ErikMouse

I just checked and I am using version 4.6.5 and it tells me Malwarebytes is up to date.

Hi, I had noticed climatejustice.rocks, which is a Mastodon instance server, is being detected as a trojan for some reason as of this morning. I have now added the website to the allow list, but for some reason, it is ignoring the allow list and still detecting the false positive.

I just did another scan just now and the files are still being detected as Malware.AI.3050113130 even after it checked for definition updates.

Hi, for some reason, Malwarebytes is detecting EC2003 (which is an e-mail cloaker I use to convert the characters of any e-mail address of mine into browser readable Unicode before putting it on any of my webpages to make it more difficult for spam extractor bots to harvest it for spamming purposes) as Malware.AI.3050113130 and I think that may be a false positive. I have attached the file and the saved report of the false detection to this post. fpreport070223.txt ec2003.zip

Hi, I recently noticed this from an automatic Malwarebytes scan that took place early this morning and it appears that it thinks NoMachine, which I have on all of my computers here and use to remotely connect with them as I only have one monitor (no room on desk for additional monitors), is Malware Sandbox 32 for some reason now. This has not happened with previous scans and I'm not sure why, but here is the log that I got of it. Malwarebytes www.malwarebytes.com -Log Details- Scan Date: 6/1/23 Scan Time: 5:05 AM Log File: 825eb0d2-005b-11ee-a1a2-04d4c458e8f6.json -Software Information- Version: 4.5.29.268 Components Version: 1.0.2022 Update Package Version: 1.0.70279 License: Premium -System Information- OS: Windows 10 (Build 19044.2965) CPU: x64 File System: NTFS User: System -Scan Summary- Scan Type: Threat Scan Scan Initiated By: Scheduler Result: Completed Objects Scanned: 384158 Threats Detected: 2 Threats Quarantined: 0 Time Elapsed: 16 min, 13 sec -Scan Options- Memory: Enabled Startup: Enabled Filesystem: Enabled Archives: Enabled Rootkits: Disabled Heuristics: Enabled PUP: Detect PUM: Detect -Scan Details- Process: 0 (No malicious items detected) Module: 0 (No malicious items detected) Registry Key: 1 Malware.Sandbox.32, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\NoMachine_is1, No Action By User, 32, 0, , , , , , Registry Value: 0 (No malicious items detected) Registry Data: 0 (No malicious items detected) Data Stream: 0 (No malicious items detected) Folder: 0 (No malicious items detected) File: 1 Malware.Sandbox.32, C:\PROGRAMDATA\NOMACHINE\VAR\UNINSTALL\UNINS000.EXE, No Action By User, 32, 0, 1.0.70279, 32, dds, 02321704, 0FF6B5D114D04EBCF20B7088B1FBD2EC, 4592ACE0921E3B856FB8D986C2B4AD6BC37FAEF6ED044C4DD2C48FC526FAD026 Physical Sector: 0 (No malicious items detected) WMI: 0 (No malicious items detected) (end)

Hi, I also have started getting the same issue here and IP address 172.253.63.128 kept coming up with Facebook Messenger App. Tried to whitelist that, but that doesn't work at all.

I have been seeing these results coming up for the last few days and not sure if they are false positives. Malwarebytes www.malwarebytes.com -Log Details- Scan Date: 11/19/21 Scan Time: 2:44 AM Log File: 86fcf732-490c-11ec-abf1-00248199f553.json -Software Information- Version: 4.4.10.144 Components Version: 1.0.1499 Update Package Version: 1.0.47353 License: Premium -System Information- OS: Windows 10 (Build 19043.1348) CPU: x64 File System: NTFS User: System -Scan Summary- Scan Type: Threat Scan Scan Initiated By: Scheduler Result: Completed Objects Scanned: 413801 Threats Detected: 5 Threats Quarantined: 0 Time Elapsed: 21 hr, 44 min, 41 sec -Scan Options- Memory: Enabled Startup: Enabled Filesystem: Enabled Archives: Enabled Rootkits: Disabled Heuristics: Enabled PUP: Detect PUM: Detect -Scan Details- Process: 0 (No malicious items detected) Module: 0 (No malicious items detected) Registry Key: 0 (No malicious items detected) Registry Value: 0 (No malicious items detected) Registry Data: 0 (No malicious items detected) Data Stream: 0 (No malicious items detected) Folder: 0 (No malicious items detected) File: 5 Malware.AI.4250219427, C:\USERS\ERIK\DROPBOX\EM DOWNLOADS\CDBXP_SETUP_4.5.5.5666.EXE, No Action By User, 1000000, 0, 1.0.47353, AEFCF624ED3D756BFD5533A3, dds, 01516684, F827A77C4A70F471E5C529D791A2B474, CF7111B02791994DB7F33E59F22DB47E0E5AC7F885173E9144B41B5FB034834A Malware.AI.4242822562, C:\USERS\ERIK\DROPBOX\EM DOWNLOADS\CDBXP_SETUP_4.5.5.5767.EXE, No Action By User, 1000000, 0, 1.0.47353, DCD93352AD0C0C57FCE455A2, dds, 01516684, A302F56DD2B4EBBB7090D66006510D9C, 656101CF1C72880055D1A1539F8738D909B69E85533F8E7FF27608187060B956 Malware.AI.4266496092, C:\USERS\ERIK\DROPBOX\EM DOWNLOADS\CDBXP_SETUP_4.5.6.5844.EXE, No Action By User, 1000000, 0, 1.0.47353, 8C3A5B33922D91ABFE4D905C, dds, 01516684, AC777821BCDE0A95D6DD09CA8C49E46D, 4E6F7A6A323EDC3D876027FB5D4020ED3CE017C866000FC9643318959903D0A9 PUP.Optional.DLLEscort, C:\USERS\ERIK\DROPBOX\EM DOWNLOADS\DLLESCORT_SETUP.EXE, No Action By User, 3497, 495034, 1.0.47353, , ame, , 9942CC13D0E4B6D309A05C8FDD521756, 7A214215F80B984A86B61A52FFA92C4E229A90F7F43B4B9550DA6E0EF91B7656 PUP.Optional.SpyHunter, C:\USERS\ERIK\DROPBOX\EM DOWNLOADS\SPYHUNTER-INSTALLER.EXE, No Action By User, 5075, 331753, 1.0.47353, , ame, , FF00E6F2FA487FC76629666127044DEA, 749321BA114A07F765587A29370CF0FCCECD4CEB3DAC31852DB7945CBF831D3D Physical Sector: 0 (No malicious items detected) WMI: 0 (No malicious items detected) (end)EM Downloads.zip

The following file, USB Disk Eject Utility, is now being flagged by Malwarebytes in a recent scan that took place earlier and I think it may be a false positive. Malwarebytes www.malwarebytes.com -Log Details- Scan Date: 8/21/21 Scan Time: 2:44 AM Log File: 3f0914f4-024b-11ec-9e31-00248199f553.json -Software Information- Version: 4.4.4.126 Components Version: 1.0.1413 Update Package Version: 1.0.44252 License: Premium -System Information- OS: Windows 10 (Build 19043.1165) CPU: x64 File System: NTFS User: System -Scan Summary- Scan Type: Threat Scan Scan Initiated By: Scheduler Result: Completed Objects Scanned: 401530 Threats Detected: 1 Threats Quarantined: 0 Time Elapsed: 2 hr, 10 min, 33 sec -Scan Options- Memory: Enabled Startup: Enabled Filesystem: Enabled Archives: Enabled Rootkits: Disabled Heuristics: Enabled PUP: Detect PUM: Detect -Scan Details- Process: 0 (No malicious items detected) Module: 0 (No malicious items detected) Registry Key: 0 (No malicious items detected) Registry Value: 0 (No malicious items detected) Registry Data: 0 (No malicious items detected) Data Stream: 0 (No malicious items detected) Folder: 0 (No malicious items detected) File: 1 Malware.Sandbox.1, C:\USERS\ERIK\DESKTOP\USB DISK EJECT UTILITY.EXE, No Action By User, 1, 0, 1.0.44252, 1, dds, 01386724, D52E1E14811A7BB2D72B30C8297D6AB6, B917F9A817FD29ED6B8FF8800290CA26CC1D159F1E4B9A2270E3395989D52D11 Physical Sector: 0 (No malicious items detected) WMI: 0 (No malicious items detected) (end) USB Disk Eject Utility.zip

Yep, reran the scan again a second time and its good to go on my end as well with no threats detected. -- Erik Mouse

Nope, doesn't appear to have been fixed. Malwarebytes www.malwarebytes.com -Log Details- Scan Date: 6/2/21 Scan Time: 11:43 PM Log File: dce55eec-c41d-11eb-9553-74e6e21b2de0.json -Software Information- Version: 4.4.0.117 Components Version: 1.0.1308 Update Package Version: 1.0.41257 License: Premium -System Information- OS: Windows 10 (Build 19042.985) CPU: x64 File System: NTFS User: DESKTOP-1U238FE\Dell -Scan Summary- Scan Type: Threat Scan Scan Initiated By: Manual Result: Completed Objects Scanned: 367399 Threats Detected: 2 Threats Quarantined: 0 Time Elapsed: 12 min, 28 sec -Scan Options- Memory: Enabled Startup: Enabled Filesystem: Enabled Archives: Enabled Rootkits: Disabled Heuristics: Enabled PUP: Detect PUM: Detect -Scan Details- Process: 0 (No malicious items detected) Module: 0 (No malicious items detected) Registry Key: 0 (No malicious items detected) Registry Value: 0 (No malicious items detected) Registry Data: 0 (No malicious items detected) Data Stream: 0 (No malicious items detected) Folder: 0 (No malicious items detected) File: 2 Malware.AI.544274959, C:\USERS\DELL\APPDATA\ROAMING\Microsoft\Windows\Recent\nj051b_en.lnk, No Action By User, 1000000, 0, , , , , 197FD167628B4B01909709DEBAF454C9, E6F5E4415FDCE4C229A6F9478ECD5B7130BB13ECCD25F633F040B6C2D9761F68 Malware.AI.544274959, C:\USERS\DELL\DESKTOP\ERIK MCDARBY BACKUP-7-12-2019\DOWNLOADS\NJ051B_EN.ZIP, No Action By User, 1000000, 0, 1.0.41257, 712A64504E72364C2070FA0F, dds, 01271851, 8CC5CBCC28D1D3999FC66F53521089E1, 77C4D8583CD04CFEEA5171CCBC50189C0C35847D89DDE8067EAC36617E4912B1 Physical Sector: 0 (No malicious items detected) WMI: 0 (No malicious items detected) (end) -- Erik Mouse

The following zipfile, which is an NES Emulator, is now being flagged by Malwarebytes in a recent scan that took place earlier and I think it may be a false positive. Malwarebytes www.malwarebytes.com -Log Details- Scan Date: 6/2/21 Scan Time: 2:35 AM Log File: c9e4bf92-c36c-11eb-82b7-74e6e21b2de0.json -Software Information- Version: 4.4.0.117 Components Version: 1.0.1308 Update Package Version: 1.0.41243 License: Premium -System Information- OS: Windows 10 (Build 19042.985) CPU: x64 File System: NTFS User: System -Scan Summary- Scan Type: Threat Scan Scan Initiated By: Scheduler Result: Completed Objects Scanned: 367377 Threats Detected: 1 Threats Quarantined: 0 Time Elapsed: 43 min, 56 sec -Scan Options- Memory: Enabled Startup: Enabled Filesystem: Enabled Archives: Enabled Rootkits: Disabled Heuristics: Enabled PUP: Detect PUM: Detect -Scan Details- Process: 0 (No malicious items detected) Module: 0 (No malicious items detected) Registry Key: 0 (No malicious items detected) Registry Value: 0 (No malicious items detected) Registry Data: 0 (No malicious items detected) Data Stream: 0 (No malicious items detected) Folder: 0 (No malicious items detected) File: 1 Malware.AI.544274959, C:\USERS\DELL\DESKTOP\ERIK MCDARBY BACKUP-7-12-2019\DOWNLOADS\NJ051B_EN.ZIP, No Action By User, 1000000, 0, 1.0.41243, 712A64504E72364C2070FA0F, dds, 01271851, 8CC5CBCC28D1D3999FC66F53521089E1, 77C4D8583CD04CFEEA5171CCBC50189C0C35847D89DDE8067EAC36617E4912B1 Physical Sector: 0 (No malicious items detected) WMI: 0 (No malicious items detected) (end) -- Erik Mouse nj051b_en.zip

The following files, IPVanish Installers, are now being flagged by Malwarebytes in a recent scan that took place earlier and I believe it is a false positive. Malwarebytes www.malwarebytes.com -Log Details- Scan Date: 5/15/21 Scan Time: 2:44 AM Log File: ffa1b96e-b548-11eb-831d-00248199f553.json -Software Information- Version: 4.3.0.98 Components Version: 1.0.1273 Update Package Version: 1.0.40414 License: Premium -System Information- OS: Windows 10 (Build 19041.985) CPU: x64 File System: NTFS User: System -Scan Summary- Scan Type: Threat Scan Scan Initiated By: Scheduler Result: Completed Objects Scanned: 368120 Threats Detected: 3 Threats Quarantined: 0 Time Elapsed: 1 hr, 38 min, 22 sec -Scan Options- Memory: Enabled Startup: Enabled Filesystem: Enabled Archives: Enabled Rootkits: Disabled Heuristics: Enabled PUP: Detect PUM: Detect -Scan Details- Process: 0 (No malicious items detected) Module: 0 (No malicious items detected) Registry Key: 1 Malware.AI.1618342247, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\IPVanish 3.2.5.1, No Action By User, 1000000, 0, , , , , , Registry Value: 0 (No malicious items detected) Registry Data: 0 (No malicious items detected) Data Stream: 0 (No malicious items detected) Folder: 0 (No malicious items detected) File: 2 Malware.AI.1618342247, C:\PROGRAMDATA\CAPHYON\ADVANCED INSTALLER\{3CAA8FE3-47C3-48F3-B773-D4F81C1D88B7}\IPVANISH-3.2.5.1.EXE, No Action By User, 1000000, 0, 1.0.40414, D043EA2D781E0B686075F167, dds, 01245743, D1539DDAF7C9C4D07B858350536740C3, 643EF51FA0AAD722027116988FC0D8B13BD794F9415713BAF8F2FA58424412A8 Malware.AI.1618342247, C:\USERS\ERIK\DOWNLOADS\IPVANISH-SETUP.EXE, No Action By User, 1000000, 0, 1.0.40414, D043EA2D781E0B686075F167, dds, 01245743, D1539DDAF7C9C4D07B858350536740C3, 643EF51FA0AAD722027116988FC0D8B13BD794F9415713BAF8F2FA58424412A8 Physical Sector: 0 (No malicious items detected) WMI: 0 (No malicious items detected) (end) -- Erik Mouse IPVanish.zip

The following file, Bitvise SSH Client Title Helper for Remote Desktop, is now being flagged by Malwarebytes in a recent scan that took place earlier and I believe it is a false positive. Malwarebytes www.malwarebytes.com -Log Details- Scan Date: 5/12/21 Scan Time: 2:44 AM Log File: 803eedac-b2ed-11eb-92fb-00248199f553.json -Software Information- Version: 4.3.0.98 Components Version: 1.0.1273 Update Package Version: 1.0.40336 License: Premium -System Information- OS: Windows 10 (Build 19041.928) CPU: x64 File System: NTFS User: System -Scan Summary- Scan Type: Threat Scan Scan Initiated By: Scheduler Result: Completed Objects Scanned: 368184 Threats Detected: 1 Threats Quarantined: 0 Time Elapsed: 9 hr, 38 min, 14 sec -Scan Options- Memory: Enabled Startup: Enabled Filesystem: Enabled Archives: Enabled Rootkits: Disabled Heuristics: Enabled PUP: Detect PUM: Detect -Scan Details- Process: 0 (No malicious items detected) Module: 0 (No malicious items detected) Registry Key: 0 (No malicious items detected) Registry Value: 0 (No malicious items detected) Registry Data: 0 (No malicious items detected) Data Stream: 0 (No malicious items detected) Folder: 0 (No malicious items detected) File: 1 Malware.AI.4241135184, C:\PROGRAM FILES (X86)\BITVISE SSH CLIENT\MSTSCTITLE.EXE, No Action By User, 1000000, 0, 1.0.40336, 33C537AD31A1B1C1FCCA9650, dds, 01241484, DFF98AC95FA88BD43543B00E2623BF82, 721392D48075A92AE0AD075972A68C23C44930A646F192B0AC16C3175A382BA6 Physical Sector: 0 (No malicious items detected) WMI: 0 (No malicious items detected) (end) -- Erik Mouse MstscTitle.zip

The following file, Android ADB API DLL of Coolmuster, a program that had I used to get call logs from my phone to my computer for an issue I'm dealing with, is now being flagged by Malwarebytes in a recent scan that took place earlier and I believe it is a false positive. Malwarebytes www.malwarebytes.com -Log Details- Scan Date: 5/12/21 Scan Time: 2:58 AM Log File: 69cd6560-b2ef-11eb-83a6-04d4c458e8f6.json -Software Information- Version: 4.3.3.116 Components Version: 1.0.1292 Update Package Version: 1.0.40336 License: Premium -System Information- OS: Windows 10 (Build 19042.928) CPU: x64 File System: NTFS User: DESKTOP-UU2B70G\MorphForest -Scan Summary- Scan Type: Threat Scan Scan Initiated By: Manual Result: Completed Objects Scanned: 354007 Threats Detected: 1 Threats Quarantined: 0 Time Elapsed: 5 min, 12 sec -Scan Options- Memory: Enabled Startup: Enabled Filesystem: Enabled Archives: Enabled Rootkits: Disabled Heuristics: Enabled PUP: Detect PUM: Detect -Scan Details- Process: 0 (No malicious items detected) Module: 0 (No malicious items detected) Registry Key: 0 (No malicious items detected) Registry Value: 0 (No malicious items detected) Registry Data: 0 (No malicious items detected) Data Stream: 0 (No malicious items detected) Folder: 0 (No malicious items detected) File: 1 Malware.AI.1365205273, C:\USERS\MORPHFOREST\APPDATA\ROAMING\COOLMUSTER\ADB\1.0.36\ADBWINAPI.DLL, No Action By User, 1000000, 0, 1.0.40336, B908E223069557E8515F6119, dds, 01241484, 5906E2EF1A14B6DA2A433B60AF6766C4, 82FA91058C3A20FD5094E743ABD6E77F2906992B93CCA548FC5F625EA90D65A0 Physical Sector: 0 (No malicious items detected) WMI: 0 (No malicious items detected) (end) -- Erik Mouse AdbWinApi.zip

The following file, Bitvise SSH Client control utility, is being flagged by Malwarebytes in a recent scan that took place earlier and I believe it is a false positive. Malwarebytes www.malwarebytes.com -Log Details- Scan Date: 5/9/21 Scan Time: 2:44 AM Log File: 01131f60-b092-11eb-90ed-00248199f553.json -Software Information- Version: 4.3.0.98 Components Version: 1.0.1273 Update Package Version: 1.0.40244 License: Premium -System Information- OS: Windows 10 (Build 19041.867) CPU: x64 File System: NTFS User: System -Scan Summary- Scan Type: Threat Scan Scan Initiated By: Scheduler Result: Completed Objects Scanned: 368093 Threats Detected: 1 Threats Quarantined: 0 Time Elapsed: 1 hr, 57 min, 4 sec -Scan Options- Memory: Enabled Startup: Enabled Filesystem: Enabled Archives: Enabled Rootkits: Disabled Heuristics: Enabled PUP: Detect PUM: Detect -Scan Details- Process: 0 (No malicious items detected) Module: 0 (No malicious items detected) Registry Key: 0 (No malicious items detected) Registry Value: 0 (No malicious items detected) Registry Data: 0 (No malicious items detected) Data Stream: 0 (No malicious items detected) Folder: 0 (No malicious items detected) File: 1 Malware.AI.1034690301, C:\PROGRAM FILES (X86)\BITVISE SSH CLIENT\BVSSHCTRL.EXE, No Action By User, 1000000, 0, 1.0.40244, F55DBB52679227D83DAC1EFD, dds, 01237282, B1140FC08F5816691E9BF34A0C357D2F, 662106A81945D635D2EA5D3C2196221889FDB5546281593E405FB5B9F6D689A9 Physical Sector: 0 (No malicious items detected) WMI: 0 (No malicious items detected) (end) -- Erik Mouse BvSshCtrl.zip

The following file is being flagged by Malwarebytes in a recent scan that took place earlier and I believe it is a false positive. Malwarebytes www.malwarebytes.com -Log Details- Scan Date: 4/20/21 Scan Time: 2:35 AM Log File: a9da2322-a1a2-11eb-bf4c-74e6e21b2de0.json -Software Information- Version: 4.3.0.98 Components Version: 1.0.1251 Update Package Version: 1.0.39611 License: Premium -System Information- OS: Windows 10 (Build 19042.928) CPU: x64 File System: NTFS User: System -Scan Summary- Scan Type: Threat Scan Scan Initiated By: Scheduler Result: Completed Objects Scanned: 399777 Threats Detected: 1 Threats Quarantined: 0 Time Elapsed: 39 min, 28 sec -Scan Options- Memory: Enabled Startup: Enabled Filesystem: Enabled Archives: Enabled Rootkits: Disabled Heuristics: Enabled PUP: Detect PUM: Detect -Scan Details- Process: 0 (No malicious items detected) Module: 0 (No malicious items detected) Registry Key: 0 (No malicious items detected) Registry Value: 0 (No malicious items detected) Registry Data: 0 (No malicious items detected) Data Stream: 0 (No malicious items detected) Folder: 0 (No malicious items detected) File: 1 Malware.AI.4269373521, C:\USERS\DELL\DOWNLOADS\GOMAUDIOGLOBALSETUP_NEW.EXE, No Action By User, 1000000, 0, 1.0.39611, 1EA3097D6CA89BB9FE797851, dds, 01209804, 6A0432183B83574B19E09A4A80BF2B05, 0F7BDF71DA79C076A297BE00AAB5FEE14756EF9E8482B92C97F21909DBE0D976 Physical Sector: 0 (No malicious items detected) WMI: 0 (No malicious items detected) (end) -- Erik Mouse GOMAUDIOGLOBALSETUP_NEW.zip

Today, when I went to run the Youtube By Click program to download a video I want to save from Youtube, Malwarebytes is suddenly showing a popup that it is blocking it as a Malware.AI.3679133883 detection which never happened before. I went into the quarentine to restore it and add it as an excemption for now. I then ran Youtube By Click without any issue and it had an update, so I went to update it and got another popup from Malwarebytes saying its updater V2 was also detected as Malware.AI.3679133883, so I had to add an exception to that as well for now and so far nothing else with it is getting detected. I think this is a false positive. YouTubeByClick.zip

I just noticed in my recent scan results, I was finding uTorrent being detected with the following log. Malwarebytes www.malwarebytes.com -Log Details- Scan Date: 2/16/19 Scan Time: 2:17 AM Log File: e24cd1c8-31ba-11e9-8d7a-00219b655bbe.json -Software Information- Version: 3.7.1.2839 Components Version: 1.0.538 Update Package Version: 1.0.9292 License: Premium -System Information- OS: Windows 10 (Build 17134.523) CPU: x64 File System: NTFS User: System -Scan Summary- Scan Type: Threat Scan Scan Initiated By: Scheduler Result: Completed Objects Scanned: 506435 Threats Detected: 2 Threats Quarantined: 2 Time Elapsed: 40 min, 46 sec -Scan Options- Memory: Enabled Startup: Enabled Filesystem: Enabled Archives: Enabled Rootkits: Disabled Heuristics: Enabled PUP: Detect PUM: Detect -Scan Details- Process: 0 (No malicious items detected) Module: 0 (No malicious items detected) Registry Key: 0 (No malicious items detected) Registry Value: 0 (No malicious items detected) Registry Data: 0 (No malicious items detected) Data Stream: 0 (No malicious items detected) Folder: 0 (No malicious items detected) File: 2 PUP.Optional.ASK.OPC, C:\USERS\MORPHFOREST\APPDATA\ROAMING\UTORRENT\UPDATES\3.4.1_31139.EXE, Quarantined, [12860], [639652],1.0.9292 PUP.Optional.ASK.OPC, C:\USERS\MORPHFOREST\DOWNLOADS\UTORRENT.EXE, Quarantined, [12860], [639652],1.0.9292 Physical Sector: 0 (No malicious items detected) WMI: 0 (No malicious items detected) (end) Also, the download to get uTorrent whether it is on download-new.utorrent.com or download-hr.utorrent.com is coming up as blocked due to adware. Malwarebytes www.malwarebytes.com -Log Details- Protection Event Date: 2/16/19 Protection Event Time: 3:18 AM Log File: 717b5b64-31c3-11e9-a94b-00219b655bbe.json -Software Information- Version: 3.7.1.2839 Components Version: 1.0.538 Update Package Version: 1.0.9292 License: Premium -System Information- OS: Windows 10 (Build 17134.523) CPU: x64 File System: NTFS User: System -Blocked Website Details- Malicious Website: 1 , , Blocked, [-1], [-1],0.0.0 -Website Data- Category: Adware Domain: download-new.utorrent.com IP Address: 67.215.238.66 Port: [65101] Type: Outbound File: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (end) Malwarebytes www.malwarebytes.com -Log Details- Protection Event Date: 2/16/19 Protection Event Time: 3:12 AM Log File: 8a69a4e2-31c2-11e9-b236-00219b655bbe.json -Software Information- Version: 3.7.1.2839 Components Version: 1.0.538 Update Package Version: 1.0.9292 License: Premium -System Information- OS: Windows 10 (Build 17134.523) CPU: x64 File System: NTFS User: System -Blocked Website Details- Malicious Website: 1 , , Blocked, [-1], [-1],0.0.0 -Website Data- Category: Adware Domain: download-hr.utorrent.com IP Address: 67.215.238.66 Port: [64992] Type: Outbound File: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (end) -- Erik

I have just noticed that I'm probably getting the same thing happening on my end. Malwarebytes www.malwarebytes.com -Log Details- Scan Date: 5/15/18 Scan Time: 2:38 AM Log File: eb9d3a56-5812-11e8-83a1-5cf9dd78775c.json Administrator: Yes -Software Information- Version: 3.5.1.2522 Components Version: 1.0.365 Update Package Version: 1.0.5108 License: Premium -System Information- OS: Windows 10 (Build 17134.48) CPU: x64 File System: NTFS User: System -Scan Summary- Scan Type: Threat Scan Scan Initiated By: Scheduler Result: Completed Objects Scanned: 378406 Threats Detected: 10 Threats Quarantined: 0 (No malicious items detected) Time Elapsed: 4 min, 54 sec -Scan Options- Memory: Enabled Startup: Enabled Filesystem: Enabled Archives: Enabled Rootkits: Disabled Heuristics: Enabled PUP: Detect PUM: Detect -Scan Details- Process: 0 (No malicious items detected) Module: 0 (No malicious items detected) Registry Key: 0 (No malicious items detected) Registry Value: 3 Trojan.Agent.Gen, HKU\S-1-5-21-3601196634-442716429-1945774807-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|AvastBrowserAutoLaunch_1088872FC4C2207C6D62AF0E8871CAAC, No Action By User, [1492], [223540],1.0.5108 Trojan.Agent.Gen, HKU\S-1-5-21-3601196634-442716429-1945774807-1002\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|AvastBrowserAutoLaunch_920BC566FD0E1900CF6C353DAC709935, No Action By User, [1492], [223540],1.0.5108 Trojan.Agent.Gen, HKU\S-1-5-21-3601196634-442716429-1945774807-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|AVASTBROWSERAUTOLAUNCH_BB1491518AFDD73BDE86A5C423599248, No Action By User, [1492], [223540],1.0.5108 Registry Data: 0 (No malicious items detected) Data Stream: 0 (No malicious items detected) Folder: 0 (No malicious items detected) File: 7 Trojan.Agent.Gen, C:\PROGRAM FILES (X86)\AVAST SOFTWARE\BROWSER\APPLICATION\AVASTBROWSER.EXE, No Action By User, [1492], [223540],1.0.5108 Trojan.Agent.Gen, C:\DOCUMENTS AND SETTINGS\PUBLIC\Desktop\Avast Secure Browser.lnk, No Action By User, [1492], [223540],1.0.5108 Trojan.Agent.Gen, C:\PROGRAMDATA\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk, No Action By User, [1492], [223540],1.0.5108 Trojan.Agent.Gen, C:\USERS\ADMIN\APPDATA\ROAMING\Microsoft\Internet Explorer\Quick Launch\Avast Secure Browser.lnk, No Action By User, [1492], [223540],1.0.5108 Trojan.Agent.Gen, C:\USERS\ADMIN\APPDATA\ROAMING\MICROSOFT\INTERNET EXPLORER\QUICK LAUNCH\User Pinned\StartMenu\Avast Secure Browser.lnk, No Action By User, [1492], [223540],1.0.5108 Trojan.Agent.Gen, C:\USERS\ADMIN\APPDATA\ROAMING\MICROSOFT\INTERNET EXPLORER\QUICK LAUNCH\User Pinned\TaskBar\Avast Secure Browser.lnk, No Action By User, [1492], [223540],1.0.5108 Trojan.Agent.Gen, C:\USERS\PUBLIC\DESKTOP\Avast Secure Browser.lnk, No Action By User, [1492], [223540],1.0.5108 Physical Sector: 0 (No malicious items detected) WMI: 0 (No malicious items detected) (end)