Jump to content

windows 10 language hotkey message box detected as microsoft office exploit


Ut1234

Recommended Posts

@Ut1234

Lets use the support tool and do a clean uninstall and reinstall. Restart the computer after the reinstall. Do not change any default settings. Try you process again.

 

Download the Malwarebytes Support Tool.

 

image.png.6519257fa03f8ed4c66c767f7bc952c9.png

 

Please close all browsers and programs before running the tool. Right click and quit MB from the system tray also.

Once done it will attempt to reinstall both Malwarebytes and Privacy VPN.

Please say no and close the X button on the top right for Privacy if you are not subscribed to it..

Link to post
Share on other sites

1 minute ago, Ut1234 said:

as far as i am aware, i have not changed any settings in malwarebytes at all aside from switching to dark mode.

Ok then you will have to change one setting. Malwarebytes is getting more aggressive on Anti Exploit protection.

Uncheck the following box under MS Office.

image.png.0748d666a0d1711fbd5d69c30ced8ac3.png

Link to post
Share on other sites

I think i'll keep that setting on just so i'm safer overall, but it's nice to have this information on how to turn this off should malwarebytes make it hard to use the pc going forward. thank you for the information, but i do wish for the devs to be aware of this probably niche false positive.

Link to post
Share on other sites

Hi, I had the same issue a few minutes ago also whilst trying to install another keyboard input language. I pressed ALT-SHIFT to see whether it works properly and had a Windows pop-up giving me the option to change how I'd like the input change to behave, so I clicked and immediately had an RTP exploit notification from MB.

Event details: Malware.Exploit.Agent.Generic

Application: Windows Control Panel

Layer: Application Behavior Protection

Location: Long text ending with {HOTKEYS} in the end. Shall I provide the full path?

Hope that it is indeed a false "niche" positive as Ut1234 said above.

Thanks!

Link to post
Share on other sites

1 hour ago, overclockable said:

Thanks, Porthos. I've checked a few other topics, and it seems indeed that there are recently more false positives flying around related to "typical" Windows interaction - Office, shortcuts etc.

Each solution is different. Please post the actual log of the detection.

 

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.