Jump to content

Costa-VA

Members
  • Posts

    17
  • Joined

  • Last visited

Reputation

0 Neutral
  1. Excellent news, thank you Armando! Topic closed in my book. 🙂
  2. Hi, the need to get this addressed is time sensitive, I've started a new job and need to BYOD, etc. Trying to confirm why Malwarebytes is alerting on this file so I can decide to proceed or not. Thank you
  3. I'm attempting to install Phoneleash from the Android Play Store. As the trial version is installed Malwarebytes alerts claiming a single file isinfected, com.gearandroid.phoneleashfree. Has anyone confirmed it is a true malware file of a harmful nature or what most trial programs are, a reminder/nag to buy the full product? Thanks in advance for your help, I couldn't find anything on the site searching for Phoneleash.
  4. Thanks, checking it out now. Looks like it is the replacement for the older toolset so I'll have 'fun' digging into it. Appreciate the assist, best to you!
  5. Hum, OK. Checked to validate setting, it's Auto, not delayed. What is the current toolset being used to see the sequence of Startup? Been too long that MS has hidden that info and I've not had to dig for it. Sure would be nice to be able to sequence how things load... After this I'll close the topic so as not to add too much noise to the forum, and it doesn't appear to be security impacting. Thanks again for the insights/assist!
  6. Thank you. I attempted the change as I agree on the timing factor as the principle trigger. I turned off the fast startup, only item left (sleep and hibernation were already off). That made a change, the notice doesn't pop up until at least a minute or two later rather than already flagged upon user login to the system. In case the last Win10Pro update modified the Hibernation function I searched for hyberfil.sys, doesn't seem to exist on the system. Are you aware of any other cache that would keep drivers, etc. stored for the OS that is not typically advertized/communicated to users? I'm using an SSD for the system drive, Samsung, so I'm now digging into any potential cache config Magician is using that could be a stealth file. Given all this digging into Windows, my primary curiosity remains, why did this not exist prior to 4.3? Not that it has to be a bug in 4.3, could be tightening up sequences, etc. to better comply with MS architecture/structure. Wouldn't be the first time MS redacts older shortcuts that then create new problems. 😏
  7. Hello? Thanks for the first quick reply, can you help me with the connection between automatic updates and why that impacts the program causing it to trigger the Windows Firewall notice at startup? Is there something going on with the selection/option the title doesn't quite tell we users about the process? Does it cause a sequence problem during Startup? I don't use it because of all the challenges I've had with each and every update since 4.0, so I have it notify me of updates only. Then I select a time where I can spend an hour updating the program. First trying the in-program update process, then shifting to the support tool, gathering logs, etc. process to get the program to update. So I would like to know what is actually happening behind the Option.
  8. So educate me please on what not automatically downloading updates has to do with the interference with Windows Firewall, triggering the notifications.
  9. The primary issue is the Firewall, not the default of registering with Windows which was resolved after the first time of turning off the Register switch. On the Logs side of life and the support tool; I have only been able to get updates completed since 4.0 by using the support tool. Here is the Results text file only 'mbst-fix-results.txt'. I have the logs from the update conducted for 4.2.3 attached, I didn't run logs until just now to reply to this email. I just did it and that file (attached) has no date in the name of the results and is the full zip file. mbst-fix-results.txt mbst-grab-results-201101.zip mbst-grab-results.zip
  10. Since updating to 4.3 I receive a notice from Windows 10 Pro every time I start my system saying I need to turn on Windows Firewall. When checking Windows Security Center, the three firewall options all show the firewall active. Hopefully that status is accurate and this is a startup sequence timing issue and not a false report of Firewall status triggered by 4.3. One related symptom of 4.3 update which has an easy workaround; the default option for Malwarebytes registering with Windows Security Center changed to being on instead of off. It does remain off once changed by the user.
  11. Hi, Is there a link for the 3.8.3 version so we can do a fresh installation? I am getting a constant pop up from my current 3.8.3 telling me to upgrade to 4x. I had hit download for 4.x when it hit the street however I didn't do the upgrade so the program is stuck in a state of upgrading and I am tired of hitting close every few minutes. Thanks, Costa
  12. Kevin, Thank you, I appreciate your response. We can close this topic, I've already used other programs to clean the system and have restored it plus repaired Malwarebytes as this was required. The PC is back up and fine. Thanks, Costa
  13. Kevin, Thank you for replying, however your cut/paste of the forum pinned post I referred to as having already read in my original post seems to indicate you didn't read my original post. Please let me know how best to communicate with you so we can move forward, or if you are overloaded but still attempting to assist I appreciate it, just let me know. Thanks, Costa
  14. Hello, I have a system with current Malwarebytes Premium 3.8.3 installed. It appears to have been hit with malware. During browsing a page showed up with a fake page stating Mozilla Firefox had a problem and provided a fake Microsoft number for the user to call. The LAN cable was pulled immediately and a full scan with Windows Defender was run that took 7 minutes, then the Malwarebytes scan hung up during the files scan segment and won't progress. I read the pinned info 'I'm infected...' and downloaded FRST and ran it however I'm concerned the malicious program could embed itself to the files on the USB drive created post-FRST. Putting that drive into a network connected system could allow replication/migration to all the other PCs and Servers on the LAN. Is there another way to provide info to Malwarebytes for our next steps processes? System is a Windows 10 Pro, current on patches for the OS, FF Browser, Malwarebytes, Defender, etc. What additional information will be beneficial to get this process moving forward to remove the infection? I have access to multiple programs I normally run offline on suspect systems, e.g. RogueKiller, Malwarebytes, Hitman Pro, ESET, Emisoft Emergency Kit, and on rare occassions, Power Eraser. I can rewire my entire LAN and bypass the network switches putting the infected system directly into the WAN Router by itself to then upload files to this message. I just find it interesting it is recommended an infected computer remain connected and then to set up a session with your forum system. I await your advice before moving forward. BTW, I'm USA East Coast time zone, just to assist in expectations of responses, etc.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.