Jump to content

Search the Community

Showing results for tags 'windows defender'.



More search options

  • Search By Tags

    Type tags separated by commas.
  • Search By Author

Content Type


Forums

  • Announcements
    • Malwarebytes News
    • Beta Testing Program
  • Malware Removal Help
    • Windows Malware Removal Help & Support
    • Mac Malware Removal Help & Support
    • Mobile Malware Removal Help & Support
    • Malware Removal Self-Help Guides
  • Malwarebytes for Home Support
    • Malwarebytes 3 Support Forum
    • Malwarebytes for Mac Support Forum
    • Malwarebytes for Android Support Forum
    • Malwarebytes for iOS Support
    • Malwarebytes Browser Guard
    • False Positives
    • Comments and Suggestions
  • Malwarebytes for Business Support
    • Malwarebytes Endpoint Protection
    • Malwarebytes Incident Response (includes Breach Remediation)
    • Malwarebytes Endpoint Security
    • Malwarebytes Business Products Comments and Suggestions
  • Malwarebytes Tools and Other Products
    • Malwarebytes AdwCleaner
    • Malwarebytes Junkware Removal Tool Support
    • Malwarebytes Anti-Rootkit BETA Support
    • Malwarebytes Techbench USB (Legacy)
    • Malwarebytes Secure Backup discontinued
    • Other Tools
    • Malwarebytes Tools Comments and Suggestions
  • General Computer Help and Security Updates
    • BSOD, Crashes, Kernel Debugging
    • General Windows PC Help
  • Research Center
    • Newest Rogue-Ransomware Threats
    • Newest Malware Threats
    • Newest Mobile Threats
    • Newest IP or URL Threats
    • Newest Mac Threats
    • Report Scam Phone Numbers
  • General
    • General Chat
    • Forums Announcements & Feedback

Find results in...

Find results that contain...


Date Created

  • Start

    End


Last Updated

  • Start

    End


Filter by number of...

Joined

  • Start

    End


Group


AIM


MSN


Website URL


ICQ


Yahoo


Jabber


Location


Interests

Found 13 results

  1. Running M3 v3.7.1 on 64x Win10 Pro. I installed Windows Update v1903 tonight and, now Windows Defender AV is disabled and Windows Defender AS is enabled. Also, Windows Defender is no longer listed in context menu of File Explorer. Before installing this WU 1903 update, Windows Defender was fully enabled along side of MBAM real-time protection and custom scanning with Windows Defender was an option in the File Explorer context menu. Yes, I have rebooted several times after Windows Update. The following is from a FRST log: AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} Please tell me how to re-enable Windows Defender and add it to the context menu. Thank you DW
  2. I am not able to run windows defender and malwarebytes in parallel. If i select the option - Never register malwarebytes in the windows action center then windows defender is completely disabled. I have attached the screenshots. Malwarebytes ver# 3.6.1.2711 Please advise.
  3. trying to find out a way to completely uninstall windows defender from my windows 10 OS . but there is no option to uninstall it . and I want to remove it because windows defender AV isn’t working and an error while I try to update it’s malware databases ! and I want to replace it with KASPERSKY.
  4. My windows pc has been infected with a virus in the folder C:\Windows\System32. my default window antivirus could not detect this virus but then i installed the free version of AVG which was able to detect this virus but every few days this virus reappears and i have to remove it again. From my research and little bit of knowledge i think this is related to some kind of cryptocurrency mining. Any guidance on this topic would be appreciated Original Filename: diskdriver.exe Type of File: Application(.exe) Description: disk io driver Location : C:\Windows\System32. size : 1.97 MB (2,069,504 bytes) size on disk: 1.97 MB (2,072,576 bytes)
  5. I have posted a question "Unable to remove exclusions files and location (Either in Safe mode run Windows Defender or in Registry Editor) " in Mircosoft Community. Anyone can help me solve
  6. Hey there! This is more of just asking for Malwarebytes Staff/ Professional's opinion on an issue. On July 4th, I scanned my computer with Malwarebytes Premium and the Anti-rootkit beta; nothing was found each time. When I did a full scan of my computer with Windows Defender just to make sure, it says I was infected with "Trojan:O97M.Dplink.A". When I saw this I started to do some research on this trojan, but couldn't find any info other than a reddit thread talking about it and Microsoft's own entry on the trojan. I posted this to the Microsoft Community website asking if it was a false positive, but didn't really get a straight answer from them. I'll post it here because it goes into detail what happened; sorry that it's lengthy, but I like to try and be as thorough as I can be and I don't want to post links leading out of the forum: " Hello! I've been trying to figure this out all day; on my desktop earlier today, Windows defender flagged a file associated with the Immersive Control Panel - 'Control Panel a.k.a. ControlPanel.settingcontent-ms' - as 'Trojan:O97M/DPlink.A' in my user files and in the 'Windows.Old' files (I'd just reformatted and updated to 1803 about two weeks ago). This seemed strange since I've only logged into my Gmail, Youtube and Amazon since last night and haven't downloaded anything or even opened up an email, so I really haven't been in a position to have been infected by anything. Also, I had scanned my computer with Windows Defender last night too, and nothing came up when I did that. Windows Defender had deleted the file, so I don't have it on my computer anymore to send, if you needed it. I've run a full scan on my laptop and my father's laptop as well; WIndows Defender flagged the same exact file in the same exact location as the same Trojan I named above each time. On VirusTotal, I've noticed that Microsoft (Windows Defender) is the only Antivirus/Antimalware that's flagging it as a malicious XML file, labeling it 'Trojan:O97M/DPlink.A' leading me to suspect that this is a false positive. After a whole day of scouring the internet, I wanted to ask the Microsoft Community if this is indeed a threat or is Windows Defender detecting a false positive? On a side note, W.D. deleted the suspected file off my laptop as well, but I do have a screenshot of where it detected the suspected file; I'll attach it for reference. I do have the suspected file still on my father's laptop; windows defender is doing a full scan with the most recent virus definitions now as opposed to earlier today and the same file is not being flagged anymore. On all the machines I've scanned I ran a full scan with Malwarebytes Premium before running Windows Defender; Malwarebytes didn't detect anything on any computer during any scan, even when I had it select the exact file in question. [Screenshot is attached below] To summerize, I'm wanting to know if the file Windows Defender flagged is truly malicious or just a false positive? Given how my desktop and my laptop have deleted ControlPanel.settingcontent-ms from 'windows.immersivecontrolpanel_cw5n1h2txyewy' folder, will this cause permanent damage to my systems or will they still function properly? (I haven't noticed any problems yet)" I know that Malwarebytes staff isn't Microsoft, but based on the information above and the evidence I can present, do you feel confident in saying that this is a false positive? Admittedly, I do nnot have the ControlPanel.settingcontent-ms file on my computer since Windows Defender deleted it, but I have a link leading to the virus total page whee I uploaded it to the website; as of right now, Virus Total doesn't flag the file in question as malicious across any A.V./A.M. Thank you for taking the time to read this monster of a post and I hope to hear from you soon!
  7. Sorry if this is the wrong forum to post this in. This is my first time posting on these forums. I was wondering if there's a way to confirm if a USB flash drive is free of viruses, malware, and/or ransomware? I used this USB flash drive back on Feb. 23rd with a computer (Windows XP) that was a part of a network. The server was infected with Ransomware and all the files on the shared network were encrypted on Feb. 25th. Supposedly nobody used any of the computers on the network on the 25th, so I suspect that the infection happened earlier and activated the Ransomware at a later date (I don't know if this is even possible). I always remove the flash drive from the computer when I'm not using it, however, since I don't know when exactly the infection occurred, I really don't know if it was infected or not. The tech that was hired was unable to decrypt the files and couldn't contact the hacker to pay the ransom, so we ended up replacing the computer with Windows 10 and restoring some of the files from an older backup. There are files I'd like to transfer from the flash drive to the new Windows 10 computer (Computer #1) and to an older spare computer running Windows XP (Computer #2), as the backup the tech used did not have copies of these files. After avoiding the flash drive for weeks, I decided to test it out on Computer #1 (Apr. 3rd), since I thought Windows 10 would be more secure. After plugging it in, there was a notification saying "There is a problem with this drive. Scan the drive now and fix it." I ran Windows Defender and the scan detected "no threats" on the USB flash drive. I also ran a full system scan and it was also clean. Since then, I have been saving documents to the flash drive and opening files on it (always while using Computer #1), but I've refrained from copying the flash drive's files to Computers #1 and #2 because of a lingering fear of infection. Every time I plug it in, I always get the same notification to scan & fix it, but every time I scan it with Windows Defender, no threats are ever found. It's been over two weeks now since I've tried inserting the flash drive and nothing bad has happened to Computer #1 (or the rest of the network for that matter). I've avoided using the flash drive on Computer #2, because I worry Windows XP will be more vulnerable or the infection will only effect XP but not 10. Questions: 1) MAIN QUESTION: Is the USB Flash Drive safe to use (free of Ransomware, Malware, Viruses, etc.)? 2) Does Ransomware usually wait a period of time before activating or take awhile to encrypt files? 3) Are Windows Defender and Avast Antivirus even capable of detecting Ransomware or am I wasting time running scans with them? 4) Have I made a big mistake by opening files on the flash drive with Computer #1, and spread malware on the network? 5) Does Ransomware even make copies of itself and spread like viruses do? EDIT: Another thing I noticed is that the Flash Drive is supposed to have a size of 16 GB, but according to Windows Explorer, its total size is only 14.9 GB. Is this just false advertisement of the product, or is something wrong with the flash drive? Notes: USB Flash Drive: SanDisk Cruzer Glide 16GB Computer #1: Windows 10 Computer #2: Windows XP (Service Pack 3) Windows Defender: Updates automatically (up to date) - for Computer #1 Avast Antivirus: Updates automatically (up to date) - for Computer #2 * The USB Flash Drive is usually plugged into a computer for 2 hours or less. I very rarely leave it in for a long duration. Thanks for your help, T-Ruth
  8. I just purchased MWB for home. Do I continue to run Windows Defender and Windows Firewall?
  9. So i know this is related to windows defender, but I have seen other threads with my problem. Windows defender is quarantining items Some of them are trying to delete my Sony Vaio care, yet some say file:C:\Windows\System32\iolorgdf64.exe firefoxplugins:HKLM\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.13.2 regkey:HKLM\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.13.2 or clsid:HKLM\SOFTWARE\CLASSES\Wow6432Node\CLSID\{2A090754-16A6-407D-883D-A5C0F8CF9992} clsid:HKLM\SOFTWARE\CLASSES\Wow6432Node\CLSID\{C9480C5A-8921-4C96-BAB1-3D56AE999B70} file:C:\Program Files\Sony\VAIO Care\Iolo\ioloTools.exe file:C:\PROGRA~1\Sony\VAIOCA~1\Iolo\IOLOTO~1.EXE interface:HKLM\SOFTWARE\CLASSES\INTERFACE\{0033698F-1332-4963-99F3-7BC36ABFE13E} interface:HKLM\SOFTWARE\CLASSES\INTERFACE\{0F8A26B3-2B10-4AAB-A97F-393333B9D5C9} interface:HKLM\SOFTWARE\CLASSES\INTERFACE\{28637EB6-7F05-40C6-BD96-1850B9E8603F} interface:HKLM\SOFTWARE\CLASSES\INTERFACE\{2B721EEB-BDA2-4F5A-AF5E-56213EB47BFD} interface:HKLM\SOFTWARE\CLASSES\INTERFACE\{3D74091E-BA60-40EC-A09D-81DF16A7EC12} interface:HKLM\SOFTWARE\CLASSES\INTERFACE\{40D797FB-1418-4689-8C47-634A8E21E77F} interface:HKLM\SOFTWARE\CLASSES\INTERFACE\{57EED195-35A3-4425-A3DA-9638746A0F78} interface:HKLM\SOFTWARE\CLASSES\INTERFACE\{816D649C-F0ED-41FF-956C-6568609F4570} interface:HKLM\SOFTWARE\CLASSES\INTERFACE\{935B5B76-ABBD-407D-B5E1-AACADF5045E6} interface:HKLM\SOFTWARE\CLASSES\INTERFACE\{9D8E5931-AF9E-4A20-8B90-2C82860B13F8} interface:HKLM\SOFTWARE\CLASSES\INTERFACE\{B54B80F3-9227-4D46-BF22-ABBF75174412} interface:HKLM\SOFTWARE\CLASSES\INTERFACE\{B5FC8155-91F9-4B76-BAE1-462C95CE85B2} interface:HKLM\SOFTWARE\CLASSES\INTERFACE\{C382A7AC-33DB-46D3-A34D-7A22FBB92BFC} interface:HKLM\SOFTWARE\CLASSES\INTERFACE\{C5FD77DF-C570-483A-9CE9-146ACF651A83} interface:HKLM\SOFTWARE\CLASSES\INTERFACE\{CDFEC96E-EF0B-4F37-96CC-32E2CB2102E3} interface:HKLM\SOFTWARE\CLASSES\INTERFACE\{EDF15D72-F2E1-4B0A-93AC-FFB3CFCD71CD} interface:HKLM\SOFTWARE\CLASSES\INTERFACE\{F7D7E8DE-A7AA-4329-A166-18CABA3F065C} interface:HKLM\SOFTWARE\CLASSES\Wow6432Node\INTERFACE\{0033698F-1332-4963-99F3-7BC36ABFE13E} interface:HKLM\SOFTWARE\CLASSES\Wow6432Node\INTERFACE\{0F8A26B3-2B10-4AAB-A97F-393333B9D5C9} interface:HKLM\SOFTWARE\CLASSES\Wow6432Node\INTERFACE\{28637EB6-7F05-40C6-BD96-1850B9E8603F} interface:HKLM\SOFTWARE\CLASSES\Wow6432Node\INTERFACE\{2B721EEB-BDA2-4F5A-AF5E-56213EB47BFD} interface:HKLM\SOFTWARE\CLASSES\Wow6432Node\INTERFACE\{3D74091E-BA60-40EC-A09D-81DF16A7EC12} interface:HKLM\SOFTWARE\CLASSES\Wow6432Node\INTERFACE\{40D797FB-1418-4689-8C47-634A8E21E77F} interface:HKLM\SOFTWARE\CLASSES\Wow6432Node\INTERFACE\{57EED195-35A3-4425-A3DA-9638746A0F78} interface:HKLM\SOFTWARE\CLASSES\Wow6432Node\INTERFACE\{816D649C-F0ED-41FF-956C-6568609F4570} interface:HKLM\SOFTWARE\CLASSES\Wow6432Node\INTERFACE\{935B5B76-ABBD-407D-B5E1-AACADF5045E6} interface:HKLM\SOFTWARE\CLASSES\Wow6432Node\INTERFACE\{9D8E5931-AF9E-4A20-8B90-2C82860B13F8} interface:HKLM\SOFTWARE\CLASSES\Wow6432Node\INTERFACE\{B54B80F3-9227-4D46-BF22-ABBF75174412} interface:HKLM\SOFTWARE\CLASSES\Wow6432Node\INTERFACE\{B5FC8155-91F9-4B76-BAE1-462C95CE85B2} interface:HKLM\SOFTWARE\CLASSES\Wow6432Node\INTERFACE\{C382A7AC-33DB-46D3-A34D-7A22FBB92BFC} interface:HKLM\SOFTWARE\CLASSES\Wow6432Node\INTERFACE\{C5FD77DF-C570-483A-9CE9-146ACF651A83} interface:HKLM\SOFTWARE\CLASSES\Wow6432Node\INTERFACE\{CDFEC96E-EF0B-4F37-96CC-32E2CB2102E3} interface:HKLM\SOFTWARE\CLASSES\Wow6432Node\INTERFACE\{EDF15D72-F2E1-4B0A-93AC-FFB3CFCD71CD} interface:HKLM\SOFTWARE\CLASSES\Wow6432Node\INTERFACE\{F7D7E8DE-A7AA-4329-A166-18CABA3F065C} regkey:HKLM\SOFTWARE\CLASSES\INTERFACE\{0033698F-1332-4963-99F3-7BC36ABFE13E} regkey:HKLM\SOFTWARE\CLASSES\INTERFACE\{0F8A26B3-2B10-4AAB-A97F-393333B9D5C9} regkey:HKLM\SOFTWARE\CLASSES\INTERFACE\{28637EB6-7F05-40C6-BD96-1850B9E8603F} regkey:HKLM\SOFTWARE\CLASSES\INTERFACE\{2B721EEB-BDA2-4F5A-AF5E-56213EB47BFD} regkey:HKLM\SOFTWARE\CLASSES\INTERFACE\{3D74091E-BA60-40EC-A09D-81DF16A7EC12} regkey:HKLM\SOFTWARE\CLASSES\INTERFACE\{40D797FB-1418-4689-8C47-634A8E21E77F} regkey:HKLM\SOFTWARE\CLASSES\INTERFACE\{57EED195-35A3-4425-A3DA-9638746A0F78} regkey:HKLM\SOFTWARE\CLASSES\INTERFACE\{816D649C-F0ED-41FF-956C-6568609F4570} regkey:HKLM\SOFTWARE\CLASSES\INTERFACE\{935B5B76-ABBD-407D-B5E1-AACADF5045E6} regkey:HKLM\SOFTWARE\CLASSES\INTERFACE\{9D8E5931-AF9E-4A20-8B90-2C82860B13F8} regkey:HKLM\SOFTWARE\CLASSES\INTERFACE\{B54B80F3-9227-4D46-BF22-ABBF75174412} regkey:HKLM\SOFTWARE\CLASSES\INTERFACE\{B5FC8155-91F9-4B76-BAE1-462C95CE85B2} regkey:HKLM\SOFTWARE\CLASSES\INTERFACE\{C382A7AC-33DB-46D3-A34D-7A22FBB92BFC} regkey:HKLM\SOFTWARE\CLASSES\INTERFACE\{C5FD77DF-C570-483A-9CE9-146ACF651A83} regkey:HKLM\SOFTWARE\CLASSES\INTERFACE\{CDFEC96E-EF0B-4F37-96CC-32E2CB2102E3} regkey:HKLM\SOFTWARE\CLASSES\INTERFACE\{EDF15D72-F2E1-4B0A-93AC-FFB3CFCD71CD} regkey:HKLM\SOFTWARE\CLASSES\INTERFACE\{F7D7E8DE-A7AA-4329-A166-18CABA3F065C} regkey:HKLM\SOFTWARE\CLASSES\TYPELIB\{1BE26DDD-B9B9-464D-9EDA-7415E53F2B58}\1.1 regkey:HKLM\SOFTWARE\CLASSES\Wow6432Node\CLSID\{2A090754-16A6-407D-883D-A5C0F8CF9992} regkey:HKLM\SOFTWARE\CLASSES\Wow6432Node\CLSID\{C9480C5A-8921-4C96-BAB1-3D56AE999B70} regkey:HKLM\SOFTWARE\CLASSES\Wow6432Node\INTERFACE\{0033698F-1332-4963-99F3-7BC36ABFE13E} regkey:HKLM\SOFTWARE\CLASSES\Wow6432Node\INTERFACE\{0F8A26B3-2B10-4AAB-A97F-393333B9D5C9} regkey:HKLM\SOFTWARE\CLASSES\Wow6432Node\INTERFACE\{28637EB6-7F05-40C6-BD96-1850B9E8603F} regkey:HKLM\SOFTWARE\CLASSES\Wow6432Node\INTERFACE\{2B721EEB-BDA2-4F5A-AF5E-56213EB47BFD} regkey:HKLM\SOFTWARE\CLASSES\Wow6432Node\INTERFACE\{3D74091E-BA60-40EC-A09D-81DF16A7EC12} regkey:HKLM\SOFTWARE\CLASSES\Wow6432Node\INTERFACE\{40D797FB-1418-4689-8C47-634A8E21E77F} regkey:HKLM\SOFTWARE\CLASSES\Wow6432Node\INTERFACE\{57EED195-35A3-4425-A3DA-9638746A0F78} regkey:HKLM\SOFTWARE\CLASSES\Wow6432Node\INTERFACE\{816D649C-F0ED-41FF-956C-6568609F4570} regkey:HKLM\SOFTWARE\CLASSES\Wow6432Node\INTERFACE\{935B5B76-ABBD-407D-B5E1-AACADF5045E6} regkey:HKLM\SOFTWARE\CLASSES\Wow6432Node\INTERFACE\{9D8E5931-AF9E-4A20-8B90-2C82860B13F8} regkey:HKLM\SOFTWARE\CLASSES\Wow6432Node\INTERFACE\{B54B80F3-9227-4D46-BF22-ABBF75174412} regkey:HKLM\SOFTWARE\CLASSES\Wow6432Node\INTERFACE\{B5FC8155-91F9-4B76-BAE1-462C95CE85B2} regkey:HKLM\SOFTWARE\CLASSES\Wow6432Node\INTERFACE\{C382A7AC-33DB-46D3-A34D-7A22FBB92BFC} regkey:HKLM\SOFTWARE\CLASSES\Wow6432Node\INTERFACE\{C5FD77DF-C570-483A-9CE9-146ACF651A83} regkey:HKLM\SOFTWARE\CLASSES\Wow6432Node\INTERFACE\{CDFEC96E-EF0B-4F37-96CC-32E2CB2102E3} regkey:HKLM\SOFTWARE\CLASSES\Wow6432Node\INTERFACE\{EDF15D72-F2E1-4B0A-93AC-FFB3CFCD71CD} regkey:HKLM\SOFTWARE\CLASSES\Wow6432Node\INTERFACE\{F7D7E8DE-A7AA-4329-A166-18CABA3F065C} regkey:HKLM\SOFTWARE\CLASSES\Wow6432Node\TYPELIB\{1BE26DDD-B9B9-464D-9EDA-7415E53F2B58}\1.1 typelib:HKLM\SOFTWARE\CLASSES\TYPELIB\{1BE26DDD-B9B9-464D-9EDA-7415E53F2B58} typelib:HKLM\SOFTWARE\CLASSES\Wow6432Node\TYPELIB\{1BE26DDD-B9B9-464D-9EDA-7415E53F2B58} typelibversion:HKLM\SOFTWARE\CLASSES\TYPELIB\{1BE26DDD-B9B9-464D-9EDA-7415E53F2B58}\1.1 typelibversion:HKLM\SOFTWARE\CLASSES\Wow6432Node\TYPELIB\{1BE26DDD-B9B9-464D-9EDA-7415E53F2B58}\1.1 I saw a thread: Where HKLM was contained. Windows defender quarantined the files before malware bytes may have had the chance to detect it. Is this trojan(where as i will just delete the infected files or find ways to keep it from coming back) or should i stop windows defender from deleting them and quarantine them. Please get back to me as soon as possible, thanks
  10. Hello! So I completed multiple scans of malwarebytes antimalware to get rid of a trojan malware that's been copying files everywhere, and I've now come up with the result of the internet being blocked when safe mode is off, and windows defender doesn't seem to work. A file or two comes up on every new scan, but doesn't seem to be going away. The file attached is the latest scan, which caught a few files. Looking at task manager on regular boot, an application called "Spine" seems to come up a lot, and any change I got at deleting it ended up in it replacing itself with every reboot. Help with this would be greatly appreciated! Thank you! log.txt
  11. I've been running Malwarebytes 3 alongside Norton for a couple of years with no problems, however my Norton is expiring so I decided to remove it and use Windows Defender alongside Malwarebytes 3. The recommended Setting for Windows Action Center in Malwarebytes turns off Windows Defender real time protection. I have changed that setting to "Never Register Malwarebytes" which allows real time protection for both. Everything seems to be running fine currently. Am I asking for trouble leaving things this way? Are other users doing the same thing without any issues?
  12. Sorry to revive an old thread, but this just started happening to me again. Setting it to never register works as a temporary fix, but I wanted to see if anyone else was still having this problem.
  13. After updating to Windows 10 Creator's edition today, Windows Defender gives an error message that settings in MWB need to be modified. Error not present if MWB is set never to register in the Windows action center. This was not necessary before W10 update. Is this significant or just an annoyance?
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.