treed

I'd advise trying to uninstall and reinstall Discord.

If Malwarebytes had quarantined something, it would not have done so silently. It would have shown a notification in the macOS Notification Center (unless you turned off notifications for Malwarebytes). If you didn't see such a notification, it's unlikely anything was quarantined... especially since we haven't had any other reports of such an issue with Discord. (Also, we haven't gotten any reports of Malwarebytes interfering with the update process of any legitimate programs.) Unfortunately, since you uninstalled, we have no way to know what might have happened, and can't verify whether something was or wasn't quarantined. All components of the software, including the quarantine database, are removed during uninstall. My suspicion, based on what you've said and that you had problems with two different programs updating, is that Al is probably correct. This sounds like a possible internet connectivity issue. Not an overall connectivity issue, but possibly something that is blocking connections to certain sites or by certain apps. Are you using anything like Little Snitch, Lulu, or some other security software that has the capability to block connections per app or per server?

I've seen this happen before when VMWare Fusion has tried to be helpful by sending all "malwarebytes://" URLs to the copy of Malwarebytes installed within a Windows VM, instead of sending it to the Mac version natively installed on the system. Unfortunately, macOS does not provide any mechanism for resolving such conflicts, except when it comes to certain common URL schema used by many apps, such as "https://" or "mailto:". I cannot recall what the solution was the last time this came up. There are some solutions mentioned on various sites online for editing a launch services .plist file, but those solutions are old and do not appear to be correct for modern macOS. My best suggestion would be to try resetting launch services: https://eclecticlight.co/2017/08/11/launch-services-database-problems-correcting-and-rebuilding/

What is the error message? Yes, when you reinstall, it will replace anything from the existing installation that might be missing or damaged.

Okay, that's definitely a supported configuration. (One of the most common reasons for people not being able to open the app is too old an app on too new a system.) What happens right now when you try to open the app? Have you tried downloading and reinstalling the software? (There would not be any need to uninstall first.) You can download from here: https://malwarebytes.com/mac-download

What version of macOS and Malwarebytes are you using?

Have you installed some kind of software to allow you to access your Mac system volume from Windows? If so, did you scan that volume with Malwarebytes for Windows? If not, whatever happened cannot be related to whatever happened on the Windows system. There is some other problem involved in this case. What that could be, I don't know. A purplish screen while trying and failing to boot the Mac system is very odd, and could indicate some kind of hardware issue. However, if you did scan any of your Mac volumes with Malwarebytes for Windows, it was definitely not designed for that. I'm sure someone could help look at logs and try to figure out what was quarantined, but I'm not sure how to do that kind of troubleshooting for a Windows system. In this case, we'd need to bring in someone knowledgeable in troubleshooting our Windows software.

Hi, all! We've just released Malwarebytes for Mac version 4.18 in beta. The primary change is that there is no longer an in-app cart for purchasing subscriptions. Instead, the page will be loaded in your selected browser. Hopefully, this will give a better experience! In addition, there are a number of internal architectural changes, as we prepare for some bigger changes coming later this year. These shouldn't be anything you'll notice, but please do let us know if anything seems like it's not working as it should. You can update to the beta within the app, with the Beta Application Updates feature turned on, or you can download the installer directly from here: https://cdn.mwbsys.com/packages/mmac.installer.consumer/1/8/1/9/18194928b09f8bed5334d9e0913c7192/64f87381-1440-4beb-bf1f-01ad6f0fa302.pkg Please reply here with any comments, questions, and problem reports!

You'd need to talk to Adobe support about what they're doing with Python. There's no indication from the information you've provided that this is malicious activity. Regarding that app, that screenshot does not match anything I can duplicate in the Files app. I'm guessing you may be running an old version of iOS, so my first suggestion would be to update to the latest version of iOS and see if the problem continues.

None of what you're describing here is a security issue, or has any relation to Malwarebytes apps for iOS. Your questions would be more well suited for Apple support. We can only speculate as to the reasons for something like a password notification from Apple. We can only say that there are such notifications that are legitimate, but you'd need to talk to Apple to find out why it was displayed.

A few comments: The screenshots from RansomWhere? mean that processes launched by Python (this is what "Python's kids" means) are encrypting files. In this case, it looks like Acrobat is using that to encrypt form data of some kind. This does not look in any way like malware activity. PLEASE do not ask ChatGPT questions and expect a truthful answer. ChatGPT will give you wrong or incomplete answers with supreme confidence. This is just general advice, not specific to this particular reply. There are a variety of definitions of "rootkit," and some still could exist. However, be aware that there is no malware for Mac, of any kind, that would survive wiping the hard drive, unless it were to be copied back onto the system as part of restoring from backups. There is absolutely no reason to believe that the Python item in /private/tmp (NOT, you should note, ~/private/tmp, which does not exist) is a rootkit, or any other type of malware. This is probably Acrobat installing Python for some specific task, since Python is not installed by default on macOS any longer. I can't tell you why some files are showing with Chinese characters on an iPhone in your first screenshot. What app are you viewing those files in? None of what you've posted so far gives any reason to believe your Mac is infected with malware.

This sounds like the issue described here:

I don't have the answer to that, we'd have to wait for someone from the BG team to answer.

I'm not getting a block on that site here, so whatever you're seeing may not be related to Browser Guard... however, all that loads from that URL is an XML file.

We actually have not used translations from volunteers for quite some time, as those translations can be unreliable - not necessarily in terms of quality, but in timing. Although I'm not part of the group that selects the languages we translate to, I can give you some insight into how that works. We use a professional translation service, which allows us to get translations with more reliable timing. Unfortunately, there's a base charge for each language, so it costs quite a bit for each translation job per language, especially when you consider that almost every release involves translations. We've taken a number of steps to optimize the translation process, sharing it across multiple projects to reduce the total number of translation orders, but there's only so much money that can save us. Thus, we have to choose which languages to support, based on the languages most prevalently spoken by our users, as we cannot realistically support all languages. Looking at the data, the languages we translate to cover the vast majority of our user base. Turkey is well down the usage list in our data. Although that doesn't necessarily mean it won't happen, there does need to be some justification for adding a new language.

This is 100% normal

Honestly, turning off your wifi when you're away from home is not necessary, and not even security professionals do that. I've left wifi turned on while attending the DEF CON hacking conference. If you're really worried about joining a potentially insecure wifi network, the risk of doing so is very low, but you can also use a VPN on such networks to ensure that your connection is secure.

I'm not sure exactly what you mean, or what the screenshots are meant to show. Can you explain what problem you're having?

Yes, it will still work even if the app is not open. Extremely safe. Nothing can ever provide a guarantee against malware or hacking, but iOS is one of the safest systems out there, as long as you don't jailbreak it. You may need to take extra precautions, such as turning on Lockdown Mode, if you are someone that may be targeted by a hostile nation-state or other very large organization with tons of resources to spend on hacking your devices. That is a normal security feature of iOS. This isn't something that is an indicator of any kind of security issue. At worst, it's a minor user interface glitch.

Nope. The background components still need to be running, as they need the elevated privileges that being run in this manner gives them. Without those permissions, they can't do what they need to do. Scans would be very limited, and would not be able to remove all threats. Without RTP, though, those processes are doing almost nothing until you actually interact with the app.

If you're using Apple's Mail app, I've seen similar things, with messages identified as having no sender and having no content. This is not a security issue, but is probably the result of mailbox corruption within the Mail app's data. You should try rebuilding the mailbox where this message appeared. Select that mailbox, then choose Rebuild from the Mailbox menu. This may take some time, depending on how many messages are in the mailbox and (assuming you're using IMAP) how fast your network connection is for re-syncing from your online mailbox. Although I've never (to my knowledge) lost any e-mail data because of this kind of mailbox corruption, I'd still recommend making sure you're backing up your computer regularly. This is one of the most important things you can do to protect the integrity of your data. I'm not clear where you were seeing the "I am not a robot" box, but if it was while trying to log in to your Malwarebytes account, I'd guess that this was just some kind of glitch with your web browser. These things can sometimes be caused by an ad blocker accidentally blocking some web content that it shouldn't, but the fact that the problem went away by itself suggests it was just a glitch. I'd recommend restarting your browser, if you haven't done so in a long time, and the same goes for your computer as well. I'm just as guilty as most about not restarting, and have been known not to restart for months... but I have absolutely found that longer uptimes do increase the chances of random glitches. Fortunately, none of this is an indication that your computer has been compromised.

If disabling notifications in Safari fixed it, this isn't a trojan application, it's a website sending you a bogus notification about a trojan in hopes that you'll click the notification, and get redirected to a page on that site that will try to sell you some kind of junk software. As long as you never did that, and you've eliminated the notification at this point, you should be fine.

I've taken a look over your logs, and I'm not seeing anything that I can identify as malicious on your computer. I do see some things that I wouldn't recommend using, such as Memory Cleaner (memory does NOT need cleaning in any way) and App Cleaner (generic uninstallers can cause problems, and it's always better to use the uninstaller or uninstall directions provided by the developer). Have you checked the notification settings for Safari as well? You'll find those in Safari's Preferences window, by clicking the Websites icon, then scrolling down to Notifications in the list on the left side. Disable any notifications for any websites you don't explicitly want to get notifications from.

Just to add to what David said, there really isn't any way to scan your iPad for malware, and it's quite unlikely for it to be infected with any malware unless one of the following is true: 1) You have jailbroken it 2) You may be a target of an oppressive nation-state, due to activist or journalist activities you've participated in, or due to being a member of a particular oppressed group. (For example, being one of the Uyghur people in China, or someone who investigates and reports on China's treatment of the Uyghurs.) If neither of those is true, it's likely that this is an error on the part of Google. False positives with Apple devices are not uncommon for internet service providers or other large organizations trying to identify malicious behavior in network activity.

I would like to get more information about your system. Please follow the instructions at the following link to download our support tool and run it: https://support.malwarebytes.com/hc/en-us/articles/360038519834-Upload-logs-to-your-ticket-using-the-Malwarebytes-Support-Tool-for-Mac Please send the MWB_Info.zip file that it creates to me here via private message. (Click or hover over my name or avatar at left and click the Message button.) Once I have that information, I can investigate to see what's going on.