phsampaio

Thanks. I restored the files, ran a new scan an no flag. The issue was solved!

Thanks for the quick reply. Before I scan everyday, I always update first, although I just noticed my malwarebytes was not updated to the latest version. I just updated and ran a new scan. No new files were detected, although those are still in quarantine. Also, is it safe for me to get them out of quarantine and then run a new scan?

Malwarebytes www.malwarebytes.com -Log Details- Scan Date: 3/7/22 Scan Time: 3:15 AM Log File: 0cccc3b2-9dde-11ec-b14b-50e08501c0ec.json -Software Information- Version: 4.5.4.168 Components Version: 1.0.1599 Update Package Version: 1.0.51989 License: Premium -System Information- OS: Windows 10 (Build 19044.1526) CPU: x64 File System: NTFS User: System -Scan Summary- Scan Type: Threat Scan Scan Initiated By: Scheduler Result: Completed Objects Scanned: 336029 Threats Detected: 6 Threats Quarantined: 6 Time Elapsed: 5 hr, 28 min, 20 sec -Scan Options- Memory: Enabled Startup: Enabled Filesystem: Enabled Archives: Enabled Rootkits: Disabled Heuristics: Enabled PUP: Detect PUM: Detect -Scan Details- Process: 0 (No malicious items detected) Module: 0 (No malicious items detected) Registry Key: 0 (No malicious items detected) Registry Value: 0 (No malicious items detected) Registry Data: 0 (No malicious items detected) Data Stream: 0 (No malicious items detected) Folder: 0 (No malicious items detected) File: 6 Malware.AI.1000209589, C:\WINDOWS\ASSEMBLY\GAC\MICROSOFT.DIRECTX.DIRECT3D\1.0.2902.0__31BF3856AD364E35\MICROSOFT.DIRECTX.DIRECT3D.DLL, Quarantined, 1000000, 0, 1.0.51989, C5E5DFC407B7FE803B9DFCB5, dds, 01672024, 7AD4D9FABD109432EED91B359CEAE430, F3359D5E41B1D4FEC7230579A593E40FE44F6AFDFACD1E2BBE52EE06D84686FB Malware.AI.3253884480, C:\WINDOWS\ASSEMBLY\GAC\MICROSOFT.DIRECTX.DIRECT3DX\1.0.2908.0__31BF3856AD364E35\MICROSOFT.DIRECTX.DIRECT3DX.DLL, Quarantined, 1000000, 0, 1.0.51989, 0A5A27A48335A303C1F25640, dds, 01672024, 43C280C3B15CEB2472AB560D09629664, BEBBC40CA25EF22E9D16B0DE1123E0CB0444FE7A78B4F0B4395BDFD81618698C Malware.AI.3253884480, C:\WINDOWS\ASSEMBLY\GAC\MICROSOFT.DIRECTX.DIRECT3DX\1.0.2909.0__31BF3856AD364E35\MICROSOFT.DIRECTX.DIRECT3DX.DLL, Quarantined, 1000000, 0, 1.0.51989, 0A5A27A48335A303C1F25640, dds, 01672024, 490807C150B7D8BE44BDE871F4DF8C56, 36A21FC4F4C8F6BA4AD900613EE1B08FF43F2545585A2601C9FC4CF083D68A77 Malware.AI.3253884480, C:\WINDOWS\ASSEMBLY\GAC\MICROSOFT.DIRECTX.DIRECT3DX\1.0.2910.0__31BF3856AD364E35\MICROSOFT.DIRECTX.DIRECT3DX.DLL, Quarantined, 1000000, 0, 1.0.51989, 0A5A27A48335A303C1F25640, dds, 01672024, 933085360527DE1B4947289CA468184E, 78D85F0E2CB7D7BDE534222F4EBFEA1C9E06D37ECD3BB7EBD59E35F00B94B11D Malware.AI.3253884480, C:\WINDOWS\ASSEMBLY\GAC\MICROSOFT.DIRECTX.DIRECT3DX\1.0.2911.0__31BF3856AD364E35\MICROSOFT.DIRECTX.DIRECT3DX.DLL, Quarantined, 1000000, 0, 1.0.51989, 0A5A27A48335A303C1F25640, dds, 01672024, 25C76C1E29D3E8E7398F0901F558A629, 2EE41D4D591A39D648E90DB4D47D0FA0557FD68197756EE2EE94FCDE4D820CFA Malware.AI.1000209589, C:\WINDOWS\ASSEMBLY\GAC\MICROSOFT.DIRECTX.DIRECTPLAY\1.0.2902.0__31BF3856AD364E35\MICROSOFT.DIRECTX.DIRECTPLAY.DLL, Quarantined, 1000000, 0, 1.0.51989, C5E5DFC407B7FE803B9DFCB5, dds, 01672024, 46F26E2BAFD44960E7F13B2EF80AA0BC, 489F65E1E00534835486E9255EEC92B83EDAE4DADE6DFF867A380859AE53006A Physical Sector: 0 (No malicious items detected) WMI: 0 (No malicious items detected) (end)

I've just ran my daily check-up of malware, and suddenly there is this flag of six MICROSOFT.DIRECTX.DIRECT3D.DLL files. I immediately quarantined the files. Should I be worried or is this a propable false flag? In case it's a real threat, how should I proceed? Find attached the report. report 07-03-2022.txt

Thank you!

I did exactly as you said it, and it now opens normally. I even checked if there were any macros in the excel files, just to be sure, but there are none. Any idea why did this happen? I haven't changed any settings in Malwarebytes

Hello, I'm using Excel files to analyse exome sequencing data. Just tables with filters, no macros or anything. Those files were generated using AnnoVar, etc. Been using those files daily for a few months, nothing special. Since today, I've been unable to open them, as Malwarebytes flags them as malware and blocks the file from opening. I scan the files, no malware detected. Not all files affected, some unrelated Excel files (from other sources) open normally. Malwarebytes www.malwarebytes.com -Log Details- Protection Event Date: 10/24/20 Protection Event Time: 7:03 PM Log File: ca685ecc-1644-11eb-b62d-98fa9b9b7cf4.json -Software Information- Version: 4.2.1.89 Components Version: 1.0.1070 Update Package Version: 1.0.31944 License: Premium -System Information- OS: Windows 10 (Build 18362.1139) CPU: x64 File System: NTFS User: System -Exploit Details- File: 0 (No malicious items detected) Exploit: 1 Malware.Exploit.Agent.Generic, , Blocked, 0, 392684, 0.0.0, , -Exploit Data- Affected Application: Microsoft Office Excel Protection Layer: Application Behavior Protection Protection Technique: Exploit payload macro process blocked File Name: URL: (end) Is this a false positive? Should I be worried? Is there anyway to open the file with macros disabled (even though I think there were no macros associated with those files)? Thanks in advance log file.txt

Thank you, I'll take a look. I already disabled push notifications in Chrome. I'll be vigilant in the next few days, and let you know if something amiss reappears. Cheers! Pedro

Thank you for the kind and quick reply! My name is Pedro! Just to be clear, before your response, I did again the previous routine of turning sync off in Chrome, reseted sync, and then deleted my whole history (Ctrl+shift+del on Chrome). This time I logged off from my wife's PC (I forgot I was logged to Chrome there) and in my mobile as well. Then turned sync on again. I then received your response and did everything you said to do. Ran Adwcleaner and all, step by step. It only detected preinstalled software but no PUPs. Please find the results atached. Do you think the problem may be solved? Thanks again Pedro AdwCleaner[S00].txt

I need help. Since yesterday, I started having PUPs showing in scans from Malwarebytes. The only thing I did differently in the past few days, was to install the YouTube Music app through Chrome. The first result.txt file is the first detection I had. I quarantined the files and then proceeded to delete them. Then I turned sync off in Chrome, cleared sync, and then deleted my history from the past 7 days (Ctrl+shift+del on Chrome). Then turned sync on again. I run a second scan with Chrome closed, and again I have positive PUPs results (result2.txt). Can anyone help me? Are those false positives or should I be worried? Thanks in advance. result.txt result2.txt

So, for us illiterates, is a false positive? Nothing we should be worried then? In any case, thanks for the quick reply!

Hello, first time here. I have Malwarebytes regularly updated (current version 4.0.4). Since today, it started showing repeatedly the following blocking messages: Blocked website Domain: ipv4.login.msa.akadns6.net Category: Phishing File: C:\Windows32\svchost.exe I did a thorough scan (including files), and nothing came out of it. It shows as I'm not infected. Any ideas of how to solve this? Am I infected??? I attached the scan and report files. Report-blocked website.txt Scan report.txt