSTS file followed by a save: keystone.mwbsys.com Then, restart Windows 7 and proceed to activate the Malwarebytes 4 for Windows product license. Please reply to this topic and let the forum know if the Malwarebytes license activation process succeeded. Thank you. Reference: Firewall Rules for Malwarebytes on Windows devices
  3. Hello @Maurice Naggar: I am able to download and read both text files you would have @Benoit68 rename to and run as batch files. HTH
  4. Hello @DrewPeacock: After all has been said here, I am happy you or one of the rare individuals who will purposely verify before installing. Excellent! Recently Malwarebytes published downloadable executables/installers which have revealed x.509 signing. Again, VirusTotal (VT) will verify/report those certificates during its analysis for validity. I believe that nearly all the time, newly published exe/dll/sys files will also have been uploaded to VT and their analysis will include all the popular hashes you seek. In the case of Malwarebytes for Windows, a "Component Package Version" release is very likely to update existing exe/dll/sys files. Those new files will have digital signers/counter signers and x.509 signers. Any subsequent VT analysis will reveal those signers and the calculated new hashes will accompany them. I also felt as strongly as you do now, about eight years ago. Now, with Malwarebytes' security improvements, VT provides the reliable one-stop-shopping that satisfy the integrity checks I seek. If nothing else changes at a global level, Malwarebytes users will continue to take the path of least resistance without verifying anything... Pity. HTH
  5. 1PW

    Experiencing Issue

    Hello @aperson: Please post the time(s) from the YouTube video when you saw the issue. Please report the version of the Firefox browser installed. Please remove the MBG extension from Firefox, restart Firefox, re-install the extension, restart Firefox. Test cleverbot.com again and post your test results. You need not use YouTube. You may attach videos to your posts here. Thank you. Malwarebytes Browser Guard cc: @rakka @gatortail
  6. 1PW

    Experiencing Issue

    Hello @aperson and Malwarebytes Browser Guard v2.1.5 for Firefox does not report any atypical issues. Aside from the usual ads/trackers, which you may easily allow/block, and web site software that may require updates, a cursory examination fails to show malicious content. Please document the source & its report that the above site has an issue. https://support.malwarebytes.com/docs/DOC-3444 https://www.virustotal.com/gui/url/b1e5e074277071b004733baae930ec3262376aee49046437cd86834fdc5b736f/detection Thank you.
  7. Hello @Cygnus: If you have the technical ability to safely extract the D:\HBCD\Programs\Files\win7PExtras.7z file, please upload it to, and perform a default FILE analysis with, VirusTotal Then, compare the result for a perfect match to the following previous analysis: https://www.virustotal.com/gui/file/8e198670e91e4090cf2059c8451582cf7b957e9cba95591dceaab006138e73a7/details https://f.virscan.org/win7PExtras.7z.html No risk will be had if you do not extract that .7z archive file. If you are not comfortable with the above, the Windows Defender detected file is still likely an old Trojan and technically not a virus, but a Trojan is malware. Thank you.
  8. Hello @Cygnus and I stand neutral in regards to the offerings on eBay as well as any of Hiren's editions. One of the first and most responsible actions is to perform a thorough fact check: Please quote the eBay URL link that points to the item that you purchased. Please obfuscate as "hxxp" for the protection of other viewers. Report to eBay? Even if the eBay offering is still active, please report the precise Hiren's edition with high accuracy and completeness. Please report your AV/AM application name/version that raised your suspicion. Strictly technical, the detection is likely not a virus but possibly a Trojan. Please report the suspected filename of the executable within the Hiren release. This will be used to begin an analysis with VirusTotal and similar. Please verify the malware identification as great doubt exists regarding the correct spelling. Thank you, Cygnus. Доверя́й, но проверя́й -Russian proverb
  9. Hello @BFOJ: The creator of that YouTube video is Mr. Carey Holzman and despite that unfortunate and long since corrected database incident of January 2018 and the other comments, Mr. Holzman currently recommends Malwarebytes Premium to his paid customers and to his several hundred thousand YouTube subscribers and viewers. My apologies to @Phxflyer for this wild deviation from the original subject of this topic. Thank you.
  10. Hello @Porthos: I believe this was true earlier this year. To my pleasant surprise the MB4 Offline Installer may now be successfully submitted to VirusTotal. https://www.virustotal.com/gui/file/dfe2e0934bfd30789c4421f728e507afc6a8a07f97b02651aef5f596eb5077a5/detection Earlier this year, VT upgraded: "Files up to 550 MB can be uploaded to the website..." HTH
  11. Thank you for the verification @tetonbob
  12. Thank you @Porthos: 👍👍👍 Due to proofs of similar screenshots in another forum, it would appear that both CU versions were available today. With perhaps 1.0.782 withdrawn in favor of 1.0.781. I'm certain a staffer will enlighten us soon.
  13. In the case of the above posting, and similar, the educated viewer would surely terminate the video at approximately 1:15 for they know that over one-hundred different types of malware do not instantly appear within their systems. Nor at this point in time would a reasonably intelligent user disable MB4's extensive protections for the purpose of receiving a file/folder of unknown integrity.
  14. Hello @unknownguy: References: https://support.malwarebytes.com/docs/DOC-3567 https://support.microsoft.com/en-us/help/13776/windows-10-use-snipping-tool-to-capture-screenshots For user level clarification, please take a screenshot of the About tab content and post in a reply to this topic. Thank you.
  15. Hello @Erix: Members of other forums are reporting a CU of 1.0.781 not 1.0.782. Please consider confirming in your locked/pinned announcement topic. Thank you.
  16. Hello @JackHemphill and in the https://support.malwarebytes.com/docs/DOC-3540 document, please read step 3b for editing the scan schedule. HTH
  17. Hello @Michael2019: My post simply completes your post for the requested FP information from users to Malwarebytes staffers to commence a proper analysis. As is shown in the Malwarebytes Browser Guard (MBG) notification, the user may always weigh the risk and override the temporary block in one of many ways: They may select "I want to continue to this site anyway", or they may tick the "Do not block this site again for scam". Additionally, users may always consult the MBG documents from the pinned topics above including the Malwarebytes Browser Guard Allow list and Support screens document. A Malwarebytes staffer will reply soon. Thank you for your patience and understanding.
  18. suspicious https://www.hybrid-analysis.com/sample/5b9c4cd387cf6c942a78e7a7675262f66c562537ee8c360ad2c0da07b1607fa5 1/72 - BitDefender https://www.virustotal.com/gui/url/0539cc6e59dcf6c7c4413fcd83dd6047cd16cb21396462a607fac2150a0329c3/detection
  19. Hello @Nonkii: The Malwarebytes forum does not provide individual and independent testing services. Those tasks are best achieved with: Independent testing sites: https://www.lifewire.com/best-free-online-virus-scanners-1356651 Your computer's up-to-date, Anti-Virus, Anti-Malware and Anti-Spyware applications. HTH
  20. Hello @brad03: Unfortunately, the Scan Report included may have truncated the full pathname but it can still be adequately documented with the below requested logs. In your next reply to this topic, please attach (not copy/paste) the latest following files for team analysis: (Please do not use a third party service) C:\AdwCleaner\Logs\AdwCleaner[S##].txt C:\AdwCleaner\Logs\AdwCleaner[C##].txt C:\AdwCleaner\Logs\Debug.log In the meantime, please consider adding an exclusion for the HP Support Assistant file using the Malwarebytes AdwCleaner Exclusions setting document. Thank you. cc: @jboursier
  21. Hello @DrewPeacock and Malwarebytes for Windows has been a globally known product for many years. By the time you notice the new Offline Installer, the new installer executable is likely to have been uploaded multiple times to VirusTotal where the most industry popular digests have been calculated and published with the file's VT overall analysis. Additionally, the file's digital signature, plus countersigning, may be sought & examined. This holds true for the executables, drivers and DLLs that constitute the modules and other internal files within the installed product. Independently you may also verify the digital signature(s) through the use of Microsoft's Sysinternals' Sigcheck, Windows File Explorer and other methods. When it comes to the Network Installer (digitally signed/countrsigned), I believe that proprietary and fairly articulate security methodologies are already in-place. However, a Malwarebytes staffer would need to comment further. Frequently VT community member endorsements may also be added and their member public reputations viewed for all to trace. Coincidentally, much of the above holds true for the Malwarebytes AdwCleaner product. As far as posted or linked checksums, "you can lead a horse to water but you can't make him drink." -English Proverb HTH
  22. Hello @Sneake and Thank you for the valuable mbst-grab file. Since you have already downloaded the Malwarebytes Support Tool, please sequentially follow all the steps within the Uninstall and reinstall using the Malwarebytes Support Tool document. In your next reply to your topic, please let the forum know if you were successful.
  23. Hello @DowntownBrooklyn: The Katana name for the new MB4 detection engine is a coincidence. Thank you.
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.