Jump to content

treed

Staff
  • Content Count

    1,310
  • Joined

  • Last visited

9 Followers

About treed

  • Rank
    Staff

Recent Profile Visitors

12,539 profile views
  1. Software made by that developer has been known to show some undesirable behavior, and has been promoted through scammy methods (such as fake user reviews and false claims of 5-star ratings by Mac tech magazines). Sounds like we're blocking that app's execution, but not actually removing the app. We'll get that fixed. As for these kinds of generic "app uninstallers," the use of such programs is discouraged. Many of them are scammy, and even the legit ones will usually either not remove everything they should or will remove too much. Apps from the App Store can be removed by simply dragging them to the trash. For third-party software not from the App Store, you need to consult with the developer and use the uninstall method they recommend... this may be an integrated uninstaller (either part of the app or installed on the system as part of the software), an uninstaller available for download, or in some cases, manual removal instructions.
  2. Hey, Joe, Sorry to hear about that, we definitely don't want to interfere with Take Control Books! I did some testing and can reproduce issue #1, and isolated it to the Web Protection feature and not the ad blocking. I'll get that issue in front of the research team right away. For issue #2, I'd like to get an example of the link. I'm not sure why restarting the iPad would be needed... I did notice with issue #1 that I had to reload the page to see any result after turning off Web Protection, so perhaps it wasn't the restart that was needed, but just a reload of the page? I'd like to test that, though. Please don't post a link here, though. I'm sending you a direct message, so please send the link there.
  3. There's lots of malware that can install just fine without elevated privileges. There are certain kinds of things the malware can't do if it doesn't elevate, but for a lot of the basics (stealing your data, injecting ads or causing redirects through browser extensions, etc), that kind of access isn't needed.
  4. Yup, there's a lot of stuff these days that people think is malware that actually isn't... like these kinds of pop-ups in the browser. Pop-ups in the browser can be caused by malware or adware, but it all depends on the purpose. Pop-ups designed to trick the user into downloading and installing more adware are generally not caused by adware, because the adware creator doesn't want to have competition for the infected machine. I can't ever say that any technology is 100% enough. A good antivirus program should protect against all malware infections. Good web protection should prevent the machine from communicating with a bad site. An ad blocker should protect against all malvertising. But there's no such thing as 100%... if it were possible to create protection with a 100% guarantee, the game would be over, the black hats would have lost, and everyone could get on with their business without these threats. That said, running something like Malwarebytes alongside a good ad blocker or network filter should be pretty darn effective.
  5. I know the feeling... you don't want to deprive sites you use and respect of their source of income. Unfortunately, malvertising is so prevalent these days that it's more a matter of security now. Ads are no longer just a nuisance... they can be dangerous.
  6. I removed all links to pcrisk[.]com. That site is designed to use search engine optimization to funnel people in and convince them to download a junk app. We don't really want a link here to give them a higher position on Google (which tends to prioritize results based on how much they are linked to from external sites, among other things).
  7. This is actually unlikely to be caused by any kind of adware or malware installed on the system. The problem seems to be happening specifically when visiting eBay and Kijiji, which suggests that they probably have a malicious ad that has gotten into their advertising feed. This is actually quite a common problem that people frequently mistake for an infection. Most likely something about your particular browsing habits on those sites and/or other information (such as geolocation of your IP address) is causing you to see this ad more frequently. I would suggest to first try what has already been suggested here: install an ad blocker and see if that helps. If that doesn't help, then we'll need to investigate further.
  8. I see that you have some adware installed that Malwarebytes for Mac should remove, but you don't actually have Malwarebytes installed. I would recommend installing Malwarebytes, which will scan for and remove the adware for free. There are also a bunch of system configuration profiles installed that are causing a Chrome extension to continue to be installed. Those profiles will need to be removed manually, as Apple does not provide any way to manage those profiles that we're able to safely use to remove them for you. To do so, open System Preferences, click the Profiles icon, and then remove every item in the Device Profiles list. Because there are multiple nearly identical profiles, I suspect some of the adware you have installed is installing those profiles. Here's what I recommend doing: Install Malwarebytes (https://malwarebytes.com/mac-download) Scan for threats, and confirm that you want to remove them You will probably be asked to restart the computer, but don't do so yet Follow the directions above to remove all the configuration profiles Now restart the computer After restart, scan again with Malwarebytes and remove anything detected. If anything is detected that requires a reboot, do so. After you've done all that, run the script again to generate a new MWB_Info.zip file, and send me that new file. I'll take a look and make sure that everything is gone.
  9. That extension appears to be made by PCVARK, a company that makes copious numbers of PUPs (potentially unwanted programs), on both Mac and Windows. They even make something that we consider to be outright malware. For that reason, we blacklist everything they make.
  10. At some point we’ll likely add that, but to be completely honest, the capability to scan external drives is very low on the list of things we could do to protect Macs better. Malware on an external drive is almost never an actual threat vector in the real world.
  11. Sure! Just keep in mind, though, that a Safari extension has a lot of access to potentially sensitive data in web pages you visit, and we’re blocking some things that developer makes... just sayin’... 😁
  12. Alternately, if you’d prefer not to go through the support route, feel free to send the MWB_Info.zip file directly to me... I’ll probably end up looking at it either way. 😁 To send me a direct message, click on my name or avatar at left, then click the Message button.
  13. I suspect that “unknown” issue is more likely to be due to a bug in BlockBlock than due to anything truly malicious.
  14. That's not the right place. You need to be on the General tab in the Security & Privacy preferences. That's where the button in the app should take you, although we've seen some cases where System Preferences opens to the wrong place. Make sure to look at all the screenshots in the first link I gave you to be sure you're looking in the right spot.
  15. John, There are step-by-step instructions to walk you through this here: https://support.malwarebytes.com/docs/DOC-2634 If those aren't clear enough for you, you can try the walkthrough here: https://zingtree.com/deploy/tree.php?z=embed&tree_id=375421543&style=buttons&persist_names=Restart&persist_node_ids=1 If neither of those helps, support is available. You can find your support options here: https://support.malwarebytes.com/community/contactsupport/pages/home-support
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.