Envy14
-
Posts
22 -
Joined
-
Last visited
Content Type
Events
Profiles
Forums
Posts posted by Envy14
-
-
If the archive is not harmful, is it possible to be harmful after the installation (Like if a hidden trojan would be activated after the installation!)? Thank you.
-
-
Hi guys,
I download PCSX2 (PS2 Emulator) from the official website
https://pcsx2.net/
first, I scanned the file with Malwarebytes before I open it and there is no threat detection, after that, I scanned the file with VirusTotal and it gave me one trojan detection! (1 security vendor and no sandboxes flagged this file as malicious).
here is the link for the scan result https://www.virustotal.com/gui/file/2b18515ff69f3c69899f14b93d3fbe3080e71d0206f470e8f7cd89909eec7439
I read about this trojan and I found this info about it "Trojan-PSW programs are designed to steal user account information such as logins and passwords from infected computers. PSW is an acronym of Password ...".
So I was afraid to install it on my computer after I read this.
Why didn't Malwarebytes consider it as a threat, or it just a fulse postive from virus total. Please guys can you check this file for me.
Thanks in advance,
Marwan -
4 hours ago, Porthos said:
Yes, that is what fixed around here indicates. It was a FP.
Thank you so much.
-
27 minutes ago, Porthos said:
This has been fixed in version 1.0.50933 on MB4. Please update and rescan. Also restore from quarantine.
So, does that mean it is a false positive? are these files safe and not malicious?
-
Hello Guys,
today I scanned my 2 laptop devices, Malwarebytes found 6 various files in Visual Studio related folders named payload.vsix ,and with the full scan Malwarebytes detected another 8 files also in the visual studio related folders named NEWTONSOFT.JSON.DLL
is this a trojan or a Potential false positive?in the attachment, you will find the log file.
Thanks in advance.
-
Thank you so much, your help is greatly appreciated.
-
Thanks for all these explanations, So can I launch it without worrying about anything? because google chrome warned me again about it when I went to the website to redownload it (Maybe dangerous). can I ignore that too?
-
-
Hi there,
Today I bought a little 2D software for Texture dilation, I scanned the software before I launch it was clean but after that, I scanned it with the virus total gave me (1 security vendor flagged this file as malicious) ( was detected by Malwarebytes) so of course I was afraid to launch it.
how can I know whether it was a false positive or a real threat? and is it possible to send a private message to one of the staff to check whether it is a false positive or a real threat?
Thanks in advance,
-
-
About the quick scan, it takes from 5 to 20 minutes depends on how much data on my devices, and about the custom (full) scan my devices have about 400 to 750 GB of data.
So I understand that a full scan is not that necessary and a quick scan is enough to do the job.
-
Thank you so much for all these explanations, the custom scan finished within 27 hours.
-
22 hours ago, Porthos said:
Malwarebytes is not designed to function like normal AV scanners and uses a new kind of scan engine that relies mostly on heuristics detection techniques rather than traditional threat signatures. Malwarebytes is also designed to look in all the locations where malware is known to install itself/hide, so a full or custom scan shouldn't be necessary, especially on any sort of frequent basis (like daily), especially since the default Threat Scan/Quick Scan checks all loading points/startup locations, the registry, all running processes and threads in memory, along with all system folders, program folders and data folders as well as any installed browsers, caches and temp locations. This also means that if a threat were active from a non-standard location, because Malwarebytes checks all threads and processes in memory, it should still be detected. The only threat it *might* miss would be a dormant/inactive threat that is not actively running/installed on a secondary drive, however if the threat were executed then Malwarebytes should detect it. Additionally, whenever a new location is discovered to be used by malware the Malwarebytes Research team adds that location dynamically to the outgoing database updates so the locations that are checked by the default Threat/Quick Scan in Malwarebytes can be changed on the fly by Research without requiring any engine or program version updates/upgrades.
It is recommend rootkit be turned on only where there is an issue for removing something with the normal scan. Rootkit is slightly more dangerous as it has to disable some whitelisting to remediate some rootkits.
Maybe once a week if really want to use rootkit. But honestly we rarely see rootkit files anymore and the newer engine can remove most of them anyways even without rootkit on.
-
Hi all,
In one of my laptops, Malwarebytes detected some threats I deleted them and after that, I ran a custom (full) scan on all my laptops the custom (full) scan took about 12 to 14 hours, then after one day I ran a custom scan to all my laptops again but this time I took way too long right now it's on 25 hours and the scan is still not complete! knowing that I didn't add any more data I just ran it once again so what's the problem in your opinion?is a custom (full) scan is necessary in case of suspecting any threats or is a regular scan is enough!
P.S: the (scan for rootkits) is turned on both scans.
Thanks in advance.
-
3 hours ago, Porthos said:
It was just recently fixed within the last few hours. You can unquarantine it.
Thank you so much.
-
1 minute ago, Porthos said:
FP, update your database and re-scan.
My database is always up to date on all devices!
-
Hi,
Today I performed a scan with Malwarebytes for my four laptop devices and I had a file being flagged as infected: Trojan.Downloader, C:\PROGRAM FILES\WINRAR\DEFAULT.SFX.
is this a trojan or a Potential false positive?
in the attachment you will find the log file.
Thanks.
-
1
-
-
Thanks a lot.
-
I checked the link with (VirusTotal) and it was clean! please help me with this problem I can't downloading any of my files that I uploaded previously on Mega cloud drive.
also, I added the website to (allow list) from MBG setting and (Disable protections) for the scams also the same issue even if I close and reopen the chrome browser!!!
-
Hello,
Malwarebytes Browser Guard blocked any downloaded files from
https://mega.nz/, I'm using mega.nz to upload my personal files and before uploading any of them I scan with malwarebytes, the problem is when I come to download any of my files Malwarebytes Browser Guard block the file and tell me that there is a scam in the website.
I think it is a false positive because I used the MEGA for 2 years without any issues check it.
Regards,
PCSX2 has (Trojan.PSW.Disco.fsx)!
in File Detections
Posted
Thank you so much!