Jump to content

Search the Community

Showing results for tags 'malware'.



More search options

  • Search By Tags

    Type tags separated by commas.
  • Search By Author

Content Type


Forums

  • Announcements
    • Malwarebytes News
    • Beta Testing Program
  • Malware Removal Help
    • Windows Malware Removal Help & Support
    • Mac Malware Removal Help & Support
    • Mobile Malware Removal Help & Support
    • Malware Removal Self-Help Guides
  • Malwarebytes for Home Support
    • Malwarebytes 3 Support Forum
    • Malwarebytes for Mac Support Forum
    • Malwarebytes for Android Support Forum
    • Malwarebytes for iOS Support
    • False Positives
    • Comments and Suggestions
  • Malwarebytes for Business Support
    • Malwarebytes Endpoint Protection
    • Malwarebytes Incident Response (includes Breach Remediation)
    • Malwarebytes Endpoint Security
    • Malwarebytes Business Products Comments and Suggestions
  • Malwarebytes Tools and Other Products
    • Malwarebytes AdwCleaner
    • Malwarebytes Junkware Removal Tool Support
    • Malwarebytes Anti-Rootkit BETA Support
    • Malwarebytes Techbench USB (Legacy)
    • Malwarebytes Secure Backup discontinued
    • Other Tools
    • Malwarebytes Tools Comments and Suggestions
  • General Computer Help and Security Updates
    • BSOD, Crashes, Kernel Debugging
    • General Windows PC Help
  • Research Center
    • Newest Rogue-Ransomware Threats
    • Newest Malware Threats
    • Newest Mobile Threats
    • Newest IP or URL Threats
    • Newest Mac Threats
    • Report Scam Phone Numbers
  • General
    • General Chat
    • Forums Announcements & Feedback

Find results in...

Find results that contain...


Date Created

  • Start

    End


Last Updated

  • Start

    End


Filter by number of...

Joined

  • Start

    End


Group


AIM


MSN


Website URL


ICQ


Yahoo


Jabber


Location


Interests

Found 460 results

  1. Hi. I have high ram usage at times, I mean 70-90% and I think it's connected to malware and Malwarebytes can't pick it up, but when my windows has been up and running for few hours, it shows 2 malware threats are detected, but even if I quarantine them and delete them, nothing works, they just keep coming back. I have also tried to use ADW cleaner multiple times without any luck too since it's all come back a few minutes after windows has loaded. One thing to note is that Chrome is only using 4-5 GB of ram which is okay, but the task manager shows over 70% even at sometimes 90% so there might be something running in the background which is hidden. I really hope we can fix this since this really destroys my PC experience and I can't wait to get down to bussines. Thank you. FRST.txt Addition.txt
  2. Hey guys, I noticed a strange folder in my temp folder called BCLTMP containing subfolders with the names of my browsers. Inside of these folders are files that contain my saved favourites, visited urls and searches. After deletion of the BCLTMP folder it appears again after a while, sometimes after a day, a week or a month. After scanning my PC with all the tools I have (which didn't find much and didn't stop the folder appearing) I decided it might be normal.. Then I bought a new laptop which showed the same behavior within the same week I bought it. Nothing was installed on the laptop, no usb used, it had only been connected to my router. I have connected other laptops to my network in the past which showed the same behavior. Could this BCLTMP folder which seems to track my browser history be spyware/malware? No one else seems to have the folder. I am using Windows 10 pro on both devices. I tried scanning with malwarebytes, roguekiller, adwcleaner, eset sysrescue, exterminate it, spydllremover (which reports hidden rootkit, with processID, hidden), superantispyware. tdsskiller won't boot (redownloaded, same result) and comodo CCE crashes the computer and then refuses to boot. Note that the laptop with the BCLTMP folder is a clean windows 10 install with no installed software. My router reports synflood attacks from within and outside of my network, and it's firmware has been reinstalled by the isp just to be sure. Not much else to see there. How can I figure out what is happening to my devices, and what this folder is for?
  3. Hello guys. My name's is Rob, and i have a big problem. My computer is too slowly and i don't know why. I have tryed MalwareBytes AntiMalware Premium but, he find 0 threats, MalwareBytes Adwcleaner 0 threats, and EEK too... By The Way, my computer sometime have a "freeze" for five or two seconds, when i play, when i use the browser. Two years ago i used Iobit, or something like this, and i use this software to help my system but he have damaged my computer and i kick him from my computer. Right now, my computer suffer lag,freeze, and CPU go 100% when i run word, chrome, in conclusion any program -> CPU 100%. Maybe Chrome Infected? Malware/Rootkit in my computer?? IDK... My pc is original , and i have an original key, maybe i need format? I have BitDefender Free Antivirus. And at the end, i can't use sfc /scannow or scandisk , because my disk is already in use ALWAYS and i can't use sfc /scannow etc... Three years ago, i had a rootkit infections, (20+ rootkits) , i find it with Avast Antivirus. Sometime, i go in C: and i have 180GB, i refresh and i hav 170GB, and other bugs.. i dont know whats happening ... I attach FRST.TXT and ADDITION.TXT. R0b FRST.txt Addition.txt
  4. Every time I restart my PC, I get a notification from Malwarebytes that a 'website was blocked due to malware'. It claims to be an outbound connection affecting the file 'powershell.exe'. The website is f.top4top.net. Malwarebytes identifies this as malware but it is not a program I can remove and I have never visited that website. I'm looking to sort out whatever the issue may be here. The logs can be found below. Malwarebytes www.malwarebytes.com -Log Details- Protection Event Date: 7/8/18 Protection Event Time: 4:25 PM Log File: 137327b6-82ed-11e8-8c03-1c1b0d993f99.json Administrator: Yes -Software Information- Version: 3.5.1.2522 Components Version: 1.0.374 Update Package Version: 1.0.5823 License: Trial -System Information- OS: Windows 10 (Build 17134.112) CPU: x64 File System: NTFS User: System -Blocked Website Details- Malicious Website: 1 , , Blocked, [-1], [-1],0.0.0 -Website Data- Category: Malware Domain: f.top4top.net IP Address: 185.186.244.145 Port: [49871] Type: Outbound File: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (end)
  5. So i have Installed malwarebytes,its been 6 days using the trial.So the problem is this pops randomly every time for the last couple of days - Website blocked due to riskware - .This pops up sometimes when my pc is idle, sometimes when I am playing online games, sometimes browsing, sometimes watching movies etc. It's always this random IP that i don't know. This pops literally randomly and in the advance tab of the report where it shows what file it is,it shows nothing.I don't understand this. This triggers sometimes a single time, maybe sometimes 3 in a row, sometimes a single time and hours later 2 times.Its so random. Please help me what this is,and pardon me for English and my lack of knowledge in this department. Here is the long - Malwarebytes www.malwarebytes.com -Log Details- Protection Event Date: 7/15/18 Protection Event Time: 7:08 AM Log File: a54c4798-87cb-11e8-b338-382c4aba6654.json Administrator: Yes -Software Information- Version: 3.5.1.2522 Components Version: 1.0.391 Update Package Version: 1.0.5907 License: Trial -System Information- OS: Windows 10 (Build 16299.492) CPU: x64 File System: NTFS User: System -Blocked Website Details- Malicious Website: 1 , , Blocked, [-1], [-1],0.0.0 -Website Data- Category: RiskWare Domain: IP Address: 212.83.190.122 Port: [445] Type: Inbound File: (end)
  6. Hello all, my first time posting in this forum, sincerest apologies if this is the wrong place to post this. My computer has been infected with something that causes gambling/bitcoin websites to pop up randomly. It also causes anti malware programs to close and malware related web searches to be closed as well. I have conducted scans in safe mode with Malwarebytes, spybot and avast free antivirus to no avail. Hope that this forum will be able to help me ? Thank you!
  7. Yesterday, I have downloaded some program via the internet and something unwanted program called All radio came up and I cannot delete it. I already tried to scan using Malwarebytes but nothing works. This thing makes my computer slower and sometimes opening unnecessary programs. Please help:(
  8. After I downloaded pokki start menu and scanned it with adwcleaner several times and deleted it. I went to my start menu and saw start menu no pokki just start menu my laptop labeled it new so I went to downloads it automatically closed I went on chrome typed malwarebytes it closed what do I do!?
  9. Hello. I Am Having Some Trouble Getting Rid Of This No Good Adware Pokki Start Menu.When I Downloaded The Pokki Start Menu I Thought It Was SafeWhen I Looked Up Pokki The Google Results Showed How To Delete Pokki Virus I Took Action And Downloaded Adwcleaner It Found It I Scanned 4 Times Then adwcleaner dissappred right out of the blue with out permission I clicked the windows button and I saw Start Menu And I learned the virus was still there I went to task manager no results of pooki I went to files to open up adwcleaner than it closedthere is no more Pooki but the start menu is still there how do I uninstall EVERYTHING by the way pooki is not in the uninstall place. What softwares can I use to get rid of it or anything. P.S. I scanned and adwcleaner detected pooki then deleted than disappeared without consent I did not even notice
  10. How do I make sure my computer is safe after downloaded malware? Windows defender found (Trojan:Win32/Fuery.B!cl) when I stupidly downloaded something, quarantined it, and then I deleted it. I checked my Storage and found a new app, then uninstalled it. Then downloaded Malwarebytes to make sure it was gone, details: -Log Details- Scan Date: 7/2/18 Scan Time: 11:17 PM Log File: 06afd75a-7e78-11e8-a07b-4ccc6a9054e5.json Administrator: Yes -Software Information- Version: 3.5.1.2522 Components Version: 1.0.374 Update Package Version: 1.0.5739 License: Trial -System Information- OS: Windows 10 (Build 17134.112) CPU: x64 File System: NTFS User: DESKTOP-ETDTBVM\Ray -Scan Summary- Scan Type: Threat Scan Scan Initiated By: Manual Result: Completed Objects Scanned: 321870 Threats Detected: 7 Threats Quarantined: 7 Time Elapsed: 1 min, 22 sec -Scan Options- Memory: Enabled Startup: Enabled Filesystem: Enabled Archives: Enabled Rootkits: Disabled Heuristics: Enabled PUP: Detect PUM: Detect -Scan Details- Process: 0 (No malicious items detected) Module: 0 (No malicious items detected) Registry Key: 3 PUP.Optional.Conduit, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472F-A0FF-E1416B8B2E3A}, Quarantined, [220], [236865],1.0.5739 PUP.Optional.Conduit, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472F-A0FF-E1416B8B2E3A}, Quarantined, [220], [236865],1.0.5739 PUP.Optional.Conduit, HKU\S-1-5-21-1056684928-3674633434-835679265-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}, Quarantined, [220], [236865],1.0.5739 Registry Value: 2 PUP.Optional.Conduit, HKU\S-1-5-21-1056684928-3674633434-835679265-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}|URL, Quarantined, [220], [236865],1.0.5739 PUP.Optional.Conduit, HKU\S-1-5-21-1056684928-3674633434-835679265-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}|TOPRESULTURL, Quarantined, [220], [236865],1.0.5739 Registry Data: 1 PUP.Optional.Conduit, HKU\S-1-5-21-1056684928-3674633434-835679265-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|START PAGE, Replaced, [220], [293058],1.0.5739 Data Stream: 0 (No malicious items detected) Folder: 0 (No malicious items detected) File: 1 PUP.Optional.Conduit, C:\USERS\RAY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1MB3KCI5.DEFAULT\PREFS.JS, Replaced, [220], [301520],1.0.5739 Physical Sector: 0 (No malicious items detected) WMI: 0 (No malicious items detected) (end)
  11. I have a pretty nasty malware issue. It disables me from installing malwarebytes and similar antiviruses. It also stops me from opening certain websites. Does anyone have an idea of how to fix this? I hope someone has an answer...
  12. Hello, to all it may concern. I accidentally installed a program that contained this particular malware All-Radio 4.27 and it cannot be removed, and I would appreciate any help in removing it. The log scan results are as shown below attached. Please help. Malware Bytes Scan Results.txt
  13. I believe my Dell Inspiron N5559 is infected. I am using Microsoft Home Windows 10 I got a popup notice notifying me of a “Netio.Sys Failure” A Windows Defender Security Center notification keeps coming of warning of an issue with a “Driver” but Troubleshooting the issue “Fix” does not work. When I open my Google Chrome Browser my screen goes “white” for several seconds before the browser open. I ran ADWCleaner and two issues were resolved but the overall problem remain Any help will be greatly appreciated. Thank you AdwCleaner[S54].txt
  14. BTW its my FIRST TIME here....... I'm having a problem with the proxy server being set to 127.0.0.1 7272 and adware on my browser. I have used malwarebytes adware and still its not fixed so i need help. Addition.txt FRST.txt
  15. Today.I have download a zip files form internet. Then this program are also coming i try to find there files location for uninstall but i still cant uninstall it . This program it always coming when I open my laptop
  16. So my laptop started becoming extremely slow after 5 minutes of booting starting last week. I found out that my disk usage was at 100% for whatever reason. I was told to get the free trial of malwarebytes and start a threat scan. It has been 6 hours and the scan is on the second to the last step. About 170,000 files have been scanned and 213 threats were found. Is this normal? Should I stop the scan and try something else?
  17. ive tried alot of tutorials but none has worked i still get the error i tried alot of malwarebytes apps and none worked too so please need help solving this problem D": srry for bad english
  18. A couple of days, a relative used my computer and downloaded something that came with a malicious software, and it keeps coming back with different names despite constant cleaning using MalwareBytes, HitmanPro, ZemanaAntiMalware, AdwCleaner, Avast Browser Cleanup, ZHP Cleaner and so forth. I also restored my browsers to default settings and deleted all the cookies, cache and such with CCleaner. At first this malware used to open random tabs in my browser but after some cleaning, it stopped. Then it changed to a ksecdd.ax file appearing in my users/user/appdata/local/temp folder every time I restarted the computer. MalwareBytes would find the file and quarantine it, but at the next restart, it would come back. Now it's a BitcoinMiner infecting my msiexec64.exe that once again reappers whenever my computer restarts. Not only that but it makes my browsers crash whenever I search for Farbar Recovery Tools, leaving me unable to see if said software can bring me a solution. I can search for anything else with no problem but as soon as I type farbar and press enter, instant crash. What logs could I provide here for the experts to analyze so they can find a way to fix this? Thanks in advance.
  19. Hi , yesterday ... i found that my pc is slow .. and my download speed went at 50 kb/s .... i went on task manager.. and i saw a task ... with the svchost image ... but with no name ... i did some research ... and i checked if is from system32... i clicked open file location .. and that opened me windows/ temp ... i deleted it ... i stopped it from the services tab on task manager ... and then i did an restart .... but still found that my pc is slow ... i tried a scan with malwarebytes. .. he found me around 20 malwares .. i deleted them.. but still slow ... ( forget to metion ... before to start seing slowness .. i downloaded a program .... ) Edit : ... i did some system Restore Thing .. and i tried 2 times .. and everytime said ... that something from system registry .. cant be changed .... i went there by myslef ... but i didnt found nothing that would harm my pc Edit 2 : Forgot To metion .. that first .. i saw pop-ups ... .. and from that i was 100% sure that i have malwares... pop-ups ... on everything, when i opened opera , when i clicked , when i was openning a new tab ... i did an reinstall to opera first .. but ... nothing
  20. I've tried to remove the infamous plague HAO123 from my computer, but it keeps resetting my chrome shortcut with http://hao.169x.cn?v=108. My Chrome (Google Chrome.lnk) shortcut is located at "C:\ProgramData\Microsoft\Windows\Start Menu\Programs". It keeps adding the hao-link to the end of "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe". I tried making the file write protected, but no luck. I've also run ADWCleaner and Malwarebytes, but they can't detect this one, neither can Avast. I have attached my Zemana report, and the Farbar Recovery Scan Tool reports to this query. All help is greatly appreciated! :) (I'm an avid supporter of Malwarebytes) Addition.txt FRST.txt 2018.05.15-18.41.42-i0-t92-d2.txt
  21. Hi I got infected and I am unable to launch farbar from normal desktop so I booted into windows recovery using a windows media USB. Then went to troubleshoot and opened Command Prompt I then than frst64.exe from command prompt and got the file i've attached I'm not sure what to do from here FRST.txt
  22. Hi everyone, I'd like to know if there is a way to detect special spyware. malware, trojans, keyloggers..and more...created by the biggest ethical hackers worlwide for government's agencies like cia, nsa, all secret agencies worlwide? I ask that question because in the deepweb, some black hat are selling malicious spyware, trojans, keyloggers and many more, and the contract tells that compagnies like norton, avast, yours and all anti-malware haven't got these tools added into their database, and cannot detect them in any way... It's written that these tools are done by the biggest ethical hackers (before they were black hat for most of them) for Goverments and black hat activities, that's why as soon as they are added into your database, they create a new one, to bypass any test... check wikileaks about it.... Is that real or fiction?if yes, how can we be online and be sure 100% that no one is spying us? Please if someone really knows about that, reply with all informations needed. Please no scam, or spam.. Yours truly, corethical/SWITZERLAND
  23. Hi, I get this famous RiskWare.BitCoinMiner on my server Windows 2016. I don't now how cause it was a fresh installation. fresh installation because the first one was infected with the same malware. it's a poison i don't know what i can do... I take Malwarebytes, so i make a first scan on the server, he find RiskWare.BitCoinMiner, and remove it. good for now... But the riskware back again, and now, malwarebytes find nothing. The place of rundll32.exe who use processor : C:\Windows\Microsoft.NET\rundll32.exe This malware kill my server, i try lots of thing for remove that and i don't find useful tips. Thanks for your time and your help. Sorry for my english, i'm french. Addition.txt FRST.txt malwarebytes_scan.txt
  24. So, recently I have been getting this extremely high cpu usage peaks on the svchost.exe and I figured it would be malware. At first I thought it was a hollow process and lost hope but tried anyways and it detected this. I have finals coming soon and lots of stuff to do and this needs to go ASAP. Could anyone please help me? also, when I google certain effective anti malware programs, my browser just shuts down.
  25. I downloaded a program from a third party website and now I have what I believe is a rootkit that I can't delete from my computer. I've uninstalled everything possible, scanned with Malwarebytes and Norton and they remove everything except a file called wmcagent.exe and some folders with weird names like snoteku. It is in my User/Appdata/Local folder. I cannot delete it or a few folders I believe are associated with it. It only says access is denied. I've used the Malwarebytes AdwCleaner and Anti-rootkit and the Norton variants and it can't remove it, or don't detect it. There are two programs running in task manager called "client" and I can't end them, or they just restart later. I even reinstalled Chrome and double checked all my browsers to make sure it's not an extension. I followed some of the steps from this because I believe this is the same problem. However I am not sure and would rather not go through some of the complicated steps toward the end if I don't have to. Towards the end of the guide, they use the FRST executable, and paste the text inside and click fix. His does not work and mine does, the rest of the guide is dedicated to finishing his problem; however it is not clear if they ever fixed the problem. Any advice? Attached is a few files from the guide that might be helpful to look at. FRST.txt Addition.txt Fixlog.txt
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.