Jump to content

website flagged as riskware


teo___

Recommended Posts

i recently started the malwarebytes premium free trial, so i went on a website and it got flagged as riskware. i immediately left the site, but i'm worried that something happened to my computer. i ran a scan and it didn't detect anything, but is there anyway that i can be 100% sure that im safe?

Link to post
Share on other sites

2 hours ago, teo___ said:

on a website and it got flagged as riskware. i immediately left the site

When you are blocked by Malwarebytes, it means the site can not affect you.

Let's get the info to get the process started to check your computer.

While you are waiting for the next qualified/approved malware removal expert helper to take on your case, even though you may have run the following Malwarebytes utility or its subsets, please carefully follow these instructions: Do not try any other cleaning of any kind after running the support tool. Use the computer as little as possible, or even better don’t use it at all except to check this topic and follow the instructions given.

Do these 2 steps so that ALL folders and files are set to SHOW, plus also, Turn OFF Windows Fast start.
Show-Hidden-Folders-Files-Extensions
https://forums.malwarebytes.com/topic/299345-show-hidden-folders-files-extensions/

Disable-Fast-Startup
https://forums.malwarebytes.com/topic/299350-disable-fast-startup/

Next.

Start Malwarebytes. Click Settings ( gear ) icon. Next, lets make real sure that Malwarebytes does NOT register with Windows Security Center

 

Click the selection to the left for the line "Always register Malwarebytes in the Windows Security Center".
{ We want that to be set as Off   .... be sure that line's  radio-button selection is all the way to the Left.  thanks. }

This will not affect any real-time protection of the Malwarebytes for Windows    😃.

image.png.1a94fec66febf538e456df2bc16e9ad7.png

Close Malwarebytes. Restart/reboot the computer.

 

Then do the following after restart.

WARNING: Do Not click the Repair System under Advanced unless requested by a Malwarebytes support agent or authorized helper

  1. Download the Malwarebytes Support Tool.
  2. In your Downloads folder, open the mb-support-x.x.x.xxx.exe file.
  3. In the User Account Control (UAC) pop-up window, click Yes to continue the installation.
  4. Run the MBST Support Tool.
  5. In the left navigation pane of the Malwarebytes Support Tool, click Advanced.
  6. In the Advanced Options, click only Gather Logs. A status diagram displays the tool is Getting logs from your computer.
  7. A zip file named mbst-grab-results.zip will be saved to the Public desktop, please attach that file in your next reply to this topic. Please do NOT copy and paste.

For the short time between when you post the diagnostic logs, and when your helper weighs in, please take no further self-directed remedial actions that will invalidate the diagnostic logs you will have sent.

  • Like 1
Link to post
Share on other sites

3 hours ago, teo___ said:

so i went on a website and it got flagged as riskware.

You only had one block, Get us the log from that detection.

You can find Scan and Protection logs within the Malwarebytes 4 program in the following location

 

image.png

 

RTP stands for Real-Time Protection and is where automatic protection operations would normally be logged

 

image.png

 

If you click on the View option you should get something similar to the following with other options available.

 

image.png

 

  • Like 1
Link to post
Share on other sites

Malwarebytes
www.malwarebytes.com

-Dettagli log-
Data evento di protezione: 24/09/23
Ora evento di protezione: 16:59
File di log: f628259a-5aea-11ee-8cc4-e070eac91170.json

-Informazioni software-
Versione: 4.6.2.281
Versione componenti: 1.0.2131
Aggiorna versione pacchetto: 1.0.75623
Licenza: Periodo di prova

-Informazioni sistema-
SO: Windows 11 (Build 22621.2283)
CPU: x64
File system: NTFS
Utente: System

-Dettagli siti web bloccati-
Sito web nocivo: 1
, C:\Program Files\Google\Chrome\Application\chrome.exe, Bloccato, -1, -1, 0.0.0, , 

-Dati sito web-
Categoria: Riskware
Dominio: hgis74sak.ru
Indirizzo IP: 172.67.186.197
Porta: 443
Tipo: In uscita
File: C:\Program Files\Google\Chrome\Application\chrome.exe

(end)

Link to post
Share on other sites

3 minutes ago, teo___ said:

im pretty sure it's the trial version

I figured as much, It is the FIRST thing I remove from my Client's new computers.

Uninstall it from programs and features like you would do for any other program.

After the restart do the following to get rid of left overs.

  1. Download the MCPR tool.
  2. Double-click MCPR.exe.
  3. If you see a security warning, click Yes, Continue, or Run (depending on your version of Windows):
  4. On the McAfee Software Removal screen:
     
    1. Click Next
    2. Click Agree to accept the End User License Agreement (EULA).
       
  5. In the Security Validation screen:
    1. Type the characters exactly as shown on your screen. Validation is case-sensitive.
    2. Click Next. This step prevents the accidental use of MCPR.

      MCNSZHX3DQABDCTIB6GMDWNNKPRU?oid=00DDn00
       
  6. Wait for the MCPR tool to complete. This might take 20 minutes or more, depending on your type of PC.
  7. When you see Removal Complete, the MCPR tool has completed successfully. Restart your PC to complete the removal process.

After the restart get a new set of logs from The Malwarebytes support tool.

  • Like 1
Link to post
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.