Jump to content

Recommended Posts

Today when I open Node.js Command Prompt on Windows, Malwarebytes blocks it with the information that appears at the end of this message.

The target of the Node.js Command Prompt shortcut is: C:\Windows\System32\cmd.exe /k "C:\Program Files\nodejs\nodevars.bat"

I have used this for months and today it comes up and is blocked and closes immediately. Repeated attempts result in the same behavior.

What is the deal?

-Log Details-
Protection Event Date: 2/8/17
Protection Event Time: 4:26 PM
Logfile: 
Administrator: Yes

-Software Information-
Version: 3.0.6.1469
Components Version: 1.0.50
Update Package Version: 1.0.1214
License: Premium

-System Information-
OS: Windows 10
CPU: x64
File System: NTFS
User: System

-Exploit Details-
File: 0
(No malicious items detected)

Exploit: 1
Malware.Exploit.Agent.Generic, , Blocked, [0], [-1],0.0.0

-Exploit Data-
Affected Application: cmd
Protection Layer: Application Behavior Protection
Protection Technique: Exploit payload process blocked
File Name: C:\WINDOWS\system32\cmd.exe C:\WINDOWS\system32\cmd.exe \c \node.exe -p -e process.versions.node + ' (' + process.arch + ')'
URL: 

(end)

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.