Jump to content

Search the Community

Showing results for tags 'malware'.

  • Search By Tags

    Type tags separated by commas.
  • Search By Author

Content Type


Forums

  • Announcements
    • Malwarebytes News
    • Beta Testing Program
  • Malware Removal Help
    • Windows Malware Removal Help & Support
    • Mac Malware Removal Help & Support
    • Mobile Malware Removal Help & Support
    • Malware Removal Self-Help Guides
  • Malwarebytes for Home Support
    • Malwarebytes for Windows Support Forum
    • Malwarebytes for Mac Support Forum
    • Malwarebytes for Android Support Forum
    • Malwarebytes for iOS Support
    • Malwarebytes Privacy
    • Malwarebytes Browser Guard
    • False Positives
    • Comments and Suggestions
  • Malwarebytes for Business Support
    • Malwarebytes Endpoint Protection
    • Malwarebytes Incident Response (includes Breach Remediation)
    • Malwarebytes Endpoint Security
    • Malwarebytes Business Products Comments and Suggestions
  • Malwarebytes Tools and Other Products
    • Malwarebytes AdwCleaner
    • Malwarebytes Junkware Removal Tool Support
    • Malwarebytes Anti-Rootkit BETA Support
    • Malwarebytes Techbench USB (Legacy)
    • Malwarebytes Secure Backup discontinued
    • Other Tools
    • Malwarebytes Tools Comments and Suggestions
  • General Computer Help and Security Updates
    • BSOD, Crashes, Kernel Debugging
    • General Windows PC Help
  • Research Center
    • Newest Rogue-Ransomware Threats
    • Newest Malware Threats
    • Newest Mobile Threats
    • Newest IP or URL Threats
    • Newest Mac Threats
    • Report Scam Phone Numbers
  • General
    • General Chat
    • Forums Announcements & Feedback

Find results in...

Find results that contain...


Date Created

  • Start

    End


Last Updated

  • Start

    End


Filter by number of...

Joined

  • Start

    End


Group


AIM


MSN


Website URL


ICQ


Yahoo


Jabber


Location


Interests

  1. Today.I have download a zip files form internet. Then this program are also coming i try to find there files location for uninstall but i still cant uninstall it . This program it always coming when I open my laptop
  2. BTW its my FIRST TIME here....... I'm having a problem with the proxy server being set to 127.0.0.1 7272 and adware on my browser. I have used malwarebytes adware and still its not fixed so i need help. Addition.txt FRST.txt
  3. I believe my Dell Inspiron N5559 is infected. I am using Microsoft Home Windows 10 I got a popup notice notifying me of a “Netio.Sys Failure” A Windows Defender Security Center notification keeps coming of warning of an issue with a “Driver” but Troubleshooting the issue “Fix” does not work. When I open my Google Chrome Browser my screen goes “white” for several seconds before the browser open. I ran ADWCleaner and two issues were resolved but the overall problem remain Any help will be greatly appreciated. Thank you AdwCleaner[S54].txt
  4. The Following email is being sent from one user on an exchange server, I have run multiple scans and now running the Anti-Rootkit not picked up anything so far. Email: Please do not click the link: >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>> Subject: Invoice is available No-046242 for month Afternoon, A invoice for you will be available on this link in your account during next 3 days. ==> hxxp://stafffinancial.com/For-Check/ Thank you, <Name of Sender> >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>> Can Anyone help, I am actively looking into my self now: Kind Regards BluespotSam
  5. ive tried alot of tutorials but none has worked i still get the error i tried alot of malwarebytes apps and none worked too so please need help solving this problem D": srry for bad english
  6. So, recently I have been getting this extremely high cpu usage peaks on the svchost.exe and I figured it would be malware. At first I thought it was a hollow process and lost hope but tried anyways and it detected this. I have finals coming soon and lots of stuff to do and this needs to go ASAP. Could anyone please help me? also, when I google certain effective anti malware programs, my browser just shuts down.
  7. Hi, I get this famous RiskWare.BitCoinMiner on my server Windows 2016. I don't now how cause it was a fresh installation. fresh installation because the first one was infected with the same malware. it's a poison i don't know what i can do... I take Malwarebytes, so i make a first scan on the server, he find RiskWare.BitCoinMiner, and remove it. good for now... But the riskware back again, and now, malwarebytes find nothing. The place of rundll32.exe who use processor : C:\Windows\Microsoft.NET\rundll32.exe This malware kill my server, i try lots of thing for remove that and i don't find useful tips. Thanks for your time and your help. Sorry for my english, i'm french. Addition.txt FRST.txt malwarebytes_scan.txt
  8. So my laptop started becoming extremely slow after 5 minutes of booting starting last week. I found out that my disk usage was at 100% for whatever reason. I was told to get the free trial of malwarebytes and start a threat scan. It has been 6 hours and the scan is on the second to the last step. About 170,000 files have been scanned and 213 threats were found. Is this normal? Should I stop the scan and try something else?
  9. Hi , yesterday ... i found that my pc is slow .. and my download speed went at 50 kb/s .... i went on task manager.. and i saw a task ... with the svchost image ... but with no name ... i did some research ... and i checked if is from system32... i clicked open file location .. and that opened me windows/ temp ... i deleted it ... i stopped it from the services tab on task manager ... and then i did an restart .... but still found that my pc is slow ... i tried a scan with malwarebytes. .. he found me around 20 malwares .. i deleted them.. but still slow ... ( forget to metion ... before to start seing slowness .. i downloaded a program .... ) Edit : ... i did some system Restore Thing .. and i tried 2 times .. and everytime said ... that something from system registry .. cant be changed .... i went there by myslef ... but i didnt found nothing that would harm my pc Edit 2 : Forgot To metion .. that first .. i saw pop-ups ... .. and from that i was 100% sure that i have malwares... pop-ups ... on everything, when i opened opera , when i clicked , when i was openning a new tab ... i did an reinstall to opera first .. but ... nothing
  10. A couple of days, a relative used my computer and downloaded something that came with a malicious software, and it keeps coming back with different names despite constant cleaning using MalwareBytes, HitmanPro, ZemanaAntiMalware, AdwCleaner, Avast Browser Cleanup, ZHP Cleaner and so forth. I also restored my browsers to default settings and deleted all the cookies, cache and such with CCleaner. At first this malware used to open random tabs in my browser but after some cleaning, it stopped. Then it changed to a ksecdd.ax file appearing in my users/user/appdata/local/temp folder every time I restarted the computer. MalwareBytes would find the file and quarantine it, but at the next restart, it would come back. Now it's a BitcoinMiner infecting my msiexec64.exe that once again reappers whenever my computer restarts. Not only that but it makes my browsers crash whenever I search for Farbar Recovery Tools, leaving me unable to see if said software can bring me a solution. I can search for anything else with no problem but as soon as I type farbar and press enter, instant crash. What logs could I provide here for the experts to analyze so they can find a way to fix this? Thanks in advance.
  11. I’m running windows 10 64bit. I downloaded something and got wmcagent on my computer and need help removing it.
  12. Can you remove our website from being blocked by malwarebytes? It does not have malware... Malwarebytes www.malwarebytes.com -Log Details- Protection Event Date: 5/21/18 Protection Event Time: 9:35 AM Log File: 09539282-5d15-11e8-b5ac-4ccc6a27e676.json Administrator: Yes -Software Information- Version: 3.4.5.2467 Components Version: 1.0.342 Update Package Version: 1.0.5192 License: Premium -System Information- OS: Windows 10 (Build 17134.48) CPU: x64 File System: NTFS User: System -Blocked Website Details- Malicious Website: 1 , , Blocked, [-1], [-1],0.0.0 -Website Data- Category: Malware Domain: avwebdesigns.com IP Address: 160.153.62.168 Port: [53321] Type: Outbound File: C:\Program Files (x86)\Firefox Developer Edition\firefox.exe (end)
  13. Hi I got infected and I am unable to launch farbar from normal desktop so I booted into windows recovery using a windows media USB. Then went to troubleshoot and opened Command Prompt I then than frst64.exe from command prompt and got the file i've attached I'm not sure what to do from here FRST.txt
  14. Hi, I've been using MalwareBytes Free on my computer for a number of years, never had a problem and only use it for the bare basics - only 'safe' websites (Wikipedia, Facebook) and don't use it a great deal anyway. Did a scan this morning and it detected "MachineLearning/100%anomalous detection" - interestingly I had run a scan earlier without the internet connected, but after I connected the internet and ran the scan again it found it. I've since quarantined and deleted the file, ran another scan and all seems well - I'd just like to know what it was and whether it was a real problem or a false positive. I did a large Windows update (1803) last night and wonder if that's related? I have looked over this forum and seen that this detection has come up a number of times for people developing their own software, however I am not a software developer and had nothing on my computer that an average user wouldn't have. I understand that MalwareBytes is using new detection systems to stop malware, and so hopefully this is a teething problem rather than a real concern. I'm pretty savvy about computer safety, but still I'd rather be certain that everything is OK. I'm attaching the exported report here. There are no other visible signs of infection (slowing down, redirects etc). Thank you! MB Report.txt
  15. Hello: Sorry if this has been asked before. I've already searched but since I don't know the name of this malware, I can't find it. There's a possible rootkit that keeps reinstalling programs on my Windows 7. These programs are "Safe finder" "Butler" and some others. When I uninstall these programs, they appear againg shortly after, and they keep opening by themselves and my browsers keep opening new tabs that lead to spam. I've tried using Malwarebytes and it removes these programs really fast. But when the computer restarts after the cleaning, the programs appear again. I've found the icon displayed on the photos on the toolbar and when I shut down the computer. And it seems to be running on the backround installing something. My guess is those programs. Anyone knows what it is and/or how to remove it? Thank you!
  16. Run a scan and pull a bunch of detections. On the results screen, before taking any actions, I looked at the path stated for multiple items, but they are completely missing from the folder paths. This is WITH show hidden files on and hide protected system files unchecked, with an admin account. Does MWB remove the files from the directory before you decide to quarantine/exclude? And then just restore them if you decide not to quarantine?
  17. I've tried to remove the infamous plague HAO123 from my computer, but it keeps resetting my chrome shortcut with http://hao.169x.cn?v=108. My Chrome (Google Chrome.lnk) shortcut is located at "C:\ProgramData\Microsoft\Windows\Start Menu\Programs". It keeps adding the hao-link to the end of "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe". I tried making the file write protected, but no luck. I've also run ADWCleaner and Malwarebytes, but they can't detect this one, neither can Avast. I have attached my Zemana report, and the Farbar Recovery Scan Tool reports to this query. All help is greatly appreciated! :) (I'm an avid supporter of Malwarebytes) Addition.txt FRST.txt 2018.05.15-18.41.42-i0-t92-d2.txt
  18. Hi all, MalwareBytes version: (Premium) 3.5.1.25522 Please see 2 attached screenshots. NOTE: Same user just different name as I changed the name a while ago. Was just wondering how I got it? I was playing an online game, then an hour or so after I closed down the game my PC froze whilst on Google Chrome (Scroll Lock etc LEDs all worked). I have an automatic MalwareBytes scan every day and the most recent scan came up with 1 threat: RIskWare.HeuristicsReservedWordExploit located in C:\Users\[Name]AppData\Local\Temp\explorer.exe Can someone explain how this occured? I don't click on links in emails and I only go to secured sites. I am the only person who uses this computer. Soon after I quarantined and deleted it I got a Windows update (turned off updates in services.msc) and then a few seconds later I got a Ransomware Protection App name - \$WINDOWS.~BT\ Sources\SetupHost.exe Protected folder was from Uplay pictures --- Am I just being paranoid? :') --- All information is gratefully appreciated, best regards Addition.txt FRST.txt
  19. I have been having this pop-up where it says i have a recommended update. I am not being able to close the pop-up and i feel like my Pc have been compromised. Also my Pc starts to Lag heavily sometimes where my pointer goes crazy slow. Please HELP! Addition.txt FRST.txt
  20. I've been recently infected by downloading a sketchy application. As soon as I felt something was off I stopped it and ran Malwarebytes which deleted most of the viruses. There is two backdoor malware I cannot delete. I've also noticed after this event my computer has been freezing a little every 10sec or so... I believe this might be the cause of it. I came onto the forums to see if there was a solution to deleting the two unwanted malware. Addition.txt FRST.txt MalwareLog.txt
  21. I downloaded a program from a third party website and now I have what I believe is a rootkit that I can't delete from my computer. I've uninstalled everything possible, scanned with Malwarebytes and Norton and they remove everything except a file called wmcagent.exe and some folders with weird names like snoteku. It is in my User/Appdata/Local folder. I cannot delete it or a few folders I believe are associated with it. It only says access is denied. I've used the Malwarebytes AdwCleaner and Anti-rootkit and the Norton variants and it can't remove it, or don't detect it. There are two programs running in task manager called "client" and I can't end them, or they just restart later. I even reinstalled Chrome and double checked all my browsers to make sure it's not an extension. I followed some of the steps from this because I believe this is the same problem. However I am not sure and would rather not go through some of the complicated steps toward the end if I don't have to. Towards the end of the guide, they use the FRST executable, and paste the text inside and click fix. His does not work and mine does, the rest of the guide is dedicated to finishing his problem; however it is not clear if they ever fixed the problem. Any advice? Attached is a few files from the guide that might be helpful to look at. FRST.txt Addition.txt Fixlog.txt
  22. Good afternoon, lately my internet connection started being really slow so I thought it could be caused by a malware, then I decided to install and run Malwarebytes on my PC since Windows Defender didn't help me at all. This problem only occurs temporally, then my connection works normally for a few hours, so I don't think it's about hardware. Malwarebytes found many threats which I've already deleted, but I'll post its scan log anyway. It solved an issue that made the Google website be slow, but my internet is still failing a lot. Of course, I've been talking to my internet provider company, but they found no issues, and my speed should be 300 Mb/s as it's shown by the speed tests but it's clearly not. Furthermore this is not happening to any other devices connected via Wi-Fi. At this point I'm totally lost, so I'd be grateful if you could help me. Thank you very much. (FRST, Addition and Malwarebytes logs are attached) FRST.txt Addition.txt malwarebytesLog.txt
  23. It was until yesterday when I started to hate my laptop when it suddenly started draining battery very fast and was heating unusually. I had recently been attacked by some severe malware and I think it's related to that. I may have removed many viruses like .lnk , .exe . The browser window used to suddenly pop up; after removing it, Tfiajedi.lnk installer was popping up. Now everything's fine but this battery issue isn't resolved. I have been wandering on google to find a solution. somehow I managed to find some solutions but didn't try as they were asking to install some software which is already the cause of my laptop being infected as I tried to find a free software and ended up here. Can someone help me fix this issue and tell me whether it really is a virus or my laptop's battery is malfunctioning. THANKS.
  24. Hey guys, I noticed a strange folder in my temp folder called BCLTMP containing subfolders with the names of my browsers. Inside of these folders are files that contain my saved favourites, visited urls and searches. After deletion of the BCLTMP folder it appears again after a while, sometimes after a day, a week or a month. After scanning my PC with all the tools I have (which didn't find much and didn't stop the folder appearing) I decided it might be normal.. Then I bought a new laptop which showed the same behavior within the same week I bought it. Nothing was installed on the laptop, no usb used, it had only been connected to my router. I have connected other laptops to my network in the past which showed the same behavior. Could this BCLTMP folder which seems to track my browser history be spyware/malware? No one else seems to have the folder. I am using Windows 10 pro on both devices. I tried scanning with malwarebytes, roguekiller, adwcleaner, eset sysrescue, exterminate it, spydllremover (which reports hidden rootkit, with processID, hidden), superantispyware. tdsskiller won't boot (redownloaded, same result) and comodo CCE crashes the computer and then refuses to boot. Note that the laptop with the BCLTMP folder is a clean windows 10 install with no installed software. My router reports synflood attacks from within and outside of my network, and it's firmware has been reinstalled by the isp just to be sure. Not much else to see there. How can I figure out what is happening to my devices, and what this folder is for?
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.