FranClod
-
Posts
10 -
Joined
-
Last visited
Content Type
Events
Profiles
Forums
Posts posted by FranClod
-
-
But it's not a malware. I've had some good result with it and got it from Firefox website. Why is it a PUP?
-
From my log:
Protection, 4/4/2014 7:49:14 AM, SYSTEM, PARIAHPRESS-PC, Protection, Malware Protection, Starting,
Protection, 4/4/2014 7:49:14 AM, SYSTEM, PARIAHPRESS-PC, Protection, Malware Protection, Started,
Protection, 4/4/2014 7:49:14 AM, SYSTEM, PARIAHPRESS-PC, Protection, Malicious Website Protection, Starting,
Protection, 4/4/2014 7:49:43 AM, SYSTEM, PARIAHPRESS-PC, Protection, Malicious Website Protection, Started,
Update, 4/4/2014 2:05:03 PM, SYSTEM, PARIAHPRESS-PC, Scheduler, Malware Database, 2014.4.3.11, 2014.4.4.5,
Protection, 4/4/2014 2:05:04 PM, SYSTEM, PARIAHPRESS-PC, Protection, Refresh, Starting,
Protection, 4/4/2014 2:05:04 PM, SYSTEM, PARIAHPRESS-PC, Protection, Malicious Website Protection, Stopping,
Protection, 4/4/2014 2:05:04 PM, SYSTEM, PARIAHPRESS-PC, Protection, Malicious Website Protection, Stopped,
Protection, 4/4/2014 2:05:08 PM, SYSTEM, PARIAHPRESS-PC, Protection, Refresh, Success,
Protection, 4/4/2014 2:05:08 PM, SYSTEM, PARIAHPRESS-PC, Protection, Malicious Website Protection, Starting,
Protection, 4/4/2014 2:05:09 PM, SYSTEM, PARIAHPRESS-PC, Protection, Malicious Website Protection, Started,
Detection, 4/4/2014 2:29:40 PM, pariahpress, PARIAHPRESS-PC, Protection, Malware Protection, File, PUP.Optional.HotMailWatcher.A, C:\Users\pariahpress\AppData\Roaming\Mozilla\Firefox\Profiles\mzzsmc8q.default-1356549169109\extensions\hotmailwatcher@sonthakit.xpi, Allow, [e96c79adf9828ea8b86516474db5916f]Now I didn't have a problem with it this morning before the update. I used Firefox and didn't get any error...
After the update: Got the warning.... Please check?
Thank you
-
I am not showing this currently detected. We did have a fp for this def yesterday so its possible its already fixed.
The tarma ones if that is something u use u can add that to the ignore list.
Already took care of the tarma ones. Rescanned the DogLua.exe file and it's not malicious. Just a false positive. I also updated the database to the latest version (about 2 hours after my last and latest update).
Thank you.
-
Here's the file requested. I only hope that it's not a malaware. ThanksDogLuaFile.zipDogLuaFile.zip
-
Received this notice a few hours ago:
Copied and pasted from the log file:
2013/08/16 10:51:11 -0400 DETECTION C:\Program Files (x86)\Howler\DogLua.exe Trojan.Inject.NR QUARANTINE
Before this, no notice. My antivirus scan shows no analomy. Could this be a false positive after the last update?
This is Project DogWaffler Howler.
Also:
Malwarebytes Anti-Malware (PRO) 1.75.0.1300
www.malwarebytes.org
Database version: v2013.08.16.05
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16660
Protection: Enabled
8/16/2013 1:50:44 PM
MBAM-log-2013-08-16 (13-56-21).txt
Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 297067
Time elapsed: 4 minute(s), 58 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{CC8445A0-F7C7-42F4-A01F-BFE517676756} (PUP.Optional.Tarma.A) -> No action taken.
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 2
C:\ProgramData\InstallMate\{CC8445A0-F7C7-42F4-A01F-BFE517676756}\Setup.exe (PUP.Optional.Tarma.A) -> No action taken.
C:\ProgramData\InstallMate\{CC8445A0-F7C7-42F4-A01F-BFE517676756}\TsuDll.dll (PUP.Optional.Tarma.A) -> No action taken.
(end)
Please advise -
This site was not listed as being a unsafe by either hpHost or Sucuri SiteCheck So why is Malwarebytes blocking it? I had been on the site last month and the week before last and I didn't get any warnings. Yesterday and today, I'm getting these pop up from Malwarebyes and Firefox saying that it's an unsafe site and it's blocked. Why? Anway, just thought you should be made aware of it. (BTW my AVG Internet Suite Link Shield didn't give me any warnings either)
-
I downloaded this morning the latest update and turned on the protection. After that window hangs. Had to do a cold reboot. Thought it was a fluke. After rebooting, the same thing happened when I turned on the protection. So I had to do a restore to a day before. It's now working again. Just thought I would report it to you guys. Please check it out. Thank you.
-
Why is postimage.org blocked??? It's a website that has been given green lights by WOT and McAfee. Digital artists and hobbyists post their art works on the free image hosting site temporarily to either demostrate or show off their technique without the fuss and bother of opening an online gallery.
-
Sadly, this is not an F/P. This one is blocked due to malware hosted at pvztbc61.vz.motive.com
Has this been corrected since then? Has anybody notified motive.com about the triggering and the malaware at that IP address?
Possible False Positive
in File Detections
Posted
Thank you.