Jump to content

Fatdcuk

Staff
  • Content Count

    20,723
  • Joined

Posts posted by Fatdcuk


  1. Hi Quinny :)

    I would advise still to get it checked over by one of our experts just to err on caution since you did not install it.

    To simplify getting help for you then please start a new topic in the following sub forum>> http://www.malwareby...php?showforum=7 with the title of need "Need to check whether my computer is clean"

    Please when you post that topic leave a link back to this topic so that your helper will have a point of reference.


  2. Ok Quinny.

    PUP stands for potentially Unwanted Program which denotes that some users will probaly not want it installed where as other types of users might intentionally install it.Since we cannot tell which type of install it is then assigned PUP classification.

    The folder contains a BitCoin miner.

    If you installed this tool then no need to take any action.

    If however you did not install the Bit miner tool then there is a possibilty that either another application or potentially a trojan install has put it on your computer.So just to err on caution if you have not installed intentionally then to get your computer checked out to rule out a trojan based install.

    If a computer checkup is required.

    Please read and follow the directions here, skipping any steps you are unable to complete. Then create a NEW topic here.

    One of the expert helpers there will give you one on one assistance when one becomes available.

    Please note that it may take 48 hours or more for you to receive a response in the malware removal forum, as it is often busy at times. Please do not reply to your own post asking for help unless its been more than 48 hours since you originally posted, as this can make it appear as though you are being helped and take longer for you to get help.

    If you are unable to do all or any of the steps in the link to the directions above, just post your problem into the forum I gave you a link to anyway and someone will be able to assist you.

    If you prefer to be assisted via email you may contact support@malwarebytes.org and one of our support staff members will assist you directly.

    If you are a reseller, affiliate, technician, corporate, business, educational, government or non-profit customer then please contact corporate-support@malwarebytes.org and include full contact details along with your Reference # when you do to ensure that you receive prompt assistance.


  3. Ok looking into this now folks.Thanks for the reports(s)

    Edit/Update.

    Confirmed that the recent detection is indeed a F/P.

    This will be fixed on the next update cycle.


  4. Hi Mark,

    These are not False positives!

    The website you have reported is serving up a driveby download of trojan code via a Java exploit.

    Malwarebytes realtime protection in this instance is blocking the trojan install :)

    If you upload the files that we are blocking in the temp folder to a file checking service such as VirusTotal

    https://www.virustotal.com/

    You will see slowy the AV's confirming the files to be trojan code in the coming days.

    Here is a VT file report on a file that the java exploit tried to infect my computer with when visiting that website a moment ago.

    https://www.virustot...sis/1333280463/


  5. Hello CDA and welcome to the Malwarebytes forums :)

    PUM classification is actually different to PUP's

    PUM means Potentially Unwanted Modification.

    Unfortunetly system mods can be performed by malware(as is your case) and in other scenarios by end users or system admins who set policies/modifications because of their individual requirements.

    MBAM has no way of knowing whether a modification was done by malware or intentionally by the end user so in that scanario we can only warn as to a potentially unwanted modification.

    Ok lets try to get your computer fixed however we don't work on malware removal n this part of the forums.

    Please read and follow the directions here, skipping any steps you are unable to complete. Then create a NEW topic here.

    One of the expert helpers there will give you one on one assistance when one becomes available.

    Please note that it may take 48 hours or more for you to receive a response in the malware removal forum, as it is often busy at times. Please do not reply to your own post asking for help unless its been more than 48 hours since you originally posted, as this can make it appear as though you are being helped and take longer for you to get help.

    If you are unable to do all or any of the steps in the link to the directions above, just post your problem into the forum I gave you a link to anyway and someone will be able to assist you.

    If you prefer to be assisted via email you may contact support@malwarebytes.org and one of our support staff members will assist you directly.

    If you are a reseller, affiliate, technician, corporate, business, educational, government or non-profit customer then please contact corporate-support@malwarebytes.org and include full contact details along with your Reference # when you do to ensure that you receive prompt assistance.


  6. Hello runwald,

    PUP classification stands for Potentially Unwanted Program.

    The Bundle installer classification is given to installer(s) where a bundle(collection) of applications will be installed from that stand alone installer.

    The individuals applications that are installed in mosts cases will be safe but owing to the nature of application bundles or how they are marketed in most cases both our Corporate customers and savvy home users would find them potentially undersirable which is why we detect them as PUP.

    If there is anything suspect(PUP/Adware) installed by the initial bundle installer then we would detect that also :)


  7. Hi nickp,

    I have a funny feeling the block was as a result of PUP bundle installer's where the application was part of a larger *bundle*.that our corporate users and most home users would not find desirable.

    The detection of the standalone installer will be fixed on the next update.


  8. For the file please zip or rar compress it and then in a reply here goto more options and select "attach file".

    Locate the zipfile via the file explorer and select "attach this file".

    Wait for the file to attach itself and send select add reply.

    Thanks in advance :)

×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.