Jump to content

PUA not snagged or quarantined by Malwarebytes free


Recommended Posts

FYI, I started using Windows Defender with the latest install of W10 21H1 instead of other 3rd party antivirus. I use Malwarebytes free and update every morning and scan 2x/week minimum. On 5/7 windows detected a PUA that Malwarebytes didn't detect. I have Malwarebytes set to quarantine anything it finds.   I've removed it but here's the infot. It's a webtoolbar crawler. Don't know where it came from. Only recent downloads (within last 10 days) were direct from Microsoft Updater and Topaz (Microsoft, Topaz, On1PhotoRaw, Piriform.com, NVIDIA, etc). FYI. No live links in the PDF attached.

KCWestbrook

2022-05-14_PUACrawlerToolbarInfo.pdf

Link to post
Share on other sites

Hi.   :welcome: I will guide you. 

The Microsoft Safety Scanner is a free Microsoft stand-alone virus scanner that can be used to scan for & remove malware or potentially unwanted software from a system. 

The download links & the how-to-run-the tool are at this link at Microsoft 

https://docs.microsoft.com/en-us/windows/security/threat-protection/intelligence/safety-scanner-download

 

Look on Scan Options & select  CUSTOM scan  & then select the C drive to be scanned.

Then start the scan. Have lots of patience. Once you start the scan & you see it started, then leave it be.  

  • Once you see it has started, take a long long break;  walk away.  Do not pay credence if you see some intermediate early flash messages on screen display.  The only things that count are the End result at the end of the run.
  • Again, any on-screen display about repeat 'infection' is not to be relied on.  Ignore those.
  • We only rely on the end result that is on the log-report-file.

 

This is likely to run for many hours   ( depending on number of files on your machine & the speed of hardware.)

The log is named MSERT.log  

the log will be at  

Windows\debug\msert.log

Please attach that log with your reply. We will do more later.

Link to post
Share on other sites

Ran a complete scan of C:\.  Unfortunately MSERT does not exist in the debug folder. Folder completely empty. This is Win10Home upgrade from Win8.1.  Today's scan showed no threats found.  Scan took 3hrs 30min to completely scan C:\.  The only place Defender is logging is in EventLog Applications under Windows Defender but it only shows normal stuff no alerts or bang marks at all, all entries from 5/7 are normal.  PC is running wireless to the router in a separate location.  I can run again overnight and do offline scan but not sure it will show anything wirhwe.  Your call, let me know.  Looks like MS changed how Defender is operating/logging.

Link to post
Share on other sites

Hi @KCWestbrook 

I would like a report set for review.   This is a report only.

Please download MALWAREBYTES MBST Support Tool

Once you start it click Advanced >>> then   Gather Logs

 Have patience till the run has finished.

Upload an archive once it is done. Attach the mbst-grab-results.zip from the Desktop.

 

  • Please attach  mbst-grab-results.zip    to your reply 

 

I believe we should keep in mind that Malwarebytes has its own rules and classifications & certainly a different scan engine than what Microsoft has.
As to what Microsoft Defender antivirus has flagged recently & the results of the last scan ...all that you can see by drilling into the on-screen user interface.
Press & hold the Windows-logo-key and tap the 'R' key to get the RUN option box of Windows.
then type in

Quote

ms-settings:windowsdefender

and tap ENTER key
Once you see the "Windows Security" screen
click on "Open Windows Security".

Edited by Maurice Naggar
Link to post
Share on other sites

  • Root Admin

Due to the lack of feedback, this topic is closed to prevent others from posting here.

If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this topic with your request.

This applies only to the originator of this topic. Other members who need assistance please start your own topic in a new thread.

Tips to help protect from infection

Thanks

 

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.