Jump to content

Search the Community

Showing results for tags 'malware'.



More search options

  • Search By Tags

    Type tags separated by commas.
  • Search By Author

Content Type


Forums

  • Announcements
    • Malwarebytes News
    • Beta Testing Program
  • Malware Removal Help
    • Windows Malware Removal Help & Support
    • Mac Malware Removal Help & Support
    • Mobile Malware Removal Help & Support
    • Malware Removal Self-Help Guides
  • Malwarebytes for Home Support
    • Malwarebytes for Windows Support Forum
    • Malwarebytes for Mac Support Forum
    • Malwarebytes for Android Support Forum
    • Malwarebytes for iOS Support
    • Malwarebytes Privacy
    • Malwarebytes Browser Guard
    • False Positives
    • Comments and Suggestions
  • Malwarebytes for Business Support
    • Malwarebytes Endpoint Protection
    • Malwarebytes Incident Response (includes Breach Remediation)
    • Malwarebytes Endpoint Security
    • Malwarebytes Business Products Comments and Suggestions
  • Malwarebytes Tools and Other Products
    • Malwarebytes AdwCleaner
    • Malwarebytes Junkware Removal Tool Support
    • Malwarebytes Anti-Rootkit BETA Support
    • Malwarebytes Techbench USB (Legacy)
    • Malwarebytes Secure Backup discontinued
    • Other Tools
    • Malwarebytes Tools Comments and Suggestions
  • General Computer Help and Security Updates
    • BSOD, Crashes, Kernel Debugging
    • General Windows PC Help
  • Research Center
    • Newest Rogue-Ransomware Threats
    • Newest Malware Threats
    • Newest Mobile Threats
    • Newest IP or URL Threats
    • Newest Mac Threats
    • Report Scam Phone Numbers
  • General
    • General Chat
    • Forums Announcements & Feedback

Find results in...

Find results that contain...


Date Created

  • Start

    End


Last Updated

  • Start

    End


Filter by number of...

Joined

  • Start

    End


Group


AIM


MSN


Website URL


ICQ


Yahoo


Jabber


Location


Interests

Found 217 results

  1. Everytime I started my pc, I noticed a thread named g****.tmp.exe appeared in the running thread. I suspected this is a malware infection. I attached the scan results from Farbar Recovery Scan Tool and the tmp.exe below. Please help, thank you. FRST.txt Addition.txt tmp.zip
  2. The other night I tried to visit a site, but Panda Dome would not let it display and reported it as a virus because of a redirect (see attached items). Now I am getting the issues on other pages. I thought it might be malware and have used all the apps, but am unable to find anything on my system. Do you know what could be causing this issue? Blocked Items.txt
  3. I recently opened a Microsoft Word document i was sent my someone who i didn’t know very well. When i opened it my mind began racing as to why he would want me to open this... that’s when i got to googling and found out about “Malicious Macro’s”. That’s when i decided to have a look at my Task Manager, there i found a file called “Launch” in my Start-Up. I disabled it right away and then began finding more and more suspicious things running that i knew were not previously there. One was called “Coordinator.exe”. As i started digging more clicking on “Open-File-Location” i found a folder full of at least 100 python scripts... in my panic i deleted almost everything i suspected to be malicious... i found dozens of DAT files and text documents which are mostly appearing in Temp folders in Users>Local>Temp and Windows>Temp. The DAT files are all just named a random assortment of characters and the text documents are all called the name of my PC and then random numbers, these text documents are being dumped into Temp hour after hour and contain a sort of Log looking thing? However i don’t know what it is logging... I also found a file called “ZoomInfoContactContributor” blah blah blah.. I believe this to be a part of the malware as i have never used Zoom before. I did a google search and found that it could be malware, you can see it for yourself here: https://www.hybrid-analysis.com/sample/0ac026cc1f7a108f5fd908f7703d8af1d14735cff2556f230f902990321563b7?environmentId=120 although i could not really make sense of it. I have also done a MalwareBytes scan (with Rootkits box checked) and it found 0 Threats in an 8 hour scan... So what i want to know is... did i disrupt this malware in my tangent of deletion? or could it still be present somewhere undetected? Thanks in advance.
  4. My iphone has been making calls by itself around the same time (11:00am) by itself to numbers not in my contacts, every morning for the past 4 days, sometimes two numbers a day. I can tell they have all been local numbers by the area code but i have no clue how this is happening? Any ideas/fixes?
  5. Today I installed an app from outside the play store named Amoled live wallpaper from yhe website apk4free.net (full url : https://apk4free.net/amoled-livewallpaper/), this link tricks you into downloading mobidash which is 6.8 Mb something. So I downloaded and installed the adware thinking it was amoled lwp and guess what!? it was not showing either in my apps screen or my application manager, however all thanks to malwarebytes, malwarebytes found it and uninstalled it, it was even not being shown as a blank app in my application manager, I did everything to find it. So I just want you guys at malwarebytes to know that this adware no longer shows itself in the application manager. It has evolved. I'm using a galaxy note 10 lite android 10. Thanks, awaiting your reply. Please do assure me that the malware or adware had reaaly been uninstalled by malwarebytes from my smartphone. Please download and inspect the file from the respective link I provided above.
  6. hello first of all please dont judge my english 😅 so the thing is i used a program that was recomended by malwarebytes in a topic i found, and malwarebytes found some but not all and i wanted to ask you guys for help this is what the program found. so what should i do reinstall my pc ,or are these threats deleted ? because i see partially 😯 msert.log
  7. Hello everyone, I am a long time user of MalwareBytes Free and believe it good practice to run a good AV and Malware tools as standard PC security. I am raising this query because i have seen anomalies over a long time (over a year) and am now thinking it could be the security products. I run the latest Avast Free AV and Malware Bytes free along with Hotspot shield free VPN. i regularly do Avast boot time scans and Malware Bytes HDD scans in windows. After these scans occasionally i see odd issues ranging from file associations reverting back, occasional application reinstalls and like today outlook not opening due to a corruption in the Avast add in. A Avast reinstall fixed this. If anyone can advise me on: 1) Do i need separate AV and malware protection? 2) Does Avast free AV and Malware Bytes free work together? 3) If MalwareBytes does not work well with Avast free AV can any good AV be recommended. Any help is appreciated.
  8. I was trying to install one package from internet and I have installed some kind of malware by mistake. It spawns an app inside ~/Applications after some time. Overall app has same icon every time. It is magnifier tool on green/blue background. Once app is called SoftwareIndexer and another time TypeInditator. App is turning itself and it kills safari, clears all tabs and spawns new instance of safari. If Safari is closed it spawns a new instance. Nothing else. App deletion fixes this behaviour but after sometime it is respawned again.
  9. I keep getting a URL:Mal threat secured notification from my Avast antivirus software. When I run I scan using Avast, it picks up no virus, malware or suspicious threat. When I run a scan in malware bytes it also picks up no malware, viruses or threats. How do i remove this? I am running mac. The threat keeps coming up as being from the following links i have i have never been on before: upd-pct.info/ or pctupd.info/ . I did some research on this, and found out it is coming from PopcornTime which is a P2P app for watching movies. I immediately deleted the app and all its contents but the pop still comes every 5 hours or so. I still have not been able to find any solid information on how to remove this threat. I fear this may be a new malware or virus that neither Avast or Malwarebytes is aware of, and it constantly trying to connect to the internet in the background, which is when avast blocks the attempt. I cannot fins any information on how to remove this threat, please help me.
  10. Hello, This is my first time in this forum, Requesting the concerned person to remove the following domain name from Malware list as it's a valid ecommerce site. The URL is: https://www.meenaclick.com Quick action would be highly appreciated. Thanks & Regards S N Alam
  11. about 3 weeks ago I had to download a software from a site I don't trust called "get into pc" and after about 10 days I noticed windows defender doesn't exist anymore, windows update not working and the pc takes much longer to boot so I downloaded malware bytes and did a scan. It detected 27 malware elements trojans, something called bitcoin miner and some other things, I quarantined them all and installed a new windows and after about a week or so everything happened again and windows defender is deleted again and the pc rakes longer and when I scanned by malwarebytes it detected the same 27 malware elements although I deleted the software I downloaded from that site.. what should I do ?
  12. Hello! I am on my Mac and I am reviewing the installations on System Info and I see two dates that call my attention, on May 4 2020 and April 13 2020, I didn't installed Malwarebytes on those dates and it's reported as if I had when I didn't. I first installed Malwarebytes on March 12, 2020 and on May 18, 2020 but not on this previously mentioned dates. Why is it reported this way?
  13. Hello. Since I updated my windows 10 (this morning), Malwarebytes keeps showing a pop-up of "Website blocked due to phishing" And this is - it. And these are the advanced "info" - Malwarebytes www.malwarebytes.com -Log Details- Protection Event Date: 7/6/20 Protection Event Time: 8:45 AM Log File: e7aa89d8-bf4b-11ea-af68-00d861d43d5b.json -Software Information- Version: 4.1.0.56 Components Version: 1.0.972 Update Package Version: 1.0.26459 License: Trial -System Information- OS: Windows 10 (Build 18362.900) CPU: x64 File System: NTFS User: System -Blocked Website Details- Malicious Website: 1 , C:\Windows\System32\PING.EXE, Blocked, -1, -1, 0.0.0 -Website Data- Category: Phishing Domain: window-updates-service.com IP Address: 151.106.15.12 Port: 0 (No malicious items detected) Type: Outbound File: C:\Windows\System32\PING.EXE (end) I want to know if it is a real problem or it is not. If it's safe for me to add a web exclusion for the site or not. Thank you for your time.
  14. Good morning everyone, I'm new in this forum, I really hope you can help me. Yesterday I've find something strange in the behaviour of the PC: Windows Defender doesn't find any problem but when I open its history it crashes. I've find the name of the maleware before the last crash (Trojan:PowerShell/Mountsi.A!ml). Running MalwareBytes I've found some malewares so I eliminate them but the problem is still there! Thanks.
  15. I was recently on opera and noticed a search bar pop up on the top of the screen, when you click on the search bar it takes you to a fake search engine and whenever you search something it takes you to a yahoo page I figured it was malware so I even downloaded Malwarebytes right off the bat and ran a scan. Nothing was found. I found the malware in control panel and deleted it but it is still there. I've re-ran Malwarebytes and nothing is found but I can't find a way to prevent this search bar from appearing on the top of my screen. Any thoughts on what I need to do?
  16. Hi, I had been having awful trouble for a while with webpages not loading "resolving host" issues, in multiple browsers. I thought it was chrome so I changed to the new Edge chromium After searching for answers I came across a number of people having the same problem and the cause seemed to be Malware bytes and mainly real-time protection. I turned real time protection off, and have now run for two weeks with a 99% improvement, I wondered if you could check for me. Last week I collected the log reports to upload here (attached) I think I also had trouble when running the free version though, Im not sure I wondered if you could confirm this and what to do about it, I paid for a premium subscription on 3rd april 2020 but was running free version before Many thanks for any help mbst-grab-results.zip
  17. The program isn't showing up as the Free or Premium version, I bought a key but whenever I try to activate it it can't connect to the license server. I reset all the firewall settings but it didn't work. Here are the grab results from the support tool. mbst-grab-results.zip
  18. So I unfortunately encountered a malware when I tried to download a game from unknown sources. It was the SAntivirus one and it even installed the SAntivirus Lite on my laptop. I detected it and uninstalled the app and after that even used malwarebytes to check for potential threats and quarantined the Trojans and PPUs detected. But my laptop is still slowing down to the point where it takes almost twice/thrice the time to open up application and boot. I would really like someone's help. It you want I am ready to run scans and share the same here. I fear I might not have access to the scan result of when I removed the SAntivirus malware but I will have to check. I am obliged to anyone who helps me
  19. here's the logs you need. i have no idea where i got the RAT from since i didn't download anything sketchy. I did a full system reset with settings to try and get rid of it but apparently they can survive those so i want to get rid of all rootkits/ rats/ hidden malware in my pc. thank you in advance! Addition.txt FRST.txt malwarebytes log.txt
  20. Hi, so one day I was playing Minecraft and almost took a break but somebody was moving my mouse! So I went into airplane mode and scanned around but didn't find anything. I reset my PC with settings and I read that RATs can survive resets so I want to get my system rid of all rootkits and RATs and hidden malware.
  21. Hello, I have problems with g****.tmp.exe, it use RAM and CPU in process. I read some topic in forum and know i need Fixlist.txt checked by some of you. Here are my file after run FRST64, hope someone can help me. Thank you in advance! Sorry for my bad grammar English. Addition.txt FRST.txt
  22. After launching game it crashed, after I tried to delete the folder it was open in another application. Using Process Explorer I found that it opened a schtask.exe. I looked in Task Scheduler and found a GoogleUpdateTaskMachineUAC that hasn't run yet, but it was linked to a file in Roaming/d_temp/sevices.exe with the game's logo. The game was scanned by ESET nod32 before I ran it. Malwarebytes free didn't detect anything neither did the Rootkit protection or the windows security.
  23. my dekstop has been infected by tojan.agent, i already use both malwarebytes and adwcleaner. but on adwcleaner, i cant delete the trojan.agent on c:\windows\rss folder. im still using my windows defender, and the virus still apearing everytime i turn on my dekstop. i dont have any idea to do now, can someone help me? thankyou!
  24. I was invaded on my Mac running Catalina 10.15.5 by MacKeeper. Everyone thinks it's just a virus scanner app that has bad code but the company is worse than what it appears. I will attach some files that they took over to take full control of my Mac and wanted 200 to go on it with their techs and "clean" the viruses and malware that I had. When I told them no I got the full brunt of their invasion. They quickly ran a js file that installed their ransomware before I could disconnect my mac from the internet completely. I then spent a day tracking all the files and broke them into readable code so I could see what it was doing. Here was my first clue that I wasn't getting my Mac system drive back. This is from the System/Driverkit/Runtime/.../kernal/.../info.plist: Note that it changed the package type to 'FMWK' and the signature is '????'. I went looking for files installed by FMWK and found it had rewritten the code in my grammar checker for chrome to include thousands of lines of code. It took over root and all the groups. It added it's own acct and changed the root/admin password so I couldn't undo their program or kill it. It had a line of code in it that basiclly said, "if any of my files are changed or missing to add them back right away." I did try a lot of deephack moves on their code but it would just put itself back. It added hundreds of files in all different types such as js, php, xml, css, de, oss, json, h, c, html, intime, py, ssh, and more. They wrote files into the usr/local/opt, opt/x11/bin, lib/ext, lib/apple, sys/vol/data and added a burred directory called /zz/. They captured my fingerprint reader because I have all my passwords in a safe. This they used to control what I could get to and do. They added com.apple.lockoutagent and webpack bootstrap so neither I nor Apple support could use the system recovery section to rewrite the system. The grammar file base app was called Grammerly_popupeditor-denali.js. so I took it that they were from India. And I could go on for a long while about the code I found in these files but I couldn't do anything about it. I finally gave into the fact that they had won the battle and I totally cleaned the system drive and wiped my Mac til I knew it was clean. Then I used an external boot drive to reinstall the system. It's a good thing they couldn't get to my apple id password or my icloud id because they trashed my TimeMachine backup drive too and made it a mess. I had a couple of long days and nights breaking down what they had done and to what extent then reinstalling my system. I'm writing this account of their activities so other will be ware and maybe someone higher than me (Apple) will put them on the blacklist. Yes I did have Norton installed and it would have stopped them but they thought of everything and erased the main .exe file before they installed all this mess. Of course I could not reinstall it or any other app too. There are names for people like this that I won't say. I just hope someone shuts them down before we loose a government computer or something else important. It has taught me a valuable lesson in cybersecurity and that is to do better at it. They will get theirs someday. I found them out and so will others. Please put them on the blacklist Apple.
  25. Hello! I deleted my trash the other day and has happened to me twice that some random files re appear in trash after deletion, does this have to di with malware or just a simple bug?
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.