Jump to content

Search the Community

Showing results for tags 'malware'.

  • Search By Tags

    Type tags separated by commas.
  • Search By Author

Content Type


Forums

  • Announcements
    • Malwarebytes News
    • Beta Testing Program
  • Malware Removal Help
    • Windows Malware Removal Help & Support
    • Mac Malware Removal Help & Support
    • Mobile Malware Removal Help & Support
    • Malware Removal Self-Help Guides
  • Malwarebytes for Home Support
    • Malwarebytes for Windows Support Forum
    • Malwarebytes for Mac Support Forum
    • Malwarebytes for Android Support Forum
    • Malwarebytes for iOS Support
    • Malwarebytes Privacy
    • Malwarebytes Browser Guard
    • False Positives
    • Comments and Suggestions
  • Malwarebytes for Business Support
    • Malwarebytes Endpoint Protection
    • Malwarebytes Incident Response (includes Breach Remediation)
    • Malwarebytes Endpoint Security
    • Malwarebytes Business Products Comments and Suggestions
  • Malwarebytes Tools and Other Products
    • Malwarebytes AdwCleaner
    • Malwarebytes Junkware Removal Tool Support
    • Malwarebytes Anti-Rootkit BETA Support
    • Malwarebytes Techbench USB (Legacy)
    • Malwarebytes Secure Backup discontinued
    • Other Tools
    • Malwarebytes Tools Comments and Suggestions
  • General Computer Help and Security Updates
    • BSOD, Crashes, Kernel Debugging
    • General Windows PC Help
  • Research Center
    • Newest Rogue-Ransomware Threats
    • Newest Malware Threats
    • Newest Mobile Threats
    • Newest IP or URL Threats
    • Newest Mac Threats
    • Report Scam Phone Numbers
  • General
    • General Chat
    • Forums Announcements & Feedback

Find results in...

Find results that contain...


Date Created

  • Start

    End


Last Updated

  • Start

    End


Filter by number of...

Joined

  • Start

    End


Group


AIM


MSN


Website URL


ICQ


Yahoo


Jabber


Location


Interests

  1. I have ADS X malware installed, and unable to delete it. Each time I search for anything I get several extra responses at the top of the result lists, and a small almost imperceprtible "ADS X" text at the right where I can close that irrelevant results, but still the listing has several bad responses. MALWAREBYTES was unable to remove that ADS X , Malwarebytes is not aware of it existence. REIMAGE CLEANER detects the malware but I don't want to pay them for the removal. Why Malwarebytes is not detecting it but others do? ....
  2. Hello everyone, I just read this article and got a little worried: https://www.howtogeek.com/fyi/bing-is-pushing-malware-when-you-search-for-chrome/ I have three quick questions that I hope someone could help me with: 1. If you actually run that phony installer, will it still act as the official installer? As in everything will act normally but you actually have a hidden malware in your Chrome? 2. If I installed Chrome a while ago, how can I check that my installation is genuine and not a fake Google Chrome? I don' have the installer anymore. 3. Would a Malwarebytes scan detect a bad installation? I ran a scan and it didn't find anything. Thank you and have an awesome day!
  3. So, I have a few threats that keep coming back no matter how many times I remove and restart (Even in safe mode.). It has also disabled my windows defender and I cannot re-enable it. How can I get rid of this, and fix my windows defender? Thank you. mwb.txt Addition.txt FRST.txt
  4. So I've been having this problem for the last few days, my PC was pretty slow so I ran malwarebytes and it found a lot of stuff, then got rid of it but they came back with every reboot so I started looking into solutions online, I guess I've managed to get rid of a few of them by running a lot of different cleaning tools but "conhost.exe" always comes back after reboot. There was also some exes called lsmose and mysa1 mysa2 and mysa3 which I found out online that are bitcoin miners. I can stop the conhost manually by stopping some processes but it comes back after every reboot so I would really appreciate some help. I already ran FRST and attached the files, also not sure if this changes anything but these are the cleaning tools I used: malwarebytes, hitmanpro, roguekiller, mbamantirootkit and combofix FRST.txt Addition.txt
  5. Greetings all, I have tried deleting the quarantined files, I have also ran Adwcleaner on the most updated version and rebooted multiple times and it still appears in my new scans. I have checked my processes to look for anything out of the ordinary, I looked inside all of my HKEY folders to see if I could find anything in there or in System32, I also checked to see if there were any outside IPs connected in my hosts and there was not. Please help me in deleting this from my PC.
  6. Hi guys, I'll keep my story short. I think my PC is being remotely controlled and infected with Trojans malware ransomware ect... what makes me feel like that? Well my certificates, credentials, passwords, user rights and much more being changed/blocked/deleted. I had to exchange my comcast router, I had a technician coming to my house to do a checkup he found my outside Xfinity box open and the cables were played with. He installed a moca point of entry adapter just in case im a victim of w man of the middle or evil twin attack. I installed ExpressVPN, brand new bitdefender 2019 top security software, changed my security settings within my router to basically max security. Blocked mac addresses... I Recovered my own laptop for the 10th time but somehow someone or something keeps getting access to my laptop. I have extremely high data consumption at night while I sleep even tho my PC is shut down before I go to sleep. Current status I disabled my wifi adapter within bios and am plugged into ethernet. My antivirus and VPN are broken because they don't work anymore, I can't deinstall certain software anymore like malwarebytes for example.I have weird background tasks running. There is unknown root kit certificates installed by root agency and lots and lots of other stuff happening... I am attaching some pictures for you that looked suspicious to me. I am writing this from my galaxy so which also has a VPN on it because my phone started to act strange. Please, I need an expert like you folks to look into this and tell me what's going on. Much appreciated.
  7. Posted Yesterday, 01:59 PM I'm a completely novice computer user. Recently, I have been having some malware issues on my PC which is Windows 10. I already have an antivirus, Quick Heal Total Security, and recently, it detected a Coinhive mining malware on my computer, plus, it keeps showing pop up windows that it has blocked access to multiple harmful websites even when I'm accessing reliable websites like Amazon and others. I researched a bit on the Coinhive virus and found out some serious things, and so I'm currently scanning my computer for all kinds of malware, spyware, adware, rootkits using a variety of tools just to be safe. I know I'm being paranoid, but better be paranoid than have my personal data compromised. So far, I've used Malwarebytes to run a full system scan, TDSSKiller for rootkits, and a full system scan by my installed antivirus. All three of them came up clean after that one Coinhive virus was removed. I'm also planning to use more scanners like AdW, ESET, Rkill, as many as I have found to be on the safe side. Now, I started running a scan with GMER for rootkits today, in safe mode, however, the first time, mid-scan, the window just disappeared off the screen. I ran it a second time, and it only showed two entries in the log list before a message was displayed that my system had run into an error and needed to restart. I booted the computer into safe mode once again and started GMER for the third time, and same thing happened. Two logs, then mid-scan, same error message and restart. So, now I'm thinking I do have a rootkit that is stopping GMER from running a scan. I really don't know what to do right now. I also know that GMER is supposed to be for advanced users only, but my plan was to just get the results, save them and then show them to an expert, either here or if not possible, then to someone I know. However, given the fact that the scan won't even get halfway through, I don't know what to do. Would be grateful if someone could point me in the right direction. GMER not being able to complete the scan does mean that I have some kind of rootkit stopping it from working, right? Or could there be any other reasons for that? Thank you very much. P.S. I know I need to backup my data before I run any tools recommended by experts here, but I'm actually worried about infecting my backup as well. As I have already mentioned before, my computer was infected by a coinhive mining virus before, and even though it's removed now, I haven't deleted any old system restore points or registry files so it's possible the virus still persists. Plus, since my computer may have other kinds of malware right now including rootkits, if I try to back up my data now, isn't there a good possibility that I'm also infecting my back up? I back up all my data on an external hard drive, and they are even more susceptible to infection, just by plugging it in to my computer right now could transmit the malware. So, if in the end of the malware removal process, I lose some of my data and have to restore it from my backup, am I facing a chance of re-infection and also damage to my external hard drive? If so, then could you please suggest a safe way to backup all of my data? My data does not contain any applications or program files, it's only composed of documents, videos, music and images which are all stored in D and E drives, I'm not going to be backing up anything from C drive. Is there no way to safely backup, or backup in a way so that when I restore it back on the clean PC, it does not reinfect? Because I currently have some important files on my computer that I can't lose, I know there is no 100% guaranteed way that if I backup it won't be infected, but how should I reduce the risks? I don't want to lose any files by running scans with the anti-malware tools, so please point me in the right direction of backing up my files relatively safely before I can use the suggested tools and post the logs. Please suggest a safe backup method so I can proceed with the removal process.
  8. Hijack.Userinit Basically I picked this up somewhere and I have used Malwarebytes to try and get rid of it. However it comes back when restarting. I have also tried adwcleaner and it still comes back. It has been messing around with google chrome to the point where it is unusable and it has been making my system really slow. I am running windows 10 but it just won't go. Can anyone help me before this gets worse?
  9. Hi guys Two days ago a problem accured when this chrome extension appeared and whenever im trying to search something on google it will search it with YAHOO SEARCH and often redirect me to windows reimage repair download links. This chrome extension has no picture and is called ''Max Video Player'' and is not removable. Even after installing Adwcleaner and SpyHunter and running them, this extension keeps coming back. SpyHunter will also crash. But i think this happened after i installed some free game from the internet and when i ran the setup from this ''game'' it opened three cmd bars and added three symbols that said ''Play Crossout'' and ''Iphone X'' and more ads. I'm annoyed and want a solution :(((
  10. Hello, i have problem with powershell.exe it slow down my pc, but i dont know what to do to delete him, can anybody help me please? I saw few topics and i installed frst64 in attach are logs. Thank you. Addition.txt FRST.txt
  11. My cp usage will randomly spike to 15-20 per cent usage while idle, help me please thanks in advance
  12. Hey guys, I need help removing what I think is an SvcHost virus. I recently started having adware tabs pop up on my PC and then after searching for solutions found that whenever I opened a Malwarebytes (or similar website) page, my browser would immediately crash. This happens in Chrome, IE, and Tor. I found this thread which seems to be a very similar virus and after reading a few others, I downloaded MalwareBytes, Rkill, adwcleaner, FRST64, tdsskiller, and aswMBR. (I'm typing this on my other PC btw. Downloaded the files on it and emailed them in a .RAR to my desktop.) This lead to me finding a few things: -I restarted my PC and immediately opened the Task manager to find an unnamed task using 50+% of my CPU. If I look at its properties, it says it's Svchost and is located in SysWOW64 where it takes up 44kb. -I can kill this process, but it doesn't stop the virus from opening apps or closing browsers. -I do not have permission to delete the application from SysWOW64. I need "TrustedInstaller" permission, which I know can be a legit Windows thing. -The MB3-setup exe will not run. -If I run Rkill then attempt to run the MB3 exe, it logs the following: -I deleted the INetCache folder which appeared to be empty. Nothing changed. -adwcleaner and FRST64 won't run. -tdsskiller doesn't find anything -I ran aswMBR and my PC blue-screened with the following support info This is where I am currently and I would appreciate any help anyone can give me.
  13. Whenever I boot up my PC, I always see Malwarebytes blocking a program called "SppExtComObjPatcher.exe". Once it was quarantined and deleted, it keeps on coming back. My PC does NOT encounter any performance difficulties or has any other extension that seems fishy for my browser. However, Malwarebytes keeps on detecting this program and I don't know what should I do about it. When I delete the quarantined programs and perform a Threat Scan with Malwarebytes, it doesn't find anything. When I delete the quarantined programs and scan with AdwCleaner 7.2.3, it also doesn't find anything. Any help?
  14. Hello, Could you help me with this... Thanks a lot hijackthis.log
  15. Hello everyone, Well, as you may have read from the title my computer have been infected by the KMSpico malware and consequently, dozens of trojans, viruses, etc. have been installed. The reason why I installed KMSpico is quite obvious... so let's skip that part, I've already learned my lesson. Now, I installed Malwarebytes and run an analysis. It detected 658 threats, so you can imagine how unsafe I felt after that even though they've been removed. What I'd like to know is if you could guide me on how to make sure my machine is indeed completely clean from all the trash that was installed, e.g. cryptocurrency miners, adware, browser hijackers, and other potentially unwanted programs. Here I'll attach the results I've got from Malwarebytes: malwaredetection.txt, malwaredetection2.txt. Thank you in advance for your help, Regards
  16. Two days ago my computer started running really slow, so i did a scan with Windows Defender and found nothing. So I ran malwarebytes and it found 2 Trojan.Roraccoon's. Went through the process like normal, select the two malware and click quarantine selected. Malwarebytes says it quarantined them but needs to restart. Restart computer and when i run the threat scan again they are found again. I ran FRST and attached the FRST.txt and affition.txt and also attached the export log of my last scan. Im hoping someone could help me please Thank you James FRST.txt Addition.txt report.txt
  17. I have tried almost everything, I could think of please help, I need Aura
  18. Back on August 17, I installed Malwarebytes on my machine since I was having performance issues. The scan found 16 threats on my PC, and removed them as such. Even after this scan though, and several others, Windows Powershell is still performing some suspicious activity. Malwarebytes will occasionally notify me of an outbound connection to "wentz.pw" that Powershell keeps attempting to make. This is classified as "riskware", but I'm concerned since I can't get rid of it. Attached is the log for the most recent connection attempt. blocklog.txt
  19. My windows pc has been infected with a virus in the folder C:\Windows\System32. my default window antivirus could not detect this virus but then i installed the free version of AVG which was able to detect this virus but every few days this virus reappears and i have to remove it again. From my research and little bit of knowledge i think this is related to some kind of cryptocurrency mining. Any guidance on this topic would be appreciated Original Filename: diskdriver.exe Type of File: Application(.exe) Description: disk io driver Location : C:\Windows\System32. size : 1.97 MB (2,069,504 bytes) size on disk: 1.97 MB (2,072,576 bytes)
  20. Hello, I am very new to the malwarebytesforums and it is admittedly a little bit late to be searching for help, but this infection has avoided everything in my power. About four days ago, I acquired a new steam game, but it kept crashing to desktop upon launch. Although the fix was simple (Update graphics drivers), I saw a "Mod" by someone online that'd fix the issue. After downloading and running the file, it gave me an error, so I closed and deleted it, and didn't give it much thought. Little did I know I started going down a slippery slope. About an hour later exactly, norton starts giving me this: There are attempted attacks ranging in intervals of 10 minutes to 2 hours (Not shown here for the reason explained below) Firstly, I apologize, my Windows install is in Spanish, it can't be helped, but I don't think it will affect the removal process. Secondly, the attack always originates from a (What i assume must be) a regional location file within the SysWOW64 folder. I HAVE tried to delete the file folder highlighted below on red (Last attempt today no, which solves the issue for about 4-8 hours. It always comes back. Scans using Zemana, Malwarebytes, Roguekiller, Norton PowerEraser, and the like, return empty. I have also tried running TDSSKiller, but the files it found are either redundant (Civilization V uninstall files and the like) Or Kernel and system drivers which I am too afraid to delete. The only thing I have not attempted is the FRST tool as I dont know how to create a fixlist, and I am afraid of what it might do to the system. I am attaching the FRST.txt and Addition.txt files from today here for review, however. Thank you for reading this far, I'll patiently await your response! Addition.txt FRST.txt
  21. Hello everyone. I installed Adware Doctor from the mac app store thinking it was a legitimate application. I ran it and it removed my browsers' extensions, cookies, and caches, something I could have done manually. I researched the app and found out it is a junk application that poses a security risk. I've watched YouTube videos that claim the application steals browser history and app store searches, retrieves all your application and processes information, and sends it to a Chinese server. I quickly uninstalled the application, turned on my mac firewall, and changed my admin account password. I also installed malwarebytes, ran a scan, and it showed my mac was clean. However, I am worried about what the developers could do to my mac with the data they retrieved. What I want to know is: am I ok? If not, what else should I do to be safe? Links to YouTube videos: https://www.youtube.com/watch?v=cBI5FvOFLls https://www.youtube.com/watch?v=nZ7CVIy5Tq8 https://www.youtube.com/watch?v=IdDE9IPPGJA
  22. So i was running a adw cleaner and it decteced PUP.Optional.SofTonicAssistant. It said it was a registry keylogger and i cleaned it up and repaired it, but it wont go away. After that i ran a malwarebytes scan and it picked up nothing. ANy pointers?
  23. I have just installed malwarebytes Premium Trial 3.5.1 and the programme scans the computer and locates over 788 threats, but during the heuristics analysis it gets stuck. It appears to be a similar problem to https://forums.malwarebytes.com/topic/147143-mb-gets-stuck-at-heuristic-analysis/ That article is from 2014, so I'm thinking it might be dated. I have run the adwcleaner which did remove some threats. I have already run mbam-clean-2.3.0.1001 and reinstalled malwarebytes a couple of times, but it always gets stuck in the same spot. Your help is greatly appreciated. mbst-grab-results.zip
  24. So i download this software window 10 activator and then suddenly my antivirus detected malware and now my laptop is slow as f. so can someone help me i tried to scan like 3 time with the use of malwarebytes but still i dont think my laptop is safe, can someone pls help me with this, what do i need to do?
  25. Hey, I'm more than a little panicking at the moment. I downloaded a copy of Premiere Pro like 30 minutes ago, which I've found out obviously isnt Premiere pro.. Im doing my malwarebttes scan right now and the current threat count is at 152... It says the identified threats are a mix of files and folders, most being called trojan.yelloader. Its popping up windows of ads 8 at a time and its playing through the speakers repetitively and I really need urgent help with this. The popup windows are called "fnrmavndt"
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.