Jump to content

False alarm of RTP detection


jmkbird
 Share

Recommended Posts

Malwarebytes
www.malwarebytes.com

-Log Details-
Protection Event Date: 3/29/22
Protection Event Time: 9:24 PM
Log File: 9aa081b0-af63-11ec-8cdb-709cd13f9557.json

-Software Information-
Version: 4.5.6.180
Components Version: 1.0.1634
Update Package Version: 1.0.52998
License: Premium

-System Information-
OS: Windows 11 (Build 22000.556)
CPU: x64
File System: NTFS
User: System

-Blocked Website Details-
Malicious Website: 1
, C:\Users\JMK\AppData\Roaming\baidu\BaiduNetdisk\baidunetdiskhost.exe, Blocked, -1, -1, 0.0.0, , 

-Website Data-
Category: Trojan
Domain: 
IP Address: 123.8.85.246
Port: 7338
Type: Outbound
File: C:\Users\JMK\AppData\Roaming\baidu\BaiduNetdisk\baidunetdiskhost.exe

(end)

Malwarebytes
www.malwarebytes.com

-Log Details-
Protection Event Date: 3/29/22
Protection Event Time: 9:23 PM
Log File: 602de14e-af63-11ec-bbee-709cd13f9557.json

-Software Information-
Version: 4.5.6.180
Components Version: 1.0.1634
Update Package Version: 1.0.52998
License: Premium

-System Information-
OS: Windows 11 (Build 22000.556)
CPU: x64
File System: NTFS
User: System

-Blocked Website Details-
Malicious Website: 1
, C:\Users\JMK\AppData\Roaming\baidu\BaiduNetdisk\baidunetdiskhost.exe, Blocked, -1, -1, 0.0.0, , 

-Website Data-
Category: Trojan
Domain: 
IP Address: 59.55.253.25
Port: 7773
Type: Outbound
File: C:\Users\JMK\AppData\Roaming\baidu\BaiduNetdisk\baidunetdiskhost.exe

(end)

Link to post
Share on other sites

  • Staff
1 hour ago, jmkbird said:

Malwarebytes
www.malwarebytes.com

-Log Details-
Protection Event Date: 3/29/22
Protection Event Time: 9:24 PM
Log File: 9aa081b0-af63-11ec-8cdb-709cd13f9557.json

-Software Information-
Version: 4.5.6.180
Components Version: 1.0.1634
Update Package Version: 1.0.52998
License: Premium

-System Information-
OS: Windows 11 (Build 22000.556)
CPU: x64
File System: NTFS
User: System

-Blocked Website Details-
Malicious Website: 1
, C:\Users\JMK\AppData\Roaming\baidu\BaiduNetdisk\baidunetdiskhost.exe, Blocked, -1, -1, 0.0.0, , 

-Website Data-
Category: Trojan
Domain: 
IP Address: 123.8.85.246
Port: 7338
Type: Outbound
File: C:\Users\JMK\AppData\Roaming\baidu\BaiduNetdisk\baidunetdiskhost.exe

(end)

Malwarebytes
www.malwarebytes.com

-Log Details-
Protection Event Date: 3/29/22
Protection Event Time: 9:23 PM
Log File: 602de14e-af63-11ec-bbee-709cd13f9557.json

-Software Information-
Version: 4.5.6.180
Components Version: 1.0.1634
Update Package Version: 1.0.52998
License: Premium

-System Information-
OS: Windows 11 (Build 22000.556)
CPU: x64
File System: NTFS
User: System

-Blocked Website Details-
Malicious Website: 1
, C:\Users\JMK\AppData\Roaming\baidu\BaiduNetdisk\baidunetdiskhost.exe, Blocked, -1, -1, 0.0.0, , 

-Website Data-
Category: Trojan
Domain: 
IP Address: 59.55.253.25
Port: 7773
Type: Outbound
File: C:\Users\JMK\AppData\Roaming\baidu\BaiduNetdisk\baidunetdiskhost.exe

(end)

Hello- Detections on VirusTotal on the IP: VirusTotal - URL - 91a0a574e3a3ec55919ab96a1901edfd2686a28db38e6b942144f2ad128a6dc9

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.