Jump to content

gutterboy

Members
  • Posts

    9
  • Joined

  • Last visited

Everything posted by gutterboy

  1. Just did a scan and it reported two files that seem to belong to MB. Is this a false positive? What do I do here? Thanks!
  2. I have recently run a scan and it has come up with some stuff I don't recognize and/or registry keys, I am unsure if I can remove these as I don't want to break anything. Here is my log, I have bolded the ones I am unsure of: Malwarebytes www.malwarebytes.com -Log Details- Scan Date: 12/10/17 Scan Time: 3:50 PM Log File: d412a920-dd7e-11e7-8fd8-408d5c54ae58.json Administrator: Yes -Software Information- Version: 3.3.1.2183 Components Version: 1.0.262 Update Package Version: 1.0.3456 License: Trial -System Information- OS: Windows 7 Service Pack 1 CPU: x64 File System: NTFS User: Brett-PC\Brett -Scan Summary- Scan Type: Custom Scan Result: Completed Objects Scanned: 2491232 Threats Detected: 23 Threats Quarantined: 0 (No malicious items detected) Time Elapsed: 4 hr, 15 min, 50 sec -Scan Options- Memory: Enabled Startup: Enabled Filesystem: Enabled Archives: Enabled Rootkits: Enabled Heuristics: Enabled PUP: Detect PUM: Detect -Scan Details- Process: 0 (No malicious items detected) Module: 0 (No malicious items detected) Registry Key: 2 PUP.Optional.InstallCore, HKU\S-1-5-21-4229797087-2605377926-706642509-1000\SOFTWARE\csastats, No Action By User, [2], [260986],1.0.3456 PUP.Optional.ProductSetup, HKU\S-1-5-21-4229797087-2605377926-706642509-1000\SOFTWARE\PRODUCTSETUP, No Action By User, [12951], [242047],1.0.3456 Registry Value: 1 PUP.Optional.ProductSetup, HKU\S-1-5-21-4229797087-2605377926-706642509-1000\SOFTWARE\PRODUCTSETUP|TB, No Action By User, [12951], [242047],1.0.3456 Registry Data: 0 (No malicious items detected) Data Stream: 0 (No malicious items detected) Folder: 0 (No malicious items detected) File: 20 PUP.Optional.APNToolBar, C:\PROGRAM FILES (X86)\FORMATFACTORY\FFMODULES\PACKAGE\ASK\ASKPIP_FF_.EXE, No Action By User, [6059], [76243],1.0.3456 PUP.Optional.WinWrapper, C:\USERS\BRETT\DOWNLOADS\FFSETUP3.7.5.0-72369105.EXE, No Action By User, [7307], [103747],1.0.3456 Generic.Malware/Suspicious, M:\D\PROGRAM FILES\INFOGRAMES\TACTICAL OPS\SYSTEM\TOPROTECT.EXE, No Action By User, [0], [392686],1.0.3456 Generic.Malware/Suspicious, M:\D\PROGRAM FILES\INFOGRAMES\TACTICAL OPS\TOPSETUP.EXE, No Action By User, [0], [392686],1.0.3456 PUP.Optional.ASK, M:\RECYCLER\S-1-5-21-1060284298-343818398-725345543-1003\DM69\UNIT_APP_75\TOOLBAR.EXE, No Action By User, [474], [383618],1.0.3456 PUP.Optional.ASK, M:\RECYCLER\S-1-5-21-1060284298-343818398-725345543-1003\DM457.EXE, No Action By User, [474], [383618],1.0.3456 PUP.Optional.ASK, M:\RECYCLER\S-1-5-21-1060284298-343818398-725345543-1003\DM314.EXE, No Action By User, [474], [383618],1.0.3456 Generic.Malware/Suspicious, K:\#C STUFF\MY RECEIVED FILES1\CARLO_AINT_NEAR.RAR, No Action By User, [0], [392686],1.0.3456 PUP.Optional.AuslogicsBoostSpeed, G:\PROGRAM FILES\AUSLOGICS\REGISTRY CLEANER\DISKWIPEHELPER.DLL, No Action By User, [1579], [464521],1.0.3456 PUP.Optional.AuslogicsBoostSpeed, G:\PROGRAM FILES\AUSLOGICS\REGISTRY CLEANER\AXBROWSERS.DLL, No Action By User, [1579], [464521],1.0.3456 PUP.Optional.AuslogicsBoostSpeed, G:\PROGRAM FILES\AUSLOGICS\REGISTRY CLEANER\DISKCLEANERHELPER.DLL, No Action By User, [1579], [464521],1.0.3456 PUP.Optional.AuslogicsBoostSpeed, G:\PROGRAM FILES\AUSLOGICS\REGISTRY CLEANER\DISKDEFRAGHELPER.DLL, No Action By User, [1579], [464521],1.0.3456 PUP.Optional.AuslogicsBoostSpeed, G:\PROGRAM FILES\AUSLOGICS\REGISTRY CLEANER\TRACKERASERHELPER.DLL, No Action By User, [1579], [464521],1.0.3456 HackTool.AutoKMS, G:\WINDOWS\AUTOKMS\AUTOKMS.EXE, No Action By User, [1868], [352842],1.0.3456 PUP.Optional.ASK, D:\PROGRAM FILES\DVD CRAP\FFSETUP220.ZIP, No Action By User, [474], [383618],1.0.3456 PUP.Optional.DownLoadAdmin, D:\PROGRAM FILES\CBSIDLM-TR1_15-MY_SCREEN_RECORDER-ORG-10972953.EXE, No Action By User, [4], [106277],1.0.3456 PUP.Optional.BundleInstaller, D:\PROGRAM FILES\VLC-2.1.3-WIN32.EXE, No Action By User, [19], [425688],1.0.3456 PUP.Optional.Koyote, D:\PROGRAM FILES\FREESCREENTOVIDEOSETUP-R0-N-BF.EXE, No Action By User, [6179], [76873],1.0.3456 PUP.Optional.AuslogicsRegistryCleaner, D:\PROGRAM FILES\REGISTRY-CLEANER-SETUP.EXE, No Action By User, [5854], [381599],1.0.3456 PUP.Optional.AuslogicsRegistryCleaner, D:\PERL\REGISTRY-CLEANER-SETUP.EXE, No Action By User, [5854], [381599],1.0.3456 Physical Sector: 0 (No malicious items detected) (end) I'm pretty sure HackTool.AutoKMS, G:\WINDOWS\AUTOKMS\AUTOKMS.EXE, No Action By User, [1868], [352842],1.0.3456 has come up before as a false positive. Thanks!
  3. Yeah....... I think it's about time I got off XP and updated
  4. Thanks. It seems the reason I don't see those other buttons is because: "Please note that this option is only functional on Windows Vista Service Pack 2, Windows 7, and Windows 8.x" I am still on XP. Is there any other way to stop those annoying popup windows that tell you it has blocked a malicious website - I ask because I believe they are being triggered by uTorrent and I was going to add that to the exclusion list, but now it seems I can't.
  5. This guide appears to no longer be correct. From that screen you can only click "Add IP"; there is no "Add Domain" or "Add Process". How are we supposed to do this now?
  6. Since I have closed uTorrent I haven't seen any more of them, so I assume it was coming from that. I will reopen it and see if they come back.
  7. Here you go: Malwarebytes Anti-Malware www.malwarebytes.org Update, 2/03/2015 3:00:24 PM, SYSTEM, MOO, Manual, Remediation Database, 2013.10.16.1, 2014.12.6.1, Update, 2/03/2015 3:00:33 PM, SYSTEM, MOO, Manual, Rootkit Database, 2014.3.27.1, 2015.2.25.1, Update, 2/03/2015 3:01:39 PM, SYSTEM, MOO, Manual, Malware Database, 2014.5.5.7, 2015.3.2.1, Update, 2/03/2015 3:02:16 PM, SYSTEM, MOO, Manual, program, 2.0.1.1004, 2.0.4.1028, Protection, 2/03/2015 3:03:15 PM, SYSTEM, MOO, Protection, Malware Protection, Starting, Protection, 2/03/2015 3:03:15 PM, SYSTEM, MOO, Protection, Malware Protection, Started, Protection, 2/03/2015 3:03:15 PM, SYSTEM, MOO, Protection, Malicious Website Protection, Starting, Protection, 2/03/2015 3:03:19 PM, SYSTEM, MOO, Protection, Malicious Website Protection, Started, Update, 2/03/2015 3:03:40 PM, SYSTEM, MOO, Manual, Remediation Database, 2013.10.16.1, 2014.12.6.1, Update, 2/03/2015 3:03:41 PM, SYSTEM, MOO, Manual, Rootkit Database, 2014.11.18.1, 2015.2.25.1, Update, 2/03/2015 3:04:30 PM, SYSTEM, MOO, Manual, Malware Database, 2014.11.20.6, 2015.3.2.1, Protection, 2/03/2015 3:04:30 PM, SYSTEM, MOO, Protection, Refresh, Starting, Protection, 2/03/2015 3:04:30 PM, SYSTEM, MOO, Protection, Malicious Website Protection, Stopping, Protection, 2/03/2015 3:04:30 PM, SYSTEM, MOO, Protection, Malicious Website Protection, Stopped, Protection, 2/03/2015 3:04:39 PM, SYSTEM, MOO, Protection, Refresh, Success, Protection, 2/03/2015 3:04:39 PM, SYSTEM, MOO, Protection, Malicious Website Protection, Starting, Protection, 2/03/2015 3:04:43 PM, SYSTEM, MOO, Protection, Malicious Website Protection, Started, Detection, 2/03/2015 3:10:55 PM, SYSTEM, MOO, Protection, Malicious Website Protection, IP, 192.162.100.180, 0, Outbound, Detection, 2/03/2015 3:10:58 PM, SYSTEM, MOO, Protection, Malicious Website Protection, IP, 192.162.100.180, 0, Outbound, Detection, 2/03/2015 3:11:04 PM, SYSTEM, MOO, Protection, Malicious Website Protection, IP, 192.162.100.180, 0, Outbound, Update, 2/03/2015 3:17:54 PM, SYSTEM, MOO, Scheduler, Malware Database, 2015.3.2.1, 2015.3.2.2, Protection, 2/03/2015 3:17:54 PM, SYSTEM, MOO, Protection, Refresh, Starting, Protection, 2/03/2015 3:17:54 PM, SYSTEM, MOO, Protection, Malicious Website Protection, Stopping, Protection, 2/03/2015 3:17:54 PM, SYSTEM, MOO, Protection, Malicious Website Protection, Stopped, Protection, 2/03/2015 3:18:07 PM, SYSTEM, MOO, Protection, Refresh, Success, Protection, 2/03/2015 3:18:07 PM, SYSTEM, MOO, Protection, Malicious Website Protection, Starting, Protection, 2/03/2015 3:18:11 PM, SYSTEM, MOO, Protection, Malicious Website Protection, Started, Scan, 2/03/2015 3:28:28 PM, SYSTEM, MOO, Manual, Start:2/03/2015 3:07:07 PM, Duration:10 min 6 sec, Threat Scan, Completed, 0 Malware Detections, 4 Non-Malware Detections, Protection, 2/03/2015 3:28:28 PM, SYSTEM, MOO, Protection, Malicious Website Protection, Stopping, Protection, 2/03/2015 3:28:29 PM, SYSTEM, MOO, Protection, Malicious Website Protection, Stopped, Protection, 2/03/2015 3:28:29 PM, SYSTEM, MOO, Protection, Malicious Website Protection, Starting, Protection, 2/03/2015 3:28:33 PM, SYSTEM, MOO, Protection, Malicious Website Protection, Started, Detection, 2/03/2015 3:41:04 PM, SYSTEM, MOO, Protection, Malicious Website Protection, IP, 192.162.100.180, 0, Outbound, Detection, 2/03/2015 3:41:07 PM, SYSTEM, MOO, Protection, Malicious Website Protection, IP, 192.162.100.180, 0, Outbound, Detection, 2/03/2015 3:41:13 PM, SYSTEM, MOO, Protection, Malicious Website Protection, IP, 192.162.100.180, 0, Outbound, Detection, 2/03/2015 3:42:00 PM, SYSTEM, MOO, Protection, Malicious Website Protection, IP, 94.102.63.18, 0, Outbound, Detection, 2/03/2015 3:42:03 PM, SYSTEM, MOO, Protection, Malicious Website Protection, IP, 94.102.63.18, 0, Outbound, Detection, 2/03/2015 3:42:09 PM, SYSTEM, MOO, Protection, Malicious Website Protection, IP, 94.102.63.18, 0, Outbound, Detection, 2/03/2015 3:48:18 PM, SYSTEM, MOO, Protection, Malicious Website Protection, IP, 94.102.63.18, 0, Outbound, Detection, 2/03/2015 3:48:21 PM, SYSTEM, MOO, Protection, Malicious Website Protection, IP, 94.102.63.18, 0, Outbound, Detection, 2/03/2015 3:48:27 PM, SYSTEM, MOO, Protection, Malicious Website Protection, IP, 94.102.63.18, 0, Outbound, Detection, 2/03/2015 3:52:04 PM, SYSTEM, MOO, Protection, Malicious Website Protection, IP, 94.102.63.18, 0, Outbound, Detection, 2/03/2015 3:52:07 PM, SYSTEM, MOO, Protection, Malicious Website Protection, IP, 94.102.63.18, 0, Outbound, Detection, 2/03/2015 3:52:13 PM, SYSTEM, MOO, Protection, Malicious Website Protection, IP, 94.102.63.18, 0, Outbound, Detection, 2/03/2015 3:55:12 PM, SYSTEM, MOO, Protection, Malicious Website Protection, IP, 94.102.63.18, 0, Outbound, Detection, 2/03/2015 3:55:15 PM, SYSTEM, MOO, Protection, Malicious Website Protection, IP, 94.102.63.18, 0, Outbound, Detection, 2/03/2015 3:55:21 PM, SYSTEM, MOO, Protection, Malicious Website Protection, IP, 94.102.63.18, 0, Outbound, Detection, 2/03/2015 4:01:13 PM, SYSTEM, MOO, Protection, Malicious Website Protection, IP, 94.102.63.18, 0, Outbound, Detection, 2/03/2015 4:01:16 PM, SYSTEM, MOO, Protection, Malicious Website Protection, IP, 94.102.63.18, 0, Outbound, Detection, 2/03/2015 4:01:22 PM, SYSTEM, MOO, Protection, Malicious Website Protection, IP, 94.102.63.18, 0, Outbound, Detection, 2/03/2015 4:12:13 PM, SYSTEM, MOO, Protection, Malicious Website Protection, IP, 192.162.100.180, 0, Outbound, Detection, 2/03/2015 4:12:16 PM, SYSTEM, MOO, Protection, Malicious Website Protection, IP, 192.162.100.180, 0, Outbound, Detection, 2/03/2015 4:12:22 PM, SYSTEM, MOO, Protection, Malicious Website Protection, IP, 192.162.100.180, 0, Outbound, (end)
  8. Hello, I just updated MalwareBytes and also am on the free trial and I am getting a bunch of those "Malicous Website Notifications"; now I'm trying to work out if I am infected somehow or if they are coming from a legit program such as Skype, uTorrent or something else. Is there a way to find out what process generated the request to the website? Thanks!
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.