Jump to content

Porthos

Trusted Advisors
  • Content Count

    10,271
  • Joined

Everything posted by Porthos

  1. We need to get information from this machine in order to have the proper detail to help you forward. NOTE: The tools and the information obtained is safe and not harmful to your privacy or your computer, please allow the programs to run if blocked by your system and is only available to authorized members and the original poster Can you please follow the directions from the following KB article and post back your logs so that we can review Upload Malwarebytes Support Tool logs manually
  2. You have 360 Total Security installed. This application is known to prevent Malwarebytes from being able to install and function. Removing it should allow you to get Malwarebytes installed. Once that is done you may try reinstalling 360 Total Security and creating exclusions between the two applications but I do not know for certain that they will be able to work together. The items to exclude in 360 Total Security for Malwarebytes can be found in this support article. Be sure to exclude them from the real-time protection components in 360 Total Security. You should also exclude 360 Total Security's program folder (most likely located under C:\Program Files and/or C:\Program Files (x86)) from Malwarebytes by following the instructions under the Allow a file or folder section of this support article and you should do the same for 360 Total Security's primary data folder which is most likely located under C:\ProgramData. Please let us know how it goes and if the issue is resolved or not.
  3. Sounds like a possible FP with the exploit protection. Could you do the following so we can get a better look. We need to get information from this machine in order to have the proper detail to help you forward. NOTE: The tools and the information obtained is safe and not harmful to your privacy or your computer, please allow the programs to run if blocked by your system and is only available to authorized members and the original poster Can you please follow the directions from the following KB article and post back your logs so that we can review Upload Malwarebytes Support Tool logs manually If you're unable to run the tool, please try to right-click over the Malwarebytes tray icon and exit out of the program. Then run the following scanning tool for us and we'll review these logs instead to see how we can assist you further. Please download Farbar Recovery Scan Tool and save it to your desktop. Note: You need to run the version compatible with your system. You can check here if you're not sure if your computer is 32-bit or 64-bit Double-click to run it. When the tool opens click Yes to disclaimer. Press the Scan button. It will make a log (FRST.txt) in the same directory the tool is run. Please attach it to your reply. The first time the tool is run, it also makes another log (Addition.txt). Please attach it to your reply as well. Thank you
  4. It is up to you especially if you wish to remain on Windows 7. All my computer are on 10 and my clients as well. So we have Windows Defender that works with Malwarebytes with no issue. If you wish to continue to use both. I would recommend creating exclusions between Malwarebytes and Your AV to help prevent any possible conflicts or performance issues. Please add the items listed in this support article to Your AV 's allow list(s)/trust list(s)/exclusion list(s) particularly for any of its real-time protection components and likewise add Your AV 's program folder(s) (likely located under C:\Program Files and/or C:\Program Files (x86)) to Malwarebytes' Allow List using the method described under the Allow a file or folder section of this support article and do the same for its primary data folder which is likely located under C:\ProgramData (you may need to show hidden files and folders to see it). The protection you use is not as important as keeping an IMAGE backup of your system on at least a monthly basis to an external drive that is only connected when making the image. Macrium Reflect free is a good free program for this.
  5. If my translation is correct it is an incoming block. This just means Malwarebytes is just doing its job. If you want to be certain that the system is clean, we do offer free assistance by trained and vetted malware removal specialists. If you wish they can analyze your system for you and guide you in removing any threats that might be present as well as help to troubleshoot the issues you're experiencing. To work with them, simply read and follow the instructions in this topic, skipping any steps you are unable to complete, then creating a new topic in our malware removal area by clicking here and one of our malware removal specialists will assist you as soon as one is available.
  6. The info was added for staff since you posted in the wrong section. Don't worry staff will get to it. Mb is not the only one flagging your site. https://www.virustotal.com/gui/url/1f600d9248a2529e6de54fc174fcce1cbc4eaab154e27e88e0ae1b6ff4773a97/detection At a glance it might be a FP but since I am not staff I have no say.
  7. If it does not get stopped by Malwarebytes you are out of luck unless you have a backup or there is a decrypt-er for the variant you were infected with.
  8. Also blocked by the main program as well. pasadenacf.org.txt
  9. Main Web protection is hitting on the site as well. Malwarebytes www.malwarebytes.com -Log Details- Protection Event Date: 4/6/20 Protection Event Time: 2:56 PM Log File: c370816e-7840-11ea-aa85-001a7dda7102.json -Software Information- Version: 4.1.0.56 Components Version: 1.0.867 Update Package Version: 1.0.22032 License: Premium -System Information- OS: Windows 10 (Build 19041.153) CPU: x64 File System: NTFS User: System. @Zynthesist -Blocked Website Details- Malicious Website: 1 , C:\Program Files\Mozilla Firefox\firefox.exe, Blocked, -1, -1, 0.0.0 -Website Data- Category: Trojan Domain: twinkvideos.com IP Address: 104.26.9.153 Port: 80 Type: Outbound File: C:\Program Files\Mozilla Firefox\firefox.exe (end)
  10. 2 things, 1 You still have fast start enabled (see previous post) 2 You have a restart pending. Please restart.
  11. You have an issue with WMI. It affects more than just Malwarebytes. Open the support tool and choose Advanced and follow the screenshot below and check all the check-boxes and click start repair. After the computer reboots, Try to reinstall Malwarebytes again. I suggest using the offline installer. 1. Download the offline installer from : https://downloads.malwarebytes.com/file/mb4_offline 2. Run the installer Can you please let me know if that worked ?
  12. Laptop fans can get dirty/clogged rather quickly depending on the household situation. For an example pets, smokers and other dusty environments can clog fans rather fast. Laptops should always be operated on a hard flat surface so that the intake is not blocked as well.
  13. Give staff time to reevaluate your site and verify it is clear now.
  14. It is hard to tell why you are having issues and others are not with out the logs from post #2. Please run the tool and attach the resulting zip file.
  15. I sincerely hope you have a backup of your data. Stay safe and healthy. Best wishes.
  16. We need to get information from this machine in order to have the proper detail to help you forward. NOTE: The tools and the information obtained is safe and not harmful to your privacy or your computer, please allow the programs to run if blocked by your system and is only available to authorized members and the original poster Can you please follow the directions from the following KB article and post back your logs so that we can review Upload Malwarebytes Support Tool logs manually
  17. Since the .jope extension is the newest variant to be released, there is not much anyone can do at the moment. There is an ongoing discussion in this topic where victims can post comments, ask questions and seek further assistance. Other victims have been directed there to share information, experiences and suggestions. STOP Ransomware (.STOP, .Puma, .Djvu, .Promo, .Drume) Support Topic Rather than have everyone with individual topics, it would be best (and more manageable for staff of all forums) if you posted any more questions, comments or requests for assistance in the above support topic discussion...it includes experiences by experts, IT consultants, victims and company representatives who have been affected by ransomware infections.
  18. Always do my best when I can and not be intrusive when I assist in this section. 🙂
  19. It is a good add on even if you are not experiencing the issue and for those that are after it is fixed. It does more that the web protection does. Stay safe and healthy.
  20. Malwarebytes www.malwarebytes.com -Log Details- Protection Event Date: 4/6/20 Protection Event Time: 2:55 AM Log File: f2b54d98-77db-11ea-8ad5-001a7dda7102.json -Software Information- Version: 4.1.0.56 Components Version: 1.0.867 Update Package Version: 1.0.22000 License: Premium -System Information- OS: Windows 10 (Build 19041.153) CPU: x64 File System: NTFS User: System -Blocked Website Details- Malicious Website: 1 , C:\Program Files\Mozilla Firefox\firefox.exe, Blocked, -1, -1, 0.0.0 -Website Data- Category: Trojan Domain: blog.livedoor.jp IP Address: 203.104.130.159 Port: 80 Type: Outbound File: C:\Program Files\Mozilla Firefox\firefox.exe (end)
  21. It will get solved. There is light at the end of the tunnel but it takes time but now that might just take a bit longer. It is possible with staff working at home they might not have some needed access to the testing setups at the office that is shut down because of COVID-19. In the meantime, if you are running with Web Protection disabled for daily use, you can still have at least your browser protected by installing Malwarebytes Browser Guard if you haven't already. It blocks the same sites as Web Protection would and actually blocks some additional threats and undesirable web sites/content on top of that (including behavior based blocking for tech support scam sites; a very powerful feature that I recommend for everyone these days) and it is fully compatible with Web Protection in Malwarebytes so once the BSOD issue has been resolved you can enable Web Protection and keep Malwarebytes Browser Guard installed in your browser(s) to get the benefits of both protections. You can learn more and download Malwarebytes Browser Guard on this page.
  22. https://www.wired.com/story/keep-zoom-chats-private-secure/
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.