Jump to content

seventhcube2832

Members
  • Content Count

    3
  • Joined

  • Last visited

About seventhcube2832

  • Rank
    New Member
  1. The directory for Malwarebytes looks correct and is in the right place but I don't seem to think Malwarebytes is malware and could possibly be a false positive. I would just exclude Malwarebytes from scans personally but a staff member would know much more about the problem and let them post a comment here
  2. ok thanks, il create a restore point just in case anything goes haywire and see how it goes
  3. so i did a normal scan and came across 12 problems, 4 PUP's and 8 Malware. here are the results: Malwarebytes www.malwarebytes.com -Log Details- Scan Date: 12/14/17 Scan Time: 12:38 PM Log File: a1e0e58e-e0cb-11e7-b31b-3065ec17b5c3.json Administrator: Yes -Software Information- Version: 3.3.1.2183 Components Version: 1.0.262 Update Package Version: 1.0.3488 License: Free -System Information- OS: Windows 10 (Build 16299.125) CPU: x64 File System: NTFS User: MARKS-PC\mark -Scan Summary- Scan Type: Threat Scan Result: Completed Objects Scanned: 356187 Threats Detected: 12 Threats Quarantined: 0 (No malicious items detected) Time Elapsed: 26 min, 46 sec -Scan Options- Memory: Enabled Startup: Enabled Filesystem: Enabled Archives: Enabled Rootkits: Enabled Heuristics: Enabled PUP: Detect PUM: Detect -Scan Details- Process: 0 (No malicious items detected) Module: 0 (No malicious items detected) Registry Key: 6 PUP.Optional.IFEO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\SKYPE.EXE, No Action By User, [8727], [239345],1.0.3488 RiskWare.IFEOHijack, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\sandboxieinstall64.exe, No Action By User, [650], [249743],1.0.3488 RiskWare.IFEOHijack, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\START.EXE, No Action By User, [650], [249840],1.0.3488 PUP.Optional.IFEO, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\SKYPE.EXE, No Action By User, [8727], [239345],1.0.3488 RiskWare.IFEOHijack, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\sandboxieinstall64.exe, No Action By User, [650], [249743],1.0.3488 RiskWare.IFEOHijack, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\START.EXE, No Action By User, [650], [249840],1.0.3488 Registry Value: 6 PUP.Optional.IFEO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\SKYPE.EXE|DEBUGGER, No Action By User, [8727], [239345],1.0.3488 RiskWare.IFEOHijack, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\sandboxieinstall64.exe|DEBUGGER, No Action By User, [650], [249743],1.0.3488 RiskWare.IFEOHijack, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\START.EXE|DEBUGGER, No Action By User, [650], [249840],1.0.3488 PUP.Optional.IFEO, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\SKYPE.EXE|DEBUGGER, No Action By User, [8727], [239345],1.0.3488 RiskWare.IFEOHijack, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\sandboxieinstall64.exe|DEBUGGER, No Action By User, [650], [249743],1.0.3488 RiskWare.IFEOHijack, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\START.EXE|DEBUGGER, No Action By User, [650], [249840],1.0.3488 Registry Data: 0 (No malicious items detected) Data Stream: 0 (No malicious items detected) Folder: 0 (No malicious items detected) File: 0 (No malicious items detected) Physical Sector: 0 (No malicious items detected) (end) Not sure what to exclude or remove because START.exe seems to me that it's a windows component
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.