Jump to content

Search the Community

Showing results for tags 'malware'.



More search options

  • Search By Tags

    Type tags separated by commas.
  • Search By Author

Content Type


Forums

  • Announcements
    • Malwarebytes News
    • Beta Testing Program
  • Malware Removal Help
    • Windows Malware Removal Help & Support
    • Mac Malware Removal Help & Support
    • Android Malware Removal Help & Support
    • Malware Removal Self-Help Guides
  • Malwarebytes for Home Support
    • Malwarebytes 3 Support Forum
    • Malwarebytes for Mac Support Forum
    • Malwarebytes for Android Support Forum
    • Malwarebytes for iOS Support
    • False Positives
    • Translator Lounge
    • Comments and Suggestions
  • Malwarebytes for Business Support
    • Malwarebytes Endpoint Protection
    • Malwarebytes Incident Response (includes Breach Remediation)
    • Malwarebytes Endpoint Security
    • Malwarebytes Business Products Comments and Suggestions
  • Malwarebytes Tools and Other Products
    • Malwarebytes AdwCleaner
    • Malwarebytes Junkware Removal Tool Support
    • Malwarebytes Anti-Rootkit BETA Support
    • Malwarebytes Techbench USB (Legacy)
    • Malwarebytes Secure Backup discontinued
    • Other Tools
    • Malwarebytes Tools Comments and Suggestions
  • General Computer Help and Security Updates
    • BSOD, Crashes, Kernel Debugging
    • General Windows PC Help
  • Research Center
    • Newest Rogue-Ransomware Threats
    • Newest Malware Threats
    • Newest Mobile Threats
    • Newest IP or URL Threats
    • Newest Mac Threats
    • Report Scam Phone Numbers
  • General
    • General Chat
    • Forums Announcements & Feedback

Find results in...

Find results that contain...


Date Created

  • Start

    End


Last Updated

  • Start

    End


Filter by number of...

Joined

  • Start

    End


Group


AIM


MSN


Website URL


ICQ


Yahoo


Jabber


Location


Interests

Found 540 results

  1. Hello, For past 1 month i am getting G.exe / UnKnown Application preventing shutdown message in both my standard and admin user login accounts in Win 10 PC. I have licensed version of malwarebytes (Premium and AdwCleaner) and they all run clean without any issue. Norton doesn't return any issue. https://forums.malwarebytes.com/topic/226720-gexe-removal/?page=3 Following from the above thread, i have been able to use GUIPropView and able to see a lone "g" . What is annoying is i used all my past skills using dos, procmon and Process Explorer(sysinternal) to find this PID/Handle but they all return empty. I can't figure out from where this nasty thing is originating from since Process and Instance FileName are reported empty from GUIPropView. Please help in fixing the UnKnown application preventing shutdown issue in my PC(Last option if any before factory resetting my PC) Thanks, Appukuttan
  2. Hi. I have high ram usage at times, I mean 70-90% and I think it's connected to malware and Malwarebytes can't pick it up, but when my windows has been up and running for few hours, it shows 2 malware threats are detected, but even if I quarantine them and delete them, nothing works, they just keep coming back. I have also tried to use ADW cleaner multiple times without any luck too since it's all come back a few minutes after windows has loaded. One thing to note is that Chrome is only using 4-5 GB of ram which is okay, but the task manager shows over 70% even at sometimes 90% so there might be something running in the background which is hidden. I really hope we can fix this since this really destroys my PC experience and I can't wait to get down to bussines. Thank you. FRST.txt Addition.txt
  3. Ever since the latest update, everything Malwarebytes refuses to work on my computer anymore. I am stuck in a loop where my computer asks to be restarted every-time I reinstall the program. (It asks to restart even before the installation progress bar ever moves). I tried the support tool, and it automatically goes into error. I am told that this is due to a virus or a malware, but that is as much help as I got with this problem.
  4. Every time I restart my PC, I get a notification from Malwarebytes that a 'website was blocked due to malware'. It claims to be an outbound connection affecting the file 'powershell.exe'. The website is f.top4top.net. Malwarebytes identifies this as malware but it is not a program I can remove and I have never visited that website. I'm looking to sort out whatever the issue may be here. The logs can be found below. Malwarebytes www.malwarebytes.com -Log Details- Protection Event Date: 7/8/18 Protection Event Time: 4:25 PM Log File: 137327b6-82ed-11e8-8c03-1c1b0d993f99.json Administrator: Yes -Software Information- Version: 3.5.1.2522 Components Version: 1.0.374 Update Package Version: 1.0.5823 License: Trial -System Information- OS: Windows 10 (Build 17134.112) CPU: x64 File System: NTFS User: System -Blocked Website Details- Malicious Website: 1 , , Blocked, [-1], [-1],0.0.0 -Website Data- Category: Malware Domain: f.top4top.net IP Address: 185.186.244.145 Port: [49871] Type: Outbound File: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (end)
  5. Scanned my computer with the free version of Malwarebytes and had Pup.Optional.Reimage. Quarantined and tried to delete, but was there when I rescanned. Tried to delete it manually, didn't work. Tried Zemana, didn't work. Tried Adwcleaner, didn't work. The file is located at C:\\USERS\MYUSER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\PREFERANCES. Please help, I've got a project due in two days and I'm prioritizing removing this over doing that.
  6. So i have Installed malwarebytes,its been 6 days using the trial.So the problem is this pops randomly every time for the last couple of days - Website blocked due to riskware - .This pops up sometimes when my pc is idle, sometimes when I am playing online games, sometimes browsing, sometimes watching movies etc. It's always this random IP that i don't know. This pops literally randomly and in the advance tab of the report where it shows what file it is,it shows nothing.I don't understand this. This triggers sometimes a single time, maybe sometimes 3 in a row, sometimes a single time and hours later 2 times.Its so random. Please help me what this is,and pardon me for English and my lack of knowledge in this department. Here is the long - Malwarebytes www.malwarebytes.com -Log Details- Protection Event Date: 7/15/18 Protection Event Time: 7:08 AM Log File: a54c4798-87cb-11e8-b338-382c4aba6654.json Administrator: Yes -Software Information- Version: 3.5.1.2522 Components Version: 1.0.391 Update Package Version: 1.0.5907 License: Trial -System Information- OS: Windows 10 (Build 16299.492) CPU: x64 File System: NTFS User: System -Blocked Website Details- Malicious Website: 1 , , Blocked, [-1], [-1],0.0.0 -Website Data- Category: RiskWare Domain: IP Address: 212.83.190.122 Port: [445] Type: Inbound File: (end)
  7. Hello all, my first time posting in this forum, sincerest apologies if this is the wrong place to post this. My computer has been infected with something that causes gambling/bitcoin websites to pop up randomly. It also causes anti malware programs to close and malware related web searches to be closed as well. I have conducted scans in safe mode with Malwarebytes, spybot and avast free antivirus to no avail. Hope that this forum will be able to help me 😭 Thank you!
  8. Yesterday, I have downloaded some program via the internet and something unwanted program called All radio came up and I cannot delete it. I already tried to scan using Malwarebytes but nothing works. This thing makes my computer slower and sometimes opening unnecessary programs. Please help:(
  9. After I downloaded pokki start menu and scanned it with adwcleaner several times and deleted it. I went to my start menu and saw start menu no pokki just start menu my laptop labeled it new so I went to downloads it automatically closed I went on chrome typed malwarebytes it closed what do I do!?
  10. Hello. I Am Having Some Trouble Getting Rid Of This No Good Adware Pokki Start Menu.When I Downloaded The Pokki Start Menu I Thought It Was SafeWhen I Looked Up Pokki The Google Results Showed How To Delete Pokki Virus I Took Action And Downloaded Adwcleaner It Found It I Scanned 4 Times Then adwcleaner dissappred right out of the blue with out permission I clicked the windows button and I saw Start Menu And I learned the virus was still there I went to task manager no results of pooki I went to files to open up adwcleaner than it closedthere is no more Pooki but the start menu is still there how do I uninstall EVERYTHING by the way pooki is not in the uninstall place. What softwares can I use to get rid of it or anything. P.S. I scanned and adwcleaner detected pooki then deleted than disappeared without consent I did not even notice
  11. Hello guys. My name's is Rob, and i have a big problem. My computer is too slowly and i don't know why. I have tryed MalwareBytes AntiMalware Premium but, he find 0 threats, MalwareBytes Adwcleaner 0 threats, and EEK too... By The Way, my computer sometime have a "freeze" for five or two seconds, when i play, when i use the browser. Two years ago i used Iobit, or something like this, and i use this software to help my system but he have damaged my computer and i kick him from my computer. Right now, my computer suffer lag,freeze, and CPU go 100% when i run word, chrome, in conclusion any program -> CPU 100%. Maybe Chrome Infected? Malware/Rootkit in my computer?? IDK... My pc is original , and i have an original key, maybe i need format? I have BitDefender Free Antivirus. And at the end, i can't use sfc /scannow or scandisk , because my disk is already in use ALWAYS and i can't use sfc /scannow etc... Three years ago, i had a rootkit infections, (20+ rootkits) , i find it with Avast Antivirus. Sometime, i go in C: and i have 180GB, i refresh and i hav 170GB, and other bugs.. i dont know whats happening ... I attach FRST.TXT and ADDITION.TXT. R0b FRST.txt Addition.txt
  12. How do I make sure my computer is safe after downloaded malware? Windows defender found (Trojan:Win32/Fuery.B!cl) when I stupidly downloaded something, quarantined it, and then I deleted it. I checked my Storage and found a new app, then uninstalled it. Then downloaded Malwarebytes to make sure it was gone, details: -Log Details- Scan Date: 7/2/18 Scan Time: 11:17 PM Log File: 06afd75a-7e78-11e8-a07b-4ccc6a9054e5.json Administrator: Yes -Software Information- Version: 3.5.1.2522 Components Version: 1.0.374 Update Package Version: 1.0.5739 License: Trial -System Information- OS: Windows 10 (Build 17134.112) CPU: x64 File System: NTFS User: DESKTOP-ETDTBVM\Ray -Scan Summary- Scan Type: Threat Scan Scan Initiated By: Manual Result: Completed Objects Scanned: 321870 Threats Detected: 7 Threats Quarantined: 7 Time Elapsed: 1 min, 22 sec -Scan Options- Memory: Enabled Startup: Enabled Filesystem: Enabled Archives: Enabled Rootkits: Disabled Heuristics: Enabled PUP: Detect PUM: Detect -Scan Details- Process: 0 (No malicious items detected) Module: 0 (No malicious items detected) Registry Key: 3 PUP.Optional.Conduit, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472F-A0FF-E1416B8B2E3A}, Quarantined, [220], [236865],1.0.5739 PUP.Optional.Conduit, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472F-A0FF-E1416B8B2E3A}, Quarantined, [220], [236865],1.0.5739 PUP.Optional.Conduit, HKU\S-1-5-21-1056684928-3674633434-835679265-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}, Quarantined, [220], [236865],1.0.5739 Registry Value: 2 PUP.Optional.Conduit, HKU\S-1-5-21-1056684928-3674633434-835679265-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}|URL, Quarantined, [220], [236865],1.0.5739 PUP.Optional.Conduit, HKU\S-1-5-21-1056684928-3674633434-835679265-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}|TOPRESULTURL, Quarantined, [220], [236865],1.0.5739 Registry Data: 1 PUP.Optional.Conduit, HKU\S-1-5-21-1056684928-3674633434-835679265-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|START PAGE, Replaced, [220], [293058],1.0.5739 Data Stream: 0 (No malicious items detected) Folder: 0 (No malicious items detected) File: 1 PUP.Optional.Conduit, C:\USERS\RAY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1MB3KCI5.DEFAULT\PREFS.JS, Replaced, [220], [301520],1.0.5739 Physical Sector: 0 (No malicious items detected) WMI: 0 (No malicious items detected) (end)
  13. I have a pretty nasty malware issue. It disables me from installing malwarebytes and similar antiviruses. It also stops me from opening certain websites. Does anyone have an idea of how to fix this? I hope someone has an answer...
  14. Hello, to all it may concern. I accidentally installed a program that contained this particular malware All-Radio 4.27 and it cannot be removed, and I would appreciate any help in removing it. The log scan results are as shown below attached. Please help. Malware Bytes Scan Results.txt
  15. My computer has new ads popping up in new tabs every 20 minutes or so in Chrome. I can't run MalwareBytes, RKill, or Farbar unless it is in SafeMode. MalwareBytes detects RiskWare BitCoinMiner, but after quarantine and deletion, it reappears on reboot. I know I have utorrent installed and I am 95% sure that's what has caused this issue...will never use again. Please HELP!!! Addition.txt FRST.txt MalwareBytes Scan Log.txt
  16. I believe my Dell Inspiron N5559 is infected. I am using Microsoft Home Windows 10 I got a popup notice notifying me of a “Netio.Sys Failure” A Windows Defender Security Center notification keeps coming of warning of an issue with a “Driver” but Troubleshooting the issue “Fix” does not work. When I open my Google Chrome Browser my screen goes “white” for several seconds before the browser open. I ran ADWCleaner and two issues were resolved but the overall problem remain Any help will be greatly appreciated. Thank you AdwCleaner[S54].txt
  17. BTW its my FIRST TIME here....... I'm having a problem with the proxy server being set to 127.0.0.1 7272 and adware on my browser. I have used malwarebytes adware and still its not fixed so i need help. Addition.txt FRST.txt
  18. Today.I have download a zip files form internet. Then this program are also coming i try to find there files location for uninstall but i still cant uninstall it . This program it always coming when I open my laptop
  19. So my laptop started becoming extremely slow after 5 minutes of booting starting last week. I found out that my disk usage was at 100% for whatever reason. I was told to get the free trial of malwarebytes and start a threat scan. It has been 6 hours and the scan is on the second to the last step. About 170,000 files have been scanned and 213 threats were found. Is this normal? Should I stop the scan and try something else?
  20. Hey guys, I noticed a strange folder in my temp folder called BCLTMP containing subfolders with the names of my browsers. Inside of these folders are files that contain my saved favourites, visited urls and searches. After deletion of the BCLTMP folder it appears again after a while, sometimes after a day, a week or a month. After scanning my PC with all the tools I have (which didn't find much and didn't stop the folder appearing) I decided it might be normal.. Then I bought a new laptop which showed the same behavior within the same week I bought it. Nothing was installed on the laptop, no usb used, it had only been connected to my router. I have connected other laptops to my network in the past which showed the same behavior. Could this BCLTMP folder which seems to track my browser history be spyware/malware? No one else seems to have the folder. I am using Windows 10 pro on both devices. I tried scanning with malwarebytes, roguekiller, adwcleaner, eset sysrescue, exterminate it, spydllremover (which reports hidden rootkit, with processID, hidden), superantispyware. tdsskiller won't boot (redownloaded, same result) and comodo CCE crashes the computer and then refuses to boot. Note that the laptop with the BCLTMP folder is a clean windows 10 install with no installed software. My router reports synflood attacks from within and outside of my network, and it's firmware has been reinstalled by the isp just to be sure. Not much else to see there. How can I figure out what is happening to my devices, and what this folder is for?
  21. ive tried alot of tutorials but none has worked i still get the error i tried alot of malwarebytes apps and none worked too so please need help solving this problem D": srry for bad english
  22. A couple of days, a relative used my computer and downloaded something that came with a malicious software, and it keeps coming back with different names despite constant cleaning using MalwareBytes, HitmanPro, ZemanaAntiMalware, AdwCleaner, Avast Browser Cleanup, ZHP Cleaner and so forth. I also restored my browsers to default settings and deleted all the cookies, cache and such with CCleaner. At first this malware used to open random tabs in my browser but after some cleaning, it stopped. Then it changed to a ksecdd.ax file appearing in my users/user/appdata/local/temp folder every time I restarted the computer. MalwareBytes would find the file and quarantine it, but at the next restart, it would come back. Now it's a BitcoinMiner infecting my msiexec64.exe that once again reappers whenever my computer restarts. Not only that but it makes my browsers crash whenever I search for Farbar Recovery Tools, leaving me unable to see if said software can bring me a solution. I can search for anything else with no problem but as soon as I type farbar and press enter, instant crash. What logs could I provide here for the experts to analyze so they can find a way to fix this? Thanks in advance.
  23. Hi , yesterday ... i found that my pc is slow .. and my download speed went at 50 kb/s .... i went on task manager.. and i saw a task ... with the svchost image ... but with no name ... i did some research ... and i checked if is from system32... i clicked open file location .. and that opened me windows/ temp ... i deleted it ... i stopped it from the services tab on task manager ... and then i did an restart .... but still found that my pc is slow ... i tried a scan with malwarebytes. .. he found me around 20 malwares .. i deleted them.. but still slow ... ( forget to metion ... before to start seing slowness .. i downloaded a program .... ) Edit : ... i did some system Restore Thing .. and i tried 2 times .. and everytime said ... that something from system registry .. cant be changed .... i went there by myslef ... but i didnt found nothing that would harm my pc Edit 2 : Forgot To metion .. that first .. i saw pop-ups ... .. and from that i was 100% sure that i have malwares... pop-ups ... on everything, when i opened opera , when i clicked , when i was openning a new tab ... i did an reinstall to opera first .. but ... nothing
  24. I've tried to remove the infamous plague HAO123 from my computer, but it keeps resetting my chrome shortcut with http://hao.169x.cn?v=108. My Chrome (Google Chrome.lnk) shortcut is located at "C:\ProgramData\Microsoft\Windows\Start Menu\Programs". It keeps adding the hao-link to the end of "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe". I tried making the file write protected, but no luck. I've also run ADWCleaner and Malwarebytes, but they can't detect this one, neither can Avast. I have attached my Zemana report, and the Farbar Recovery Scan Tool reports to this query. All help is greatly appreciated! :) (I'm an avid supporter of Malwarebytes) Addition.txt FRST.txt 2018.05.15-18.41.42-i0-t92-d2.txt
  25. Hi I got infected and I am unable to launch farbar from normal desktop so I booted into windows recovery using a windows media USB. Then went to troubleshoot and opened Command Prompt I then than frst64.exe from command prompt and got the file i've attached I'm not sure what to do from here FRST.txt
×

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.