Jump to content

Xord

Members
  • Content Count

    8
  • Joined

  • Last visited

Community Reputation

0 Neutral

About Xord

  • Rank
    New Member

Recent Profile Visitors

750 profile views
  1. FYI: I'm not waiting... I have excluded this file from scanning on all clients (and un-quarantined it to all). Gee... this is the third false positive this month! Whatthehell?!? Does Malwarebytes not have QA on their signatures? ... losing faith here. 2016-09-15 Ransom.Petya - C:\Program Files\Common Files\microsoft shared\VS7DEBUG\mdm.exe 2016-09-15 Ransom.Petya - C:\Program Files\Common Files\microsoft shared\VS7DEBUG\mdm.exe 2016-09-02 Ransom.Crysis - C:\Program Files\Microsoft Office\Office12\ORGCHART.EXE
  2. Getting these same alerts right now - exact issue as on Tuesday.... Clients are running signatures v2016-09-15.09 It's gotta be a false positive! Anyone else?
  3. Notification Catalog: Client Description: Malware threat detected, see details below: 8/22/2016 4:37:48 AM CPUM156 172.30.121.164 Trojan.Agent Quarantined HKLM\SOFTWARE\CLASSES\CLSID\{FFD7B771-8ECA-45DE-A944-7B013C6C2DF5} 8/22/2016 4:37:48 AM CPUM156 172.30.121.164 Trojan.Agent Quarantined HKLM\SOFTWARE\CLASSES\IPW.User.1 8/22/2016 4:37:48 AM CPUM156 172.30.121.164 Trojan.Agent Quarantined HKLM\SOFTWARE\CLASSES\IPW.User 8/22/2016 4:37:48 AM CPUM156 172.30.121.164 Trojan.Agent Quarantined HKLM\SOFTWARE\CLASSES\TYPELIB\{6F8CDC9E-DB60-4935-A7ED-A7BE8EB2941B}
  4. FYI: We had a few hundred alerts of exactly this too in our environment this past day.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.