Jump to content

exile360

Experts
  • Content Count

    22,630
  • Joined

  • Last visited

About exile360

  • Rank
    exile

Recent Profile Visitors

115,019 profile views
  1. Yes, I'm sure you did. It is because just as with the file listed on that VirustTotal page, your file is a 0 byte file meaning it is completely empty/no content, and any file that is 0 bytes/has no contents (regardless of what it might be named) will have the same hash/checksum, so the results will be the same. The file name and path/location is what you need to use to research it if you wish to find out what it is and where it came from which is why I speculated that it appeared to be a trace left over from a Conduit PUP/infection because Conduit would create a file by that name in that location according to the information I found (and I suspect that's the purpose of this signature in ADWCleaner that is detecting the file as well, though I do not know for certain as only Research would have access to that information).
  2. Greetings, The information in the following links should help to clarify much of this with regards to what Malwarebytes detects as PUP and why: https://www.malwarebytes.com/pup/ https://blog.malwarebytes.com/malwarebytes-news/2016/10/malwarebytes-gets-tougher-on-pups/ https://blog.malwarebytes.com/cybercrime/2015/06/digital-snake-oil/ https://blog.malwarebytes.com/cybercrime/2015/06/driver-updaters-digital-snake-oil-part-2/ https://blog.malwarebytes.com/cybercrime/2015/07/pup-makers-digital-snake-oil-part-3/ https://blog.malwarebytes.com/threats/registry-cleaner/ https://blog.malwarebytes.com/puppum/2016/12/why-malwarebytes-detects-pc-pitstop-as-potentially-unwanted/ https://blog.malwarebytes.com/malwarebytes-news/2017/11/winning-the-battle-against-pups-on-your-computer-and-in-u-s-district-court/ https://blog.malwarebytes.com/puppum/2016/07/pup-friday-cleaning-up-with-5-star-awards/ https://blog.malwarebytes.com/puppum/2016/08/systweak-redux-our-response/ Regarding legal precedent, please refer to the following articles which cite two cases involving Malwarebytes and vendors blocked as PUP: https://blog.ericgoldman.org/archives/2017/11/section-230c2-protects-anti-malware-vendor-enigma-v-malwarebytes.htm https://blog.ericgoldman.org/archives/2018/09/section-230-helps-malware-vendor-avoid-liability-for-blocking-decision-pc-drivers-v-malwarebytes.htm The following links should also prove informative as to why many items are classified as PUP by Malwarebytes: https://decentsecurity.com/#/registry-cleaners/ https://support.microsoft.com/en-us/help/2563254/microsoft-support-policy-for-the-use-of-registry-cleaning-utilities https://www.howtogeek.com/171633/why-using-a-registry-cleaner-wont-speed-up-your-pc-or-fix-crashes/ https://www.howtogeek.com/162683/pc-cleaning-apps-are-a-scam-heres-why-and-how-to-speed-up-your-pc/ https://lifehacker.com/5482701/whats-the-registry-should-i-clean-it-and-whats-the-point https://lifehacker.com/5033518/debunking-common-windows-performance-tweaking-myths https://www.howtogeek.com/198758/never-download-a-driver-updating-utility-theyre-worse-than-useless/ https://www.howtogeek.com/233115/the-only-way-to-safely-update-your-hardware-drivers-on-windows/ http://www.tomshardware.com/answers/id-1857635/good-free-automatic-driver-updater.html http://www.tomshardware.com/answers/id-1974868/trusted-driver-updater.html https://www.howtogeek.com/172839/10-types-of-system-tools-and-optimization-programs-you-dont-need-on-windows/ https://computer.howstuffworks.com/question1751.htm https://lifehacker.com/5415355/do-you-really-need-more-than-4gb-of-ram https://www.tomshardware.com/reviews/memory-module-upgrade,2264.html https://www.howtogeek.com/128130/htg-explains-why-its-good-that-your-computers-ram-is-full/ https://techlogon.com/2011/03/28/will-more-ram-memory-make-my-computer-faster/ Obviously you're free to change how PUPs are handled and this is in fact the very reason those options are provided. Additionally, if you only wish to exclude a specific PUP rather than all PUPs you may instead perform a Threat scan with Malwarebytes by opening Malwarebytes and clicking the Scan Now button on the Dashboard, then once the scan completes, verify that all of the detected items belong to the program that you wish to exclude then click the empty checkbox at the top of the list in the column header to clear all of the checkboxes next to all of the detections then click Next and when prompted on what to do with the remaining detections select the option to always ignore and they will all be added to your Exclusions in Malwarebytes so that those items will no longer be detected by future scans or the Malware Protection component. I hope that helps to clarify things and if there is anything else we might assist you with please don't hesitate to let us know. Thanks
  3. Greetings, You should be able to click on the Date and Time column header to sort the list by date/time accordingly and the order will reverse if you click it a second time. The image below illustrates where you should click: I hope this helps and please let us know if there is anything else we might assist you with. Thanks
  4. If Fast Startup is enabled, or if you're using any sort of software firewall (other than the built in Windows Firewall) that could be the reason. You can learn more about Fast Startup here as well as here. It's been known to cause issues with Malwarebytes and other programs as well as some hardware components/drivers at times.
  5. LOL, that second image looks like a mannequin Anyway, here's another track: That song always reminds me of the movie Mannequin since Kim Cattrall played an Egyptian princess in that film which also featured Andrew McCarthy, and of course I can't think of the Bangles without thinking of my favorite tune of theirs which actually was on the soundtrack of another film that featured Andrew McCarthy (as well as an amazing performance by Robert Downey Jr), Less Than Zero: Man those girls could ROCK. They were so metal back when metal wasn't even that metal . Must be one of the best covers ever.
  6. Unfortunately much of what keeps Office vulnerable is its backwards compatibility and extensive plugin and embedded scripting support. These capabilities make it very flexible and useful, but also a prime target for active exploit/scripting based attacks/threats. UWP might help to some degree but I'm certain it would not eliminate all of these kinds of vulnerabilities completely.
  7. You're welcome. You'll find more detailed instructions in this support article.
  8. Just to add to what Firefox mentioned above, you might find the information in this support article to be helpful and you'll find additional details on signing up at My.Malwarebytes.com in this support article. If you are still unable to retrieve your license key then please contact Malwarebytes Support directly via the form on the bottom of this page and they should be able to assist you in tracking down your license information. I hope this helps and if there is anything else we might assist you with please don't hesitate to let us know. Thanks
  9. That file doesn't even have the same name as the file from your system; they are only the same in that they are empty 0 byte files and therefore have the same hash just as mentioned in this comment from VT:
  10. Greetings, I don't know about how it works for Macs, but I do know that on Windows it is a very bad idea to try to remove malware from backup images or system restore points as it will corrupt them rendering them useless and an infected backup is better than none should a system failure occur as you can always restore the system/image then scan it afterwards to remove any threats that might be present once the restore operation is completed.
  11. You should be able to retrieve it by creating an account at My.Malwarebytes.com using the same email address you used when you originally purchased your license, otherwise if that's not possible you may contact Malwarebytes Support directly via the form on the bottom of this page and they should be able to retrieve it for you.
  12. Once the trial expires it will revert to the free version. The features of the free version are manual scans, including context menu scans when you right-click on any file or folder or drive as well as the standard Threat scans and Custom scans as well as unlimited threat detections and removals. What you lose are all of the real-time protection components as well as scheduled updates and scans, however you may continue to use it as a scan/remediation tool for as long as you'd like. I do not know if they will allow you to use your license on both drives or not so I can't speak to that, however someone from Support can answer that I'm sure.
  13. That update has been out for a while now and I haven't heard of any Malwarebytes clients being affected by it so far. That's not to say that it is impossible, however I would have thought we'd have seen more users reporting issues if Malwarebytes was affected by it as many users of the other AVs verified to be affected have been reporting it on their support sites and across the web.
  14. Excellent, I'm glad to hear it If there's anything else we can help you with please don't hesitate to let us know.
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.