Jump to content

Search the Community

Showing results for tags 'clean'.

  • Search By Tags

    Type tags separated by commas.
  • Search By Author

Content Type


Forums

  • Announcements
    • Malwarebytes News
    • Beta Testing Program
  • Malware Removal Help
    • Windows Malware Removal Help & Support
    • Mac Malware Removal Help & Support
    • Mobile Malware Removal Help & Support
    • Malware Removal Self-Help Guides
  • Malwarebytes for Home Support
    • Malwarebytes for Windows Support Forum
    • Malwarebytes for Mac Support Forum
    • Malwarebytes for Android Support Forum
    • Malwarebytes for iOS Support
    • Malwarebytes Privacy
    • Malwarebytes Browser Guard
    • False Positives
    • Comments and Suggestions
  • Malwarebytes for Business Support
    • Malwarebytes Nebula
    • Malwarebytes Nebula Modules
    • Malwarebytes Endpoint Security
    • Other Malwarebytes Business Products
    • Malwarebytes Business Products Comments and Suggestions
  • Malwarebytes Tools and Other Products
    • Malwarebytes AdwCleaner
    • Malwarebytes Junkware Removal Tool Support
    • Malwarebytes Anti-Rootkit BETA Support
    • Malwarebytes Techbench USB (Legacy)
    • Malwarebytes Secure Backup discontinued
    • Other Tools
    • Malwarebytes Tools Comments and Suggestions
  • General Computer Help and Security Updates
    • BSOD, Crashes, Kernel Debugging
    • General Windows PC Help
  • Research Center
    • Newest Rogue-Ransomware Threats
    • Newest Malware Threats
    • Newest Mobile Threats
    • Newest IP or URL Threats
    • Newest Mac Threats
    • Report Scam Phone Numbers
  • General
    • General Chat
    • Forums Announcements & Feedback

Find results in...

Find results that contain...


Date Created

  • Start

    End


Last Updated

  • Start

    End


Filter by number of...

Joined

  • Start

    End


Group


AIM


MSN


Website URL


ICQ


Yahoo


Jabber


Location


Interests

Found 12 results

  1. Trying to uninstall with Windows uninstaller just brings up uninstall window but never actually uninstalls. I then tried running Malwarebytes clean removal tool. Which gave me this message: (attached is the mb-check-results.zip) Can someone help get this off my pc? I find it extremely frustrating. mb-check-results.zip
  2. Hi there, The website has been cleaned already and is requesting for another review.
  3. We have fully cleaned and replaced the hacked version of this site wgstudioslabel.com. During this process we fully cleaned any hacked files on the system included the site's themes and plugins. We have also ensured the database is clean and removed all the injected content from the servers and checked and removed any malicious processes. We have checked the site using the "site: google search" and bad links, we have also used fetch and render in google to ensure there is no bad content. All suspect javascript loaded and it's content has also been inspected. We have also performed a "curl" against the front page with a google bot user and again there is no spammy content returned or injected content. On top of this and most importantly we have placed the website behind an enterprise grade web application firewall to ensure this site has a high level of protection against any future attacks. Could you please ASAP remove any hack label and security warnings for this site.
  4. To whom it may concern, Please do another review on the following site: https://www.cosmictone.com.au/
  5. Hello, We have fully cleaned and replaced the hacked version of this site Ccfriendsofwildlife.org. During this process we fully cleaned any hacked files on the system included the site's themes and plugins. We have also ensured the database is clean and removed all the injected content from the servers and checked and removed any malicious processes. We have checked the site using the "site: google search" and bad links we have also used fetch and render in google to ensure there is no bad content. All suspect javascript loaded and it's content has also been inspected. We have also performed a "curl" against the front page with a google bot user and again there is no spammy content returned or injected content. On top of this and most importantly we have placed the website behind an enterprise grade web application firewall to ensure this site has a high level of protection against any future attacks. Could you please ASAP remove any hack label and security warnings for this site.
  6. Hi! I ran a scan of my laptop this morning and found a Trojan.Script at 9am. I did not discover the Trojan until I logged on at 9pm. Here's a copy of the scan log. I just ran a recent scan using MBAM and nothing showed up except the pup that keeps popping up in my Chrome web data. Here's a copy of the log from this morning. Am I clean? In addition, I have not used Popcorn Time since approximately 2014/2015. I can throw up a scan log of the PUP as well if we can get that out of the way. Malwarebytes www.malwarebytes.com -Log Details- Scan Date: 12/11/17 Scan Time: 4:54 AM Log File: 60767e7a-de72-11e7-bf55-08606e8b88da.json Administrator: Yes -Software Information- Version: 3.3.1.2183 Components Version: 1.0.236 Update Package Version: 1.0.3465 License: Premium -System Information- OS: Windows 7 Service Pack 1 CPU: x64 File System: NTFS User: System -Scan Summary- Scan Type: Threat Scan Result: Completed Objects Scanned: 298175 Threats Detected: 1 Threats Quarantined: 1 Time Elapsed: 2 hr, 22 min, 35 sec -Scan Options- Memory: Enabled Startup: Enabled Filesystem: Enabled Archives: Enabled Rootkits: Enabled Heuristics: Enabled PUP: Detect PUM: Detect -Scan Details- Process: 0 (No malicious items detected) Module: 0 (No malicious items detected) Registry Key: 0 (No malicious items detected) Registry Value: 0 (No malicious items detected) Registry Data: 0 (No malicious items detected) Data Stream: 0 (No malicious items detected) Folder: 0 (No malicious items detected) File: 1 Trojan.Script, C:\USERS\VIRGIL YAU\DOWNLOADS\POPCORN-TIME-0.3.8-5-SETUP.EXE, Quarantined, [295], [467948],1.0.3465 Physical Sector: 0 (No malicious items detected) (end)
  7. Basically what the title says. Ran ADWCleaner, found a couple of folders, something in Chrome, and 7-8 registry keys. I'm very cautious of cleaning registry keys for obvious reasons. I have the logfile from the time I ran it (only a while ago). If I post that will it be apparent which can safely be cleaned? I have no idea what backing up the registry entails, or how I would go about restoring it if I did indeed clean something necessary. I know just enough to be dangerous and nowhere near enough to be confident with these things. Any help would be appreciated.
  8. Hi! Some strange malwares are still coming back after the removal. I scanned with AdwCleaner, Mlawarebytes Anti-Malware (Free and trial for MB 3 Premium) Which are contanty appearing are: adware.ELEX and BIT files (AdwCleaner). While I was checking some files I found ACLMInstaller. I never saw it before so, I don't know if it is a safe archieve or not. Also, I recently received a notification: Site Blocked. It was the next: dubailyfestyleap (Which I don't know and I don't mind to enter there as well...) The thing is, I don't know how, I cannot delete this virus/malware/adware completely, after I scann they get deleted and the next scann there are more. How can I fix this? If you need more info please ask me to. (sorry for my english).
  9. I am pretty positive I have a rootkit. It's a quiet and crafty sort; from the beginning there were no obvious signs of infection, there wasn't any slowing or memory leaking, no unusual traffic noted. I felt like something was off, but I couldn't pinpoint what until I got the first warning message from MBAM 3.0.6 Premium (see Exploit Blocking below). Now I notice that all my desktop icons are rearranged on relog and suddenly there is a bit of dead space at the bottom where I can no longer move any icons, though that's kind of the least of my worries. Sometimes the screen sort of freezes, almost like a screenshot, but then it clears up again right away. I'm running Windows 10 Home Premium, x64, on an Asus X756UXM. Please see all the notes below and txt files. Please note that things might be a little out of order from how I actually scanned things, because this started almost a week ago and I don't remember that far back. I believe the initial infection came from a popup/pop under (can't recall which, sorry!) at http:// www (dot) nowvideo (dot) sx/video/11bb079eff255 while using Chrome. I run AdBlock Plus, Ghostery, and some script blocker thingie, and have all my many browsers configured to block popups, and I never have any issues on any other sites, but this one managed to get around all that. I threw everything I could think of at this but I really just feel like I'm chasing it from one corner to another. Any help would be thoroughly appreciated. MBAM: * Initial error message that an exploit was blocked in Powershell (see txt file) * Scans Clean - All Scans * Starts up as normal, except Web Protection is shut off * On first load, Web Protection can be re-enabled * At some point, Web Protection with return to off, and Exploit Protection goes with it * Exploit Protection can be re-enabled, but it will switch off again * On attempting to re-enable Web Protection, it will forever say "Starting..." until next reboot ~~~ MBAR: * Scans clean ~~~ Avast: * Scans clean ~~~ TrendMicro Housecall: * Scans clean ~~~ GMER: * Found the following: Service C:\WINDOWS\system32\drivers\WdBoot.sys (*** hidden *** ) [BOOT] WdBoot <-- ROOTKIT !!! Service C:\WINDOWS\system32\drivers\WdFilter.sys (*** hidden *** ) [BOOT] WdFilter <-- ROOTKIT !!! Service C:\Program Files (x86)\Windows Defender\MsMpEng.exe (*** hidden ***) [AUTO] WinDefend <-- ROOTKIT !!! * Attempted deletion (through GMER) of all three, but WdBoot failed. ~~~ aswMBR: * Ran after GMER. The service below popped up, but aswMBR was unable to fix the issue (see full log). 23:05:02.343 Service WdBoot C:\WINDOWS\system32\drivers\WdBoot.sys **LOCKED** * Subsequent attempts to run aswMBR result in BSOD for the reason "Page fault in non-paged area" and then forced restart. ~~~ JRT: * Nothing to report ~~~ HitmanPro: * Found buckets of cookies in all browsers, including Internet Explorer and Edge which I NEVER use. All cookies were deleted. This was the initial confirmation something was up. ~~~ rKill: * A couple of issues popped up, nothing glaring... See txt. ~~~ ADW Cleaner: * No issues found ~~~ FRST: * See txt ~~~ RootKitRemover (McAffee): * Scanned Clean ~~~ TDSSKiller: * Scanned Clean ~~~ Bootlog: * See Txt ~~~ MBAM Chameleon: * Ran from safe mode, all 13 or however many buttons failed identically. See txt. HijackThis 2-14-17.log MBAM - Exploit Blocked.txt Notes.txt Rkill 2-13-17.txt aswMBR 2-14-17.txt BootLog 2-17-17.txt Chameleon Fail 2-15-17.txt FRST 2-14-17.txt GMER 2-15-17.log
  10. Hi! I would be really grateful if someone could say how I get rid of this malware? And I also wonder if when my trial of malwarebytes is ended, does one have the "Malicious Website Protection" left working as normal? Here is my logg of the problem? Malwarebytes Anti-Malware www.malwarebytes.org Protection, 2016-12-04 00:11, SYSTEM, MARKUS-LAPTOP, Protection, Malware Protection, Starting, Protection, 2016-12-04 00:11, SYSTEM, MARKUS-LAPTOP, Protection, Malware Protection, Started, Protection, 2016-12-04 00:11, SYSTEM, MARKUS-LAPTOP, Protection, Malicious Website Protection, Starting, Protection, 2016-12-04 00:13, SYSTEM, MARKUS-LAPTOP, Protection, Malicious Website Protection, Started, Detection, 2016-12-04 00:13, SYSTEM, MARKUS-LAPTOP, Protection, Malicious Website Protection, IP, 146.185.234.51, 53, Inbound, C:\Windows\System32\svchost.exe, Detection, 2016-12-04 00:13, SYSTEM, MARKUS-LAPTOP, Protection, Malicious Website Protection, IP, 146.185.234.51, 53, Inbound, C:\Windows\System32\svchost.exe, Update, 2016-12-04 04:14, SYSTEM, MARKUS-LAPTOP, Scheduler, Malware Database, 2016.12.3.9, 2016.12.4.1, Protection, 2016-12-04 04:14, SYSTEM, MARKUS-LAPTOP, Protection, Refresh, Starting, Protection, 2016-12-04 04:14, SYSTEM, MARKUS-LAPTOP, Protection, Malicious Website Protection, Stopping, Protection, 2016-12-04 04:16, SYSTEM, MARKUS-LAPTOP, Protection, Malicious Website Protection, Stopped, Protection, 2016-12-04 04:18, SYSTEM, MARKUS-LAPTOP, Protection, Refresh, Success, Protection, 2016-12-04 04:18, SYSTEM, MARKUS-LAPTOP, Protection, Malicious Website Protection, Starting, Protection, 2016-12-04 04:18, SYSTEM, MARKUS-LAPTOP, Protection, Malicious Website Protection, Started, Detection, 2016-12-04 07:49, SYSTEM, MARKUS-LAPTOP, Protection, Malicious Website Protection, IP, 103.43.5.94, 23, Inbound, C:\Windows\System32\svchost.exe, Detection, 2016-12-04 07:49, SYSTEM, MARKUS-LAPTOP, Protection, Malicious Website Protection, IP, 103.43.5.94, 23, Inbound, C:\Windows\System32\svchost.exe, Update, 2016-12-04 08:11, SYSTEM, MARKUS-LAPTOP, Scheduler, Domain Database, 2016.12.3.3, 2016.12.4.1, Update, 2016-12-04 08:11, SYSTEM, MARKUS-LAPTOP, Scheduler, Malware Database, 2016.12.4.1, 2016.12.4.2, Protection, 2016-12-04 08:11, SYSTEM, MARKUS-LAPTOP, Protection, Refresh, Starting, Protection, 2016-12-04 08:11, SYSTEM, MARKUS-LAPTOP, Protection, Malicious Website Protection, Stopping, Protection, 2016-12-04 08:11, SYSTEM, MARKUS-LAPTOP, Protection, Malicious Website Protection, Stopped, Protection, 2016-12-04 08:12, SYSTEM, MARKUS-LAPTOP, Protection, Refresh, Success, Protection, 2016-12-04 08:12, SYSTEM, MARKUS-LAPTOP, Protection, Malicious Website Protection, Starting, Protection, 2016-12-04 08:13, SYSTEM, MARKUS-LAPTOP, Protection, Malicious Website Protection, Started, Update, 2016-12-04 10:19, SYSTEM, MARKUS-LAPTOP, Scheduler, Failed, No Internet connection detected, Update, 2016-12-04 11:18, SYSTEM, MARKUS-LAPTOP, Scheduler, Malware Database, 2016.12.4.2, 2016.12.4.3, Protection, 2016-12-04 11:18, SYSTEM, MARKUS-LAPTOP, Protection, Refresh, Starting, Protection, 2016-12-04 11:18, SYSTEM, MARKUS-LAPTOP, Protection, Malicious Website Protection, Stopping, Protection, 2016-12-04 11:19, SYSTEM, MARKUS-LAPTOP, Protection, Malicious Website Protection, Stopped, Protection, 2016-12-04 11:20, SYSTEM, MARKUS-LAPTOP, Protection, Refresh, Success, Protection, 2016-12-04 11:20, SYSTEM, MARKUS-LAPTOP, Protection, Malicious Website Protection, Starting, Protection, 2016-12-04 11:20, SYSTEM, MARKUS-LAPTOP, Protection, Malicious Website Protection, Started, Update, 2016-12-04 13:12, SYSTEM, MARKUS-LAPTOP, Scheduler, Malware Database, 2016.12.4.3, 2016.12.4.4, Protection, 2016-12-04 13:12, SYSTEM, MARKUS-LAPTOP, Protection, Refresh, Starting, Protection, 2016-12-04 13:12, SYSTEM, MARKUS-LAPTOP, Protection, Malicious Website Protection, Stopping, Protection, 2016-12-04 13:13, SYSTEM, MARKUS-LAPTOP, Protection, Malicious Website Protection, Stopped, Protection, 2016-12-04 13:15, SYSTEM, MARKUS-LAPTOP, Protection, Refresh, Success, Protection, 2016-12-04 13:15, SYSTEM, MARKUS-LAPTOP, Protection, Malicious Website Protection, Starting, Protection, 2016-12-04 13:15, SYSTEM, MARKUS-LAPTOP, Protection, Malicious Website Protection, Started, Detection, 2016-12-04 13:19, SYSTEM, MARKUS-LAPTOP, Protection, Malicious Website Protection, IP, 80.82.79.104, 45554, Inbound, C:\Windows\System32\svchost.exe, Detection, 2016-12-04 13:19, SYSTEM, MARKUS-LAPTOP, Protection, Malicious Website Protection, IP, 80.82.79.104, 45554, Inbound, C:\Windows\System32\svchost.exe, Update, 2016-12-04 13:39, SYSTEM, MARKUS-LAPTOP, Manual, Malware Database, 2016.12.4.4, 2016.12.4.5, Protection, 2016-12-04 13:39, SYSTEM, MARKUS-LAPTOP, Protection, Refresh, Starting, Protection, 2016-12-04 13:39, SYSTEM, MARKUS-LAPTOP, Protection, Malicious Website Protection, Stopping, Protection, 2016-12-04 13:39, SYSTEM, MARKUS-LAPTOP, Protection, Malicious Website Protection, Stopped, Protection, 2016-12-04 13:39, SYSTEM, MARKUS-LAPTOP, Protection, Refresh, Success, Protection, 2016-12-04 13:39, SYSTEM, MARKUS-LAPTOP, Protection, Malicious Website Protection, Starting, Protection, 2016-12-04 13:39, SYSTEM, MARKUS-LAPTOP, Protection, Malicious Website Protection, Started, Scan, 2016-12-04 15:18, SYSTEM, MARKUS-LAPTOP, Manual, Start:2016-12-04 13:39, Duration:1 hr 39 min 24 sec, Threat Scan, Completed, 0 Malware Detections, 0 Non-Malware Detections, Update, 2016-12-04 16:14, SYSTEM, MARKUS-LAPTOP, Scheduler, IP Database, 2016.12.2.4, 2016.12.4.1, Update, 2016-12-04 16:14, SYSTEM, MARKUS-LAPTOP, Scheduler, Malware Database, 2016.12.4.5, 2016.12.4.6, Protection, 2016-12-04 16:14, SYSTEM, MARKUS-LAPTOP, Protection, Refresh, Starting, Protection, 2016-12-04 16:14, SYSTEM, MARKUS-LAPTOP, Protection, Malicious Website Protection, Stopping, Protection, 2016-12-04 16:14, SYSTEM, MARKUS-LAPTOP, Protection, Malicious Website Protection, Stopped, Protection, 2016-12-04 16:16, SYSTEM, MARKUS-LAPTOP, Protection, Refresh, Success, Protection, 2016-12-04 16:16, SYSTEM, MARKUS-LAPTOP, Protection, Malicious Website Protection, Starting, Protection, 2016-12-04 16:16, SYSTEM, MARKUS-LAPTOP, Protection, Malicious Website Protection, Started, Update, 2016-12-04 18:28, SYSTEM, MARKUS-LAPTOP, Scheduler, Domain Database, 2016.12.4.1, 2016.12.4.2, Protection, 2016-12-04 18:28, SYSTEM, MARKUS-LAPTOP, Protection, Refresh, Starting, Protection, 2016-12-04 18:28, SYSTEM, MARKUS-LAPTOP, Protection, Malicious Website Protection, Stopping, Protection, 2016-12-04 18:28, SYSTEM, MARKUS-LAPTOP, Protection, Malicious Website Protection, Stopped, Protection, 2016-12-04 18:32, SYSTEM, MARKUS-LAPTOP, Protection, Refresh, Success, Protection, 2016-12-04 18:32, SYSTEM, MARKUS-LAPTOP, Protection, Malicious Website Protection, Starting, Protection, 2016-12-04 18:32, SYSTEM, MARKUS-LAPTOP, Protection, Malicious Website Protection, Started, Update, 2016-12-04 19:29, SYSTEM, MARKUS-LAPTOP, Scheduler, Domain Database, 2016.12.4.2, 2016.12.4.3, Update, 2016-12-04 19:30, SYSTEM, MARKUS-LAPTOP, Scheduler, Malware Database, 2016.12.4.6, 2016.12.4.8, Protection, 2016-12-04 19:30, SYSTEM, MARKUS-LAPTOP, Protection, Refresh, Starting, Protection, 2016-12-04 19:30, SYSTEM, MARKUS-LAPTOP, Protection, Malicious Website Protection, Stopping, Protection, 2016-12-04 19:30, SYSTEM, MARKUS-LAPTOP, Protection, Malicious Website Protection, Stopped, Protection, 2016-12-04 19:32, SYSTEM, MARKUS-LAPTOP, Protection, Refresh, Success, Protection, 2016-12-04 19:32, SYSTEM, MARKUS-LAPTOP, Protection, Malicious Website Protection, Starting, Protection, 2016-12-04 19:32, SYSTEM, MARKUS-LAPTOP, Protection, Malicious Website Protection, Started, Detection, 2016-12-04 20:04, SYSTEM, MARKUS-LAPTOP, Protection, Malicious Website Protection, IP, 80.82.70.26, 23, Inbound, C:\Windows\System32\svchost.exe, Detection, 2016-12-04 20:04, SYSTEM, MARKUS-LAPTOP, Protection, Malicious Website Protection, IP, 80.82.70.26, 23, Inbound, C:\Windows\System32\svchost.exe, Update, 2016-12-04 22:18, SYSTEM, MARKUS-LAPTOP, Scheduler, Failed, No Internet connection detected, Detection, 2016-12-04 22:36, SYSTEM, MARKUS-LAPTOP, Protection, Malicious Website Protection, IP, 80.82.79.104, 45554, Inbound, C:\Windows\System32\svchost.exe, Detection, 2016-12-04 22:36, SYSTEM, MARKUS-LAPTOP, Protection, Malicious Website Protection, IP, 80.82.79.104, 45554, Inbound, C:\Windows\System32\svchost.exe, (end)
  11. Hi, MTLBlog.com recently was flagged as "containing malwares" by MalwareBytes, and we wanted to make sure this warning gets removed as soon as possible since it doesn't contain anything of the sort. Thank you
  12. I have had great success on here before, and now am doing the same thing with my partner's laptop, as it has been acting very funnily lately (very slow processing times, and DVD's no longer play). I've installed Malwarebytes free version, and it did quarantine one file. Also, just FYI, the battery on this laptop is on its last legs - we are waiting for a new one to be delivered. Here are the FRST logs (they will not paste so I'm attaching). Thank you so much! Krista Addition.txt FRST_18-04-2014_13-01-29.txt
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.