Mark_Albrosco Posted November 29, 2018 ID:1283843 Share Posted November 29, 2018 I received the following notice yesterday, and today - what do I need to do to permanently remove this issue Link to post Share on other sites More sharing options...
Kalrand Posted December 4, 2018 ID:1284793 Share Posted December 4, 2018 If you log into the Malwarebytes Cloud and click on Quarantine is it listed there? If so, click the box on the left to select it then click Delete in the upper right. Link to post Share on other sites More sharing options...
Mark_Albrosco Posted December 4, 2018 Author ID:1284806 Share Posted December 4, 2018 Thanks Kalrand - I followed those steps on Thursday, and the detection returned yesterday (I repeated the delete from quarantine process this morning, see below) - any thoughts? Link to post Share on other sites More sharing options...
Kalrand Posted December 4, 2018 ID:1284809 Share Posted December 4, 2018 Usually when we get multiple the extension installs multiple pieces on the computer. If you look at the location, are they all the same? If not, delete them like the others. If they are I'd raise this up to support. Link to post Share on other sites More sharing options...
KDawg Posted December 4, 2018 ID:1284913 Share Posted December 4, 2018 Hey thanks, Kalgrand great info! As well Mark if you want to check out this article it goes a little more on why this may be re-occurring but does appear to be related to a browser extension. https://support.malwarebytes.com/docs/DOC-2429 Let us know if this doesn't help or answer? Many Thank, Kevin Link to post Share on other sites More sharing options...
Mark_Albrosco Posted December 12, 2018 Author ID:1286670 Share Posted December 12, 2018 @KDawg @Karland - so I got a fresh detection today of the same PUP. I checked my detection history and it's the same registry entry each time. I deleted it from quarantine again. After reading the article suggested by KDawg, I could not narrow it down to a specific browser; so I followed the steps suggested for a possible "root kit" infection. The policy for the endpoints has "Scan Rootkits" disabled; I enabled it and ran a scan of the specific device - results came back with 0 threats detected. How do I kick this up to "Support"? Link to post Share on other sites More sharing options...
Kalrand Posted December 12, 2018 ID:1286686 Share Posted December 12, 2018 Unless @KDawg is already on it, I found this link: https://support.malwarebytes.com/community/business/pages/contact-us Link to post Share on other sites More sharing options...
Staff screen317 Posted December 12, 2018 Staff ID:1286688 Share Posted December 12, 2018 Hi Mark_Albrosco, I'm going to make some tweaks to the database to stop this detection since it doesn't appear to be a legitimate hit in this case. In the future, please contact our business support with any future inquiries: https://support.malwarebytes.com/community/business Thank you for continuing to use our product. Chris Link to post Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now