Hec

I use an ad and script blocker so im puzzled it was more of an adriod system notification and seemed to come from the malwarebytes app so it could be anything

So recently i decided to buy malwarebytes andriod to remove some malware and it works fine, but i just received this notification from malwarebytes claiming that i could do a survey for a 350 amazon gift card now i figured this might be fake specially after removing malware recently id just like to get comfirmation here

Decided to run a scan with malwarebytes since i hadn't run one in some time i was suprised that it detected C:\$RECYCLE.BIN\S-1-5-21-41-4122223833-2394475517-2626645632-1001\$IHHGUV1.JPG C:\$RECYCLE.BIN\S-1-5-21-41-4122223833-2394475517-2626645632-1001\$RGE38E1.JPG and C:\$RECYCLE.BIN\S-1-5-21-41-4122223833-2394475517-2626645632-1001\$RHHGUV1.JPG what i can possible believe is causing this might be when earlier this day i saved an image i searched and realised it was a jpg.png which was odd i deleted it and deleted it from the recycling bin firgered might have caused no harm since i only set it as a wallpaper and didnt execute anything or open the image if anyone can help me with this should i take anymore steps to ensure safety i already removed these

Tank you for the response Aura, appreciate it, i read the article and I think it’s pretty shady they are doing this without telling you first not to mention there’s not a whole lot stoping them from making this malicious

I hope everyone's having a nice day, anyways i downloaded the dolphin emulator which had an amazing reputation i was trying to dump my WII disks too get the game isos for the emulator but couldn't get rawdump to work browsing forums i saw this link for a website for a dumping program unfortunately i didn't look at the link too well because when i searched the website i clicked the wrong website link, it looked like a game ROM website which usually isn't a good sign but i was using no script so no scripts loaded but it initiated a connection to coinhive . com, now i'm pretty sure this is a bitcoin miner fortunately malwarebytes blocked the connection i scanned and found nothing but could i have a bitcoin miner stealthily using my system resources, please if anyone can help me out that would be appreciated i scanned with bitdefender free, zemana, mbam and adwcleaner

rodent you should open a thread the fact you say websites like that of mbam are being block sounds bad, is there a message when they are vlocked? or is it just not letting you in hoep everything is ok

yep i am no longer getting blocks thanks mbam if you happen to be getting alerts from bitdefender or blocks when going into websites like the malwarebytes website it is worth opening a malware removal thread and scanning with various scanners to make sure you are not infected, everyone have a nice day

Possibly bitdefender just went insane it started flagging everything but that’s probably just a one time bug I hope they just correct this as soon as possible

i guess we should just wait for the update gl to everyone

i dont know im using bitdefender free also and i did get one alert yesterday im just going through my firewall blocking anything suspicous seems like the best i can do right now

this seems like a brand new issue could it possibly be something trying to hijack or inject code i really am clueless to what this is, at first i thought it might have to do about having windows firewall disabled while playing destiny but doesnt seem like it i tried using ccleaner to clean out everything in firefox im gonna try just searching the program files see if i see anything suspicous ill also try adw cleaner maybe that will detect something and i do agree with the sub domain thing there are many ive just gotten the rc.symcd.com variant maybe we can get the attention of someone from malwarebytes see if they know whats going on

Yup it seems weird I researched and it seems like something about failing to validate ssl certificates from Symantec i don’t know I’ve resorted to forcing encryption everywhere and hardening my firewall to see if it helps might just be issues with the new update hope you guys can solve this too

it appears this has something to do with synmatec not sure

opening new tabs, reloading pages and so forth seems to trigger the tj.symcd.com connection

So ive been having a finew experience with windows and malwarebytes recently i updated firefox to firefox quantum, nothing suspicous has happened but just today everytime i start surfing in firefox i notice no sites are getting encrypted with https even with https everywhere which seemed weird, i go on with my day but then malwarebytes starts blocking connections and ip's and then comodo firewall starts showing me requests for downloading ccleaner, the ip's and domains were mostly: ftp.snt.utwente.nl, 130.89.149.20, tj.symcd.com, 23.58.43.27, driver.reimageplus.com, 161.47.7.14, gp.symcd.com, 23.4.43.27, the locations always detail program files mozilla so im confused what should i do i installed some more security tools to scan currently got nothing