Jump to content

Updated to localwp 7.1.0+6396, ransomware detected in php-cgi.exe


captainhaddock
Go to solution Solved by Porthos,

Recommended Posts

@captainhaddock Instead of a screenshot please post the log of the detection.

You can find Scan and Protection logs within the Malwarebytes 4 program in the following location

 

image.png

 

RTP stands for Real-Time Protection and is where automatic protection operations would normally be logged

 

image.png

 

If you click on the View option you should get something similar to the following with other options available.

 

image.png

 

 

 

Thank you

Link to post
Share on other sites

@Porthos thanks again, I updated Malwarebytes as suggested and it no longer flags the ransomware. Appreciate your help.

 

I looked at the log file in a text editor but definitely did not change it.  It may be because I had a second flagging of the error and sent the log file for that instead of the original dated error.

Here are both log files

ransom2.jpg

ramsomdetect1.txt ramsomdetect2.txt

  • Like 1
Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.