Jump to content

Search the Community

Showing results for tags 'Malware'.



More search options

  • Search By Tags

    Type tags separated by commas.
  • Search By Author

Content Type


Forums

  • Announcements
    • Malwarebytes News
    • Beta Testing Program
  • Malware Removal Help
    • Windows Malware Removal Help & Support
    • Mac Malware Removal Help & Support
    • Mobile Malware Removal Help & Support
    • Malware Removal Self-Help Guides
  • Malwarebytes for Home Support
    • Malwarebytes 3 Support Forum
    • Malwarebytes for Mac Support Forum
    • Malwarebytes for Android Support Forum
    • Malwarebytes for iOS Support
    • False Positives
    • Translator Lounge
    • Comments and Suggestions
  • Malwarebytes for Business Support
    • Malwarebytes Endpoint Protection
    • Malwarebytes Incident Response (includes Breach Remediation)
    • Malwarebytes Endpoint Security
    • Malwarebytes Business Products Comments and Suggestions
  • Malwarebytes Tools and Other Products
    • Malwarebytes AdwCleaner
    • Malwarebytes Junkware Removal Tool Support
    • Malwarebytes Anti-Rootkit BETA Support
    • Malwarebytes Techbench USB (Legacy)
    • Malwarebytes Secure Backup discontinued
    • Other Tools
    • Malwarebytes Tools Comments and Suggestions
  • General Computer Help and Security Updates
    • BSOD, Crashes, Kernel Debugging
    • General Windows PC Help
  • Research Center
    • Newest Rogue-Ransomware Threats
    • Newest Malware Threats
    • Newest Mobile Threats
    • Newest IP or URL Threats
    • Newest Mac Threats
    • Report Scam Phone Numbers
  • General
    • General Chat
    • Forums Announcements & Feedback

Find results in...

Find results that contain...


Date Created

  • Start

    End


Last Updated

  • Start

    End


Filter by number of...

Joined

  • Start

    End


Group


AIM


MSN


Website URL


ICQ


Yahoo


Jabber


Location


Interests

Found 521 results

  1. Hi guys Two days ago a problem accured when this chrome extension appeared and whenever im trying to search something on google it will search it with YAHOO SEARCH and often redirect me to windows reimage repair download links. This chrome extension has no picture and is called ''Max Video Player'' and is not removable. Even after installing Adwcleaner and SpyHunter and running them, this extension keeps coming back. SpyHunter will also crash. But i think this happened after i installed some free game from the internet and when i ran the setup from this ''game'' it opened three cmd bars and added three symbols that said ''Play Crossout'' and ''Iphone X'' and more ads. I'm annoyed and want a solution :(((
  2. My cp usage will randomly spike to 15-20 per cent usage while idle, help me please thanks in advance
  3. Hello: Sorry if this has been asked before. I've already searched but since I don't know the name of this malware, I can't find it. There's a possible rootkit that keeps reinstalling programs on my Windows 7. These programs are "Safe finder" "Butler" and some others. When I uninstall these programs, they appear againg shortly after, and they keep opening by themselves and my browsers keep opening new tabs that lead to spam. I've tried using Malwarebytes and it removes these programs really fast. But when the computer restarts after the cleaning, the programs appear again. I've found the icon displayed on the photos on the toolbar and when I shut down the computer. And it seems to be running on the backround installing something. My guess is those programs. Anyone knows what it is and/or how to remove it? Thank you!
  4. Two days ago my computer started running really slow, so i did a scan with Windows Defender and found nothing. So I ran malwarebytes and it found 2 Trojan.Roraccoon's. Went through the process like normal, select the two malware and click quarantine selected. Malwarebytes says it quarantined them but needs to restart. Restart computer and when i run the threat scan again they are found again. I ran FRST and attached the FRST.txt and affition.txt and also attached the export log of my last scan. Im hoping someone could help me please Thank you James FRST.txt Addition.txt report.txt
  5. Hijack.Userinit Basically I picked this up somewhere and I have used Malwarebytes to try and get rid of it. However it comes back when restarting. I have also tried adwcleaner and it still comes back. It has been messing around with google chrome to the point where it is unusable and it has been making my system really slow. I am running windows 10 but it just won't go. Can anyone help me before this gets worse?
  6. Hello, i have problem with powershell.exe it slow down my pc, but i dont know what to do to delete him, can anybody help me please? I saw few topics and i installed frst64 in attach are logs. Thank you. Addition.txt FRST.txt
  7. Hello, Could you help me with this... Thanks a lot hijackthis.log
  8. Hey guys, I need help removing what I think is an SvcHost virus. I recently started having adware tabs pop up on my PC and then after searching for solutions found that whenever I opened a Malwarebytes (or similar website) page, my browser would immediately crash. This happens in Chrome, IE, and Tor. I found this thread which seems to be a very similar virus and after reading a few others, I downloaded MalwareBytes, Rkill, adwcleaner, FRST64, tdsskiller, and aswMBR. (I'm typing this on my other PC btw. Downloaded the files on it and emailed them in a .RAR to my desktop.) This lead to me finding a few things: -I restarted my PC and immediately opened the Task manager to find an unnamed task using 50+% of my CPU. If I look at its properties, it says it's Svchost and is located in SysWOW64 where it takes up 44kb. -I can kill this process, but it doesn't stop the virus from opening apps or closing browsers. -I do not have permission to delete the application from SysWOW64. I need "TrustedInstaller" permission, which I know can be a legit Windows thing. -The MB3-setup exe will not run. -If I run Rkill then attempt to run the MB3 exe, it logs the following: -I deleted the INetCache folder which appeared to be empty. Nothing changed. -adwcleaner and FRST64 won't run. -tdsskiller doesn't find anything -I ran aswMBR and my PC blue-screened with the following support info This is where I am currently and I would appreciate any help anyone can give me.
  9. Whenever I boot up my PC, I always see Malwarebytes blocking a program called "SppExtComObjPatcher.exe". Once it was quarantined and deleted, it keeps on coming back. My PC does NOT encounter any performance difficulties or has any other extension that seems fishy for my browser. However, Malwarebytes keeps on detecting this program and I don't know what should I do about it. When I delete the quarantined programs and perform a Threat Scan with Malwarebytes, it doesn't find anything. When I delete the quarantined programs and scan with AdwCleaner 7.2.3, it also doesn't find anything. Any help?
  10. Ever since the latest update, everything Malwarebytes refuses to work on my computer anymore. I am stuck in a loop where my computer asks to be restarted every-time I reinstall the program. (It asks to restart even before the installation progress bar ever moves). I tried the support tool, and it automatically goes into error. I am told that this is due to a virus or a malware, but that is as much help as I got with this problem.
  11. Back on August 17, I installed Malwarebytes on my machine since I was having performance issues. The scan found 16 threats on my PC, and removed them as such. Even after this scan though, and several others, Windows Powershell is still performing some suspicious activity. Malwarebytes will occasionally notify me of an outbound connection to "wentz.pw" that Powershell keeps attempting to make. This is classified as "riskware", but I'm concerned since I can't get rid of it. Attached is the log for the most recent connection attempt. blocklog.txt
  12. I have tried almost everything, I could think of please help, I need Aura
  13. Hello everyone, Well, as you may have read from the title my computer have been infected by the KMSpico malware and consequently, dozens of trojans, viruses, etc. have been installed. The reason why I installed KMSpico is quite obvious... so let's skip that part, I've already learned my lesson. Now, I installed Malwarebytes and run an analysis. It detected 658 threats, so you can imagine how unsafe I felt after that even though they've been removed. What I'd like to know is if you could guide me on how to make sure my machine is indeed completely clean from all the trash that was installed, e.g. cryptocurrency miners, adware, browser hijackers, and other potentially unwanted programs. Here I'll attach the results I've got from Malwarebytes: malwaredetection.txt, malwaredetection2.txt. Thank you in advance for your help, Regards
  14. I have a Z87-g45 gaming motherboard and I can't get it to boot to usb. My computer completely crashed after I ran hitman and malewarbytes. I ran both scans and each told me a restart was needed so I waited for both to finish since they both required a restart. Prob was not good idea since now my computer won't boot at all. Once I was prompted of a failed startup I chose to restart from last known good configuration. It just got hung on the starting Windows screen for over 3 hours. So I tried changing the bios to ufei instead of legacy+ufei and tried to see if that helped. It didn't. I've tried restoring bios to defaults to see if it helped it did not. Stuck on loading Windows screen. I took the battery out of the mother board and left it out for 5 mins and tried to start it. Same thing stuck on loading Windows. After trying to load to safe mode with network and without network and trying to load to command prompt and it all still getting stuck I decided to go purchase a new computer to try to get some recovery software to try to fix the problem. So my first choice of programs to try is Hiren. I downloaded Hiren and it was an iso file. So I formatted my usb thumbnail to Fat32 and used PowerISO to burn the Hiren ISO to the usb. (Using the create bootable usb option) after it was finished burning to the usb. I removed it from computer and put it into broken PC. Booted PC up and push F10 till I got to the bios. Changed boot priority to #1 uefi usb #2 usb. Saved changes and restarted. Went to stuck loading Windows screen. Power off, power on F10 changed bios from uefi+legacy to just uefi and booted usb first priority. Saved and rebooted. Went to stuck loading Windows screen. Figured I'd just try to see if command promp would work. Power off, power on F10 changed to default bios settings saved and restarted. Windows failed to load restart with command promp. Stuck on Windows loading screen but it finally worked and I was in command promp. Trying several commands to figure out what drive the usb was and looking on Google trying to find list of commands to use with command prompt. The computer automatically just restarted and I didn't even execute any command. Now unsure I can get to command prompt again. Tried rebooting again and again about 4 or 5 times and get stuck on Windows loading screen and no option of boot to command prompt. I can get to efi shell easily but don't think that's gonna help me with what I need. I honestly don't know what I should run off of hirens even if I do get it to run. I'll use to research Google as I go. My biggest problem is trying to get the usb to load then if someone would like to walk me to diagnose the problem id be forever grateful! Please help me. I've repaired computers that have crashed before but this is first time this computer with this motherboard has crashed and I just can't get it to do right and it's been killing many days just watching a stuck screen. Please! TY in advance!
  15. obaid1011

    diskdriver.exe

    My windows pc has been infected with a virus in the folder C:\Windows\System32. my default window antivirus could not detect this virus but then i installed the free version of AVG which was able to detect this virus but every few days this virus reappears and i have to remove it again. From my research and little bit of knowledge i think this is related to some kind of cryptocurrency mining. Any guidance on this topic would be appreciated Original Filename: diskdriver.exe Type of File: Application(.exe) Description: disk io driver Location : C:\Windows\System32. size : 1.97 MB (2,069,504 bytes) size on disk: 1.97 MB (2,072,576 bytes)
  16. Hello, I am very new to the malwarebytesforums and it is admittedly a little bit late to be searching for help, but this infection has avoided everything in my power. About four days ago, I acquired a new steam game, but it kept crashing to desktop upon launch. Although the fix was simple (Update graphics drivers), I saw a "Mod" by someone online that'd fix the issue. After downloading and running the file, it gave me an error, so I closed and deleted it, and didn't give it much thought. Little did I know I started going down a slippery slope. About an hour later exactly, norton starts giving me this: There are attempted attacks ranging in intervals of 10 minutes to 2 hours (Not shown here for the reason explained below) Firstly, I apologize, my Windows install is in Spanish, it can't be helped, but I don't think it will affect the removal process. Secondly, the attack always originates from a (What i assume must be) a regional location file within the SysWOW64 folder. I HAVE tried to delete the file folder highlighted below on red (Last attempt today no, which solves the issue for about 4-8 hours. It always comes back. Scans using Zemana, Malwarebytes, Roguekiller, Norton PowerEraser, and the like, return empty. I have also tried running TDSSKiller, but the files it found are either redundant (Civilization V uninstall files and the like) Or Kernel and system drivers which I am too afraid to delete. The only thing I have not attempted is the FRST tool as I dont know how to create a fixlist, and I am afraid of what it might do to the system. I am attaching the FRST.txt and Addition.txt files from today here for review, however. Thank you for reading this far, I'll patiently await your response! Addition.txt FRST.txt
  17. I'm currently using Malwarebytes for PC and Android Phone, Few days ago while Scanning my Android Phone , Malwarebytes just detected a Malware the malware name is Android/PUP.Riskware.Autoins.Fota I just wanna ask if this malware is dangerous and what the virus can do to me and my phone. I search the virus name in google but the result is nothing. Hoping to get an answer.
  18. Hello everyone. I installed Adware Doctor from the mac app store thinking it was a legitimate application. I ran it and it removed my browsers' extensions, cookies, and caches, something I could have done manually. I researched the app and found out it is a junk application that poses a security risk. I've watched YouTube videos that claim the application steals browser history and app store searches, retrieves all your application and processes information, and sends it to a Chinese server. I quickly uninstalled the application, turned on my mac firewall, and changed my admin account password. I also installed malwarebytes, ran a scan, and it showed my mac was clean. However, I am worried about what the developers could do to my mac with the data they retrieved. What I want to know is: am I ok? If not, what else should I do to be safe? Links to YouTube videos: https://www.youtube.com/watch?v=cBI5FvOFLls https://www.youtube.com/watch?v=nZ7CVIy5Tq8 https://www.youtube.com/watch?v=IdDE9IPPGJA
  19. I have just installed malwarebytes Premium Trial 3.5.1 and the programme scans the computer and locates over 788 threats, but during the heuristics analysis it gets stuck. It appears to be a similar problem to https://forums.malwarebytes.com/topic/147143-mb-gets-stuck-at-heuristic-analysis/ That article is from 2014, so I'm thinking it might be dated. I have run the adwcleaner which did remove some threats. I have already run mbam-clean-2.3.0.1001 and reinstalled malwarebytes a couple of times, but it always gets stuck in the same spot. Your help is greatly appreciated. mbst-grab-results.zip
  20. I'm a recent subscriber to Malwarebytes Premium. Today I noticed some odd behaviour of my laptop with Windows Defender not updating, and some webpage links not working like they should. I ran a Malwarebytes Scan that found no infections. I decided to look through my settings and found under the tab 'Éxclusions' that a 'Clearload.bid' was an exclusion, with the exclusion type as a webpage. A search of Clearload.bid identified it was a malware. I then removed it from my exclusions. Checked my 'Protection' settings and found that rootkits and scan within archives had changed, I activated these settings and ran another scan. This again found nothing, however I'm not confident this is all I should do to ensure my system is clear of this malware. I attach a copy of my most recent scan report. Malwarebytes www.malwarebytes.com -Log Details- Scan Date: 8/1/18 Scan Time: 8:16 PM Log File: f6bf1cc6-9573-11e8-8211-dc0ea1a5545e.json Administrator: Yes -Software Information- Version: 3.5.1.2522 Components Version: 1.0.391 Update Package Version: 1.0.6153 License: Premium -System Information- OS: Windows 10 (Build 17134.191) CPU: x64 File System: NTFS User: LAPTOP-ASIO-UND\craig -Scan Summary- Scan Type: Threat Scan Scan Initiated By: Manual Result: Completed Objects Scanned: 279400 Threats Detected: 0 (No malicious items detected) Threats Quarantined: 0 (No malicious items detected) Time Elapsed: 23 min, 46 sec -Scan Options- Memory: Enabled Startup: Enabled Filesystem: Enabled Archives: Enabled Rootkits: Enabled Heuristics: Enabled PUP: Detect PUM: Detect -Scan Details- Process: 0 (No malicious items detected) Module: 0 (No malicious items detected) Registry Key: 0 (No malicious items detected) Registry Value: 0 (No malicious items detected) Registry Data: 0 (No malicious items detected) Data Stream: 0 (No malicious items detected) Folder: 0 (No malicious items detected) File: 0 (No malicious items detected) Physical Sector: 0 (No malicious items detected) WMI: 0 (No malicious items detected) (end)
  21. So i was running a adw cleaner and it decteced PUP.Optional.SofTonicAssistant. It said it was a registry keylogger and i cleaned it up and repaired it, but it wont go away. After that i ran a malwarebytes scan and it picked up nothing. ANy pointers?
  22. jshblncflr

    Pls help me :(

    So i download this software window 10 activator and then suddenly my antivirus detected malware and now my laptop is slow as f. so can someone help me i tried to scan like 3 time with the use of malwarebytes but still i dont think my laptop is safe, can someone pls help me with this, what do i need to do?
  23. Hey, I'm more than a little panicking at the moment. I downloaded a copy of Premiere Pro like 30 minutes ago, which I've found out obviously isnt Premiere pro.. Im doing my malwarebttes scan right now and the current threat count is at 152... It says the identified threats are a mix of files and folders, most being called trojan.yelloader. Its popping up windows of ads 8 at a time and its playing through the speakers repetitively and I really need urgent help with this. The popup windows are called "fnrmavndt"
  24. Hello you guys, I'm a student. When I study malware, I wonder how we can detect a file that was infected? I google and then knowing that, AV, and some sandboxs detect malware through hash256. Howerver, I can not understand how it works. Please help me know, how we can hash a file then compare with hash database? Thanks for reading!
  25. Hi Everyone! Why Malwarebytes has blocked "grupomissael.com" and suggested not to continue to this website. How did it know that? Malwarebytes www.malwarebytes.com -Log Details- Protection Event Date: 7/23/18 Protection Event Time: 4:07 AM Log File: c839747a-8e14-11e8-8387-68b599e07ea6.json Administrator: Yes -Software Information- Version: 3.5.1.2522 Components Version: 1.0.391 Update Package Version: 1.0.6011 License: Premium -System Information- OS: Windows 10 (Build 17134.167) CPU: x64 File System: NTFS User: System -Blocked Website Details- Malicious Website: 1 , , Blocked, [-1], [-1],0.0.0 -Website Data- Category: Malware Domain: www.grupomissael.com IP Address: 23.229.216.196 Port: [56495] Type: Outbound File: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (end)
×

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.