Jump to content

Search the Community

Showing results for tags 'Malware'.



More search options

  • Search By Tags

    Type tags separated by commas.
  • Search By Author

Content Type


Forums

  • Announcements
    • Malwarebytes News
    • Beta Testing Program
  • Malware Removal Help
    • Windows Malware Removal Help & Support
    • Mac Malware Removal Help & Support
    • Mobile Malware Removal Help & Support
    • Malware Removal Self-Help Guides
  • Malwarebytes for Home Support
    • Malwarebytes for Windows Support Forum
    • Malwarebytes for Mac Support Forum
    • Malwarebytes for Android Support Forum
    • Malwarebytes for iOS Support
    • Malwarebytes Browser Guard
    • False Positives
    • Comments and Suggestions
  • Malwarebytes for Business Support
    • Malwarebytes Endpoint Protection
    • Malwarebytes Incident Response (includes Breach Remediation)
    • Malwarebytes Endpoint Security
    • Malwarebytes Business Products Comments and Suggestions
  • Malwarebytes Tools and Other Products
    • Malwarebytes AdwCleaner
    • Malwarebytes Junkware Removal Tool Support
    • Malwarebytes Anti-Rootkit BETA Support
    • Malwarebytes Techbench USB (Legacy)
    • Malwarebytes Secure Backup discontinued
    • Other Tools
    • Malwarebytes Tools Comments and Suggestions
  • General Computer Help and Security Updates
    • BSOD, Crashes, Kernel Debugging
    • General Windows PC Help
  • Research Center
    • Newest Rogue-Ransomware Threats
    • Newest Malware Threats
    • Newest Mobile Threats
    • Newest IP or URL Threats
    • Newest Mac Threats
    • Report Scam Phone Numbers
  • General
    • General Chat
    • Forums Announcements & Feedback

Find results in...

Find results that contain...


Date Created

  • Start

    End


Last Updated

  • Start

    End


Filter by number of...

Joined

  • Start

    End


Group


AIM


MSN


Website URL


ICQ


Yahoo


Jabber


Location


Interests

Found 292 results

  1. Hello, I just started a system analysis with Bitdefender and the report mentions among other information: 153335 ignored files, 4209 password protected files. I went through the log (which is an .xml file so I cannot insert it in my message) and I saw different weird file paths, here are some example: - D:\Musique\iTunes\iTunes Media\Mobile Applications\Jetpack 1.8.8.ipa=>Payload=>jetpack.app=>assets.zip=>textures/Entities/MysteryCrystal.xml - C:\Program Files\Realtek\Audio\HDA\rtkhdasetting\103C850B\APO.zip=>APO=>84810527=>84810527.txt - C:\Windows\System32\drivers\rtkhdasetting.zip=>rtkhdasetting=>103C83C7=>APO.zip=>APO=>83110208=>83110208.txt - C:\Users\Public\Documents\Wondershare\mobiletrans_full5826.exe=>(Instyler o)=>(Instyler Module 477)=>iTunes_Control/iTunes/iTunes Library.itlp/DBTemp/.status-com.apple.itdprep.command.runPostProcessing - C:\Program Files (x86)\Wondershare\MobileTransPro\Library\iTunes_Control_ios9.zip=>iTunes_Control/iTunes/iTunesCDB - C:\Program Files\Realtek\Audio\HDA\rtkhdasetting\103C8490\APO.zip=>APO=>84850109=>84850109.txt I think this is weird that there are so much files about iTunes and Halfbrick apps, mixed with Wondershare (by the way I am currently struggling to uninstall all my Wondershare softwares, for example the uninstaller file for the Wondershare software called "Video Converter Ultimate" does not work and says something like "unins000.msg is missing"). But the most suspect thing in my opinion is the "rtkhdasetting" thing. Through a Google search I found a few topics mentionning this may be about malware... But I did not find help in these topics so I post a new one here. I really hope you can help me, I must admit I am a bit afraid Thank you in advance!
  2. Hi! Last week my Bitdefender started to detect a CoinMiner thread. It blocks it and then deletes it every time, but it keeps happening every day when I turn on my computer. I have seen that there are other people in this forum with the same problem but I am not sure how to proceed. I am scared of deleting something that I shouldn't and ruin my PC. Any kind of help would be very much appreciated.
  3. Hello, recently I downloaded a game by torrent with its updates, I passed the Nod program to verify that they had no virus, leaving the analysis clean, but with Malwarebytes I detected malware in the installer of an update, look for the same multi-sided installer and everyone gives the same analysis with the program, reviewing videos on and I could see that the installer works likewise in forums, but I would still like to doubt whether it is a virus or a false positive; I attach the history of detection of the program, the archive and the analysis in virustotal. Thanks in advance for the answer. Virustotal : https://www.virustotal.com/gui/file/5bc6fdab315d943e2d91be577b3af1093bc298516932e4a534eafb53cef781c7/detection Setup.rar 123.txt
  4. Hi. A few minutes ago I got a notification that malwarebytes had blocked svchost.exe trying to access a foreign website. My guess is that's not supposed to happen. This is the first time I have gotten that notification. I have tried a threat scan but it is not detecting svchost.exe as malware of a trojan or anything the like. I have included the .txt of the report. Thanks in advance malwareb.txt
  5. Hi Everyone, I am a new Malwarebytes member and this has to do to a message I keep getting from my other Anti-Virus program that runs my Fire-Wall, this is the message I keep getting and I got this message way before I ever installed Malwarebytes to my PC "WE BLOCKED AN INTRUSION ATTEMPT FROM A COMPUTER ON A DIFFERENT NETWORK 34.196.43.135 INTRUSION DETECTION SYSTEM (IDS) THE CATEGORY OF INTRUSION IS ATTEMPTED-dos, the intrusion level is Medium and it follows rule ID 177. The description is: DOS mstream client to handler." Now I have scanned my complete computer with Malwarebytes scanner and it found nothing, but I have a feeling that someone has installed a Trojan in my pc from an accidental webpage view, I contacted my anti-virus company and they said they believed it was just a web ad trying to get through and that's why it gave me this message. but to be honest I think they are wrong. Anyone's help with this would be much appreciated. Thanks IN Advance Phantom4
  6. Hello i have some serious virus. It happened to me before 3 years ago. I replaced all devices and got a new router at the same time and all new accounts. This fixed it. However, it returned. I thought i was hacked on my pc. At first i saw someone was remote on my pc. Windows 10 home. I tried blocking this by turning off remote desktop services and winrm. Also did this with script in powershell. Eventually my pc broke and i couldnt start my laptop ever again. Now i borrowed a laptop. After 2 days i noticed i have a shortcut virus. At first i saw a weird device turning up. Steelseries PS/2 keyboard Forwarding device. All info unknown. I removed this and my external usb bluetooth mouse and touchpad still worked. However it pops up again after i log on or after some time again. Now i found out i have a shortcut virus. All kinds of shortcuts are created and windows dissapear and a lot of stuff is happening. I had the same on my broken laptop as i had the same issues. I have 2 admin accounts and when i log on to one account the other is also opened when i look in taakmanager. I used antivirus software and defender. Nothing was ever detected. I think my usb mouse contains badusb mallware with this shortcut virus. It spreads fast. When i open a shortcut the window it opens often changes with respect to letter calibration clearness ans size, it flashes moves in the sceen and sometimes gets screenlocked, stops working or dissapears while remaining opened in taskmanager. Its already everywhere after using this borrowed laptop for 3 days. My explorer folder and pc structure has changed in one windows account. The desktop is the highest lvl structure with my pc ans user account and settings etc below it. I cannot see the pathway for these. I can rightclick the icons and they refer to the pathway they are orriginally. I also see my laptop in connected devices with option to search inside and open stuff like settings and see the devices. There are many processes happening and it eats the processor alive. All kinds of developer options get added to my programa even i have not installed this. Also the borrowed laptop had windows 10 pro. When i received it i did fresh install. After it finished the pc had windows 10 home. I couldnt get it back even when signing in to the microsoft account linked to the windows pro 10 activation key. I cannot return to the former windows. Fresh install option doesnt provide the means to completely do so. And it doesnt work. I have a feeling other devices in my network have also been infected. I hope my router software can not be infected? It has original software from my provider and i have reset to factory few times and changed password. Malware bytes on my phone doesnt find anything. back to the windows 10: i looked up the registry for local machine microsoft windows current and run, the only one starting without a defined folder pathway is tiltwheelmouse.exe from pximouse. When i clicked on open file in pathfolder i came to system32. After this the window dissapeared and when i tried opening the folder again from taskmanager and rightclick on the startup item pxi mouse, there was no such option. It also changed so that no info was available and all my startup programs now showed as start from registry. I did never change anything in the registry. I only looked at it. I cannot disable the pxi mouse anymore. I wanted to disable it as i did before and all my mouses the usb and the mousepad still worked. I also saw that the pxi mouse/tiltwheelmouse.exe was linked to this weird device with no info: Steelseries ps/2 keyboard Forwarding device which i kept disabling and removing. Apparently this device is activated when i plug in the usb mouse. Disabling the device doesnt stop any mouse from working. So i think the usb mouse has somehow been infected with a virus or badusb malware and i plugged it into the borrowed device which then got infected as well. I cannot format the usb mouse so... i will just throw it away. Nevertheless, the laptop is infected already. So i googled. I tried what was suggested on several websites with cdm.exe as admin but i didnt get rights to perform the actions suggested online. Likr disablr autorun.ink etc on windows C drive. The mouse was not connected. No other devices are only use a lancable from my router if i need internet. I tried fresh install but it didnt happen with no error messages. My firewall from norton which came with this laptops software is messed up and i have no controll to change it. A lot of things have changed in 2 days so i cannot change all options. My mouse from the laptops mousepad is moving across the screen and all sorts of stuff happen. I dont have much controll. Im sure it is shortcut virus, probably together with other malware and spyware. No clue how i got the shortcut virus on my mouse usb in the first place because i never used it on other pcs before and i never use other usbs. All i know is that I have to act quickly. That is why im asking advice here before turning on the laptop again. I dont have much time before this laptop will be potatoes as well and i need a very effective method before I do anything myself. After fixing this virus and laptop i probably need more help by finding out what happened and if other devices connected to my network are in danger. Please help me. Ask me any missing info as it is very confusing to explain all stuff happening. I could use any help. Thanks in advance!
  7. Ok, so I feel like I'm going insane. Like every third click on Chrome either gives me a Pop-up ( Usually something pornographic) or an add. When googling something, I receive a dozen of ads and sites which appear above what Im searching for. This is what I've tried to do thus far: *Run Adwcleaner *Run Malwarebytes ( And malwarebytes pro) *Run Spybot, and two others I dont remember the name of atm. *Boot in safe mode and repeat all of the above. *Went into Programs and Features to see if there were any programs I don't remember installing. *Checking google chrome extensions and afterwards reinstalling it. *I've tried disabling Pop-ups in Google Chrome settings, and got myself an extension called uBlock which is supposed to block pop ups. Feel like I've tried everything at this point. Please help!
  8. Hello Everyone. I'm hacked with multiple hacking ways. A Malware infected to my Laptop with both svchost.exe and explorer.exe infection. I have deleted this for tenth times but its still downloading or creating itself. It was a hack tool for Point Blank (Its a online fps game). I downloaded it from www.sepok-cit.com . This site has too many good reviews and i believed them. Already I Tried a few ways to delte this sh*t from my computer but none of them worked. I TRIED: 1) Deleting its files (hidden files named as spoolsvc.exe , svchost.exe and explorer.exe) 2) Deleting it via regedit (from HKEY_LOCAL_MACHINE's windows and windows NT folders) 3) Killing it with RogueKiller 4) Deleting this with MalwareBytes 5) Deleting it with Kaspersky 6) Deleting it with Avast But none of them worked. I Tried also disabling Windows Update from services.msc . Its deleted in each steps i wrote but its reinstalling (or recreating idk what it does) itself everytime i reboot my laptop and SHOWING IN TASK MANAGER WHEN I LAUNCH POINT BLANK (game that i want to hack). POINT BLANK LAUNCHER is TRIGGER of it. Its origin location is Windows/Resources and Windows/Resources/Windows. PLEASE HELP ME. IM LOSING MY MIND!!!
  9. So, I upgraded to windows 10 from an activated version of windows 7, everything looked fine, however, I quickly discovered that my computer cannot connect to the internet, I tried an ethernet cable, a tp link wireless wi-fi adapter and usb tethering - nothing seemed to work. I cannot troubleshoot network setting, netsh commands and others on command prompt havn't helped, neither did Mini tool box, driver uninstallation/reinstallation, updating etc. ... It seems this might be related to a malware issue, sadly I cannot run malwarebytes as I do not have a connection to the internet and for some reason sharing the files through an usb doesnt work either, as the installed doesn't boot, when it does I just get the same error which tells me that I need an internet connection, all I could do is run FRST64 and rkill. Help would be greatly appreciated as I do not know what to do next, seems like I've tried everything I can, and it's been annoying me for the past 3 days. Result.txt Rkill.txt FRST.txt Addition.txt
  10. Hello. This file is getting reported by MalwareBytes as a virus, and the results of VirusTotal as well, but, people don't seem to mind it on forums, is it really a trojan or it's inoffensive? Normally cracks don't do this much suspicious activity. So i'm really on the fence if i'm being fooled or people really don't care. (https://www.virustotal.com/gui/file/2843bc660722205fb5aaedf41b73a3243f1c0880b90eba576e7b9ad54c06c437/detection) I can't tell, so, please, if someone could help me i would be grateful for it. OS Is W10 64 bits. BaldrSky.7z
  11. Hi, I downloaded an unsafe file that included bundleware and, not knowing any better, clicked accept on some of the offers, which allowed a few viruses to invade my computer. Those included Segurazo and Chromium, but to my knowledge I have managed to completely get rid of Segurazo. I have used Malwarebytes scans several times after downloading the unsafe file, over the course of 4 days now, and while it has done well to get rid of most of the PUPs that came with it, the scans will not detect Chromium. Although I have managed to delete/uninstall most files named Chromium and ended its tasks in the Task Manager, the virus still persists within the background processes in the Task Manager and sometimes under the Microsoft Edge tab within the Task Manager, and in my files, unable to be deleted. It isn't giving me any more pop-ups at this time, but the last time I turned on my computer I was completely unable to load websites on Microsoft Edge, but the window was open. I restarted and am now able to access it to make this post. Any help with this situation would be greatly appreciated! I haven't seen anyone really talk about Chromium Update (32 bit) in their Task Manager. Images of Chromium in my files: - - Images of Chromium in my Task Manager: - Note: Chromium Update (32 bit) will sometimes appear as 2 or 3, but in this screenshot it is just 1 FRST.txt Addition.txt Malwarebytes most recent log.txt
  12. Have been following some of the instructions on how to remove searchmine and have been unsuccessful. Homepage says it is yahoo.com. It is greyed out and will not allow a change. New tabs open as searchmine. Any advice out there?
  13. I use Malwarebytes Premium, yet scans do not show the browser hijacker called "MyMailCenter.co " or in lower case. I have tried various methods to remove it without success. One of those methods touted in searches for remedies is to use Malwarebytes. I must get rid of this browser hijacker which is persistent malware. It is disappointing that scans do not find it so I can quarantine it. I hope someone can help. Many thanks, Barbara
  14. Malwarebytes detected this malware called wireless update if it tries to remove it crashes the application is a system application that is pre installed rooting is not a option cause there is no root available for my phone does anyone know how to remove it my phone name is v7 Zyro
  15. Hi We've recently found that our site is being blocked from some corporate firewalls. IP Address: 45.65.61.146 Web address: www.kissngo.com.au A few colleagues have reported to us that they can't access our website from their corporate networks, so we'd like to ensure that this is fixed so that going forward all our customers can access our service. We've checked with our hosting service (WP Hosting) and our SSL certificate provider (GoDaddy), who have confirmed that the site is clean and we don't have any malware. Based on this, we have been advised that we need to send a request to key firewall providers. Please would you review our site and if it is blacklisted or blocked - please would you unblock and delist it so that it is now accessible to all. If, however you do pick up any discrepancies, please can you let us know soonest. Thanks Min
  16. I have been sent here by "exile360" from another Forum. Attached you will find find: FRST, Additions How do I download the Malwarebytes Threat Scan logs that you wish sent? I am using the "Premium Edition" of Malwarebytes. Thank you Addition.txt FRST.txt
  17. Recently in the past week I have been having problems connecting to the desktop site of Discord and .io domain (Aggie.io), and called out to support in ways to see how I could fix it. I had tried to download Malwarebytes to scan my computer, but it said an error occured, so I tried to save a MBAR from another Malwarebytes forum, but it said an error had also occurred with my proxy server (for LAN). Is there any way to fix the proxy or scan for Malware, And to get rid of PUP's?
  18. Hi I have a problem where I cannot see the contents of the window for chrome, safari or app store (white or light grey) so ran Malwarebytes and had same problem for the report screen so cannot see the report to fix the problem - I am on El Capitan
  19. I just built my new PC a few days ago and i went out of my way to buy all new components except my GPU which is second-hand. I scanned my system with malwarebytes and got a lot of adware and two Trojan bitcoin miners that are located in my registry. My problem is that after every scan i get the same malware so it seems that quarantine doesn't help. I tried locating them manually with RegEdit but i cant find anything. I watched a lot of videos on my issue and all of them suggest using Task manager and MSconfig (for startups) but there is nothing out of the ordinary. If anybody can help i i would be really grateful. Thanks in advance! -Strahinja I have provided pictures of my search history.
  20. Okey so my computer is forcing re-starts of the entire system when i try to shut down. I have checked wake up magic packets by net adapters and more and disabled everything but it keeps re-starting. I have scanned with MBAM (prem version) and with windows defender but can't find anything(Note a couple of days ago i got a notification about a trojan on my system however i couldn't find it and not sure if it was cleaned but as i said i've made scans after that not finding anything so..) as i haven't made an entire reset of my computer on years i suspect it could be a virus or malicous software that forcing these restarts to keep acting like a bot for the hijacker. Here is some information about my current setup on the pc: Here are the logs for FARBAR, MBAM: See attachments. Thanks in advance! MBAM quickScanSfang.txt Addition.txt FRST.txt
  21. Recently ADWCLEANER has been detecting a Pup.Legacy. Sometimes I am able to send the PUP to Quarantine Heaven. But other times this fails and it takes multiple attempts for purge the pesky pup. Nonetheless the bad boy keeps returning. Can you advise me how to permanently get rid of it? Attached find ADWCLEANER Log Report. Thank you AdwCleaner_Debug.log
  22. Hi. My Microsoft Security Essentials Scan found Occamy.B this morning! I used Security Essentials' delete function to remove it but I'm worried the virus is still kicking around my drive. I did some malwarebytes scans after that but they didn't catch anything. I noticed a few posts here where the experts suggested using Farbar Recovery Scan Tool to create a log. So that's what I did. Here's that along with the Addition.txt file from the scan. Any assistance would be greatly appreciated! FRST.txt Addition.txt
  23. Hi. So I have this problem that i notice when i visit Fancentro.com (NSFW) i get redirected to patriarchia.ru Fancentro.com is the only webpage that I have noticed this redirect. There is no other page that is effected. I have scan my computer with Malwarebytes Premium Trial manytimes with no luck. So I downloaded windows on another computer and made a USB Windows installer. Then i formatted my windows drive and installed a clean copy from the flash drive. When the new windows is installed the problem goes away for a day or so. Then I notice that my computer freeze up or act strange. Then when I go to fancentro.com again the problem is back. So this virus, malware or what it is manage to comeback everytime. On my last reset I did not visit any unknown trusted webpages so could not have gotten it again from the same location. Please help me solve this. Cheers. Addition.txt FRST.txt Malewarebytes.txt
  24. Hello, I would really appreciate some helps as my laptop seems infected with Malware... I never wanted to download something illegal, so when I did not want to buy the software, I will always try to download the free version. I read the description and it was written that this is the lite version of the software, so it is completely free. Today I think I missed this one since when I tried to install, suddenly there is kind of web browser called 'Chromium' popped up like 2-3 times. I tried to close it and I did not know it is automatically pinned on the taskbar. When I see the task manager, there is 'Chromium Host Executable' as shown below: I tried to end task but it does not work. I also tried to find the program to be uninstalled but it does not shown in the uninstall program. Yet, it happen to be found in the AppData\Local. So I deleted the file and the computer demand to be restart. After restart, the document is gone but the 'Chromium Host Executable' still shown in task manager. Then when I checked the AppData\Local, there is strange file shown: There are IconChache, IconChace.db.backup, oobelibMkey, Resmon also files Temp, mbam and mbamtray. I never see there files before. I did not open this file because I am afraid this will cause harm to my computer. I already did full scan using my antivirus and Malwarebytes, yet nothing happened. So far I did not experience something strange on my computer but I am afraid this might affect the later on. I was hoping for a quick answer as I am out of things to do. I downloaded FRST and did a scan, files are attached. I would really appreciate for your kind help. Note: as I aware of these files, I immediately copy all the data into my harddisk, and delete all my work file from my computer. Will the malware also get inside the harddisk? Thanks, Lys. Addition.txt FRST.txt
  25. Hello. I have the O.YourNewContent Malware on my MacBook Pro. Why has my Malwarebytes Premium allowed this to happen, without blocking or quarantining or notifying me of it? Why are we expected to pay so much money for the promise of "THE BEST ANTI-MALWARE PROGRAM" when it doesn't deliver? MalwareBytes BITES!!! Please provide a quick resolution. Thanks, Joseph
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.