Jump to content

Worrying activity for windows defender


Recommended Posts

Hi, new to the forum, so apologies if i miss anything seemingly obvious or important.

A few days ago, my PC was randomly black screening and crashing. I found this very worrying, as the crashes grew more and more frequent. As a response to this, i decided to reset windows as an attempt to fix the issue. Since then, I have not had any unexpected crashes, but a fully new issue has arisen. Windows defender opens completely blank, if i attempt to run a quick scan through the taskbar, an error message appears saying an IT administrator has disabled some functions of the app. Myself being the sole owner and user of this PC, i found this rather distressing. After a few hours of scrounging around google, looking for solutions, I attempted any fix i could get my hands on. Windows security service was not appearing in my services, and certain commands entered in the command prompt would respond saying that i didnt have permission to execute them.

Link to post
Share on other sites

Hello. There occur several questions that need clarification.

When do these black screens happen ? On system startup ?

On the occasion of running a particular application?

What version of Windows is this?

Has this machine ever had a different Brand of antivirus installed ?

In the recent past, has any sort of dodgy or free so called, or cracked game or app been downloaded and run ?

Have you gotten Malwarebytes installed on this PC ? Then did you then do a scan ? If not, do so now. It would help to have a copy of the resulting scan report.

Link to post
Share on other sites

These blackscreens used to occur after the computer had been running for about 10-15 minutes, and from memory i cant seem to link it to any specific application.
I have been on windows 11 and only ever used defender, and there has been a dodge game or two run through this computer. I've done multiple scans with different programs, and have had a few false positive files cleaned, but not much else. Here is what a current scan returns:

Malwarebytes
www.malwarebytes.com

-Log Details-
Scan Date: 1/22/24
Scan Time: 11:04 AM
Log File: d79e12f6-b8b9-11ee-8885-a85e45546a59.json

-Software Information-
Version: 4.6.8.311
Components Version: 1.0.2242
Update Package Version: 1.0.79916
License: Trial

-System Information-
OS: Windows 11 (Build 22631.3007)
CPU: x64
File System: NTFS
User: 

-Scan Summary-
Scan Type: Threat Scan
Scan Initiated By: Manual
Result: Completed
Objects Scanned: 245436
Threats Detected: 0
Threats Quarantined: 0
Time Elapsed: 1 min, 5 sec

-Scan Options-
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Detect
PUM: Detect

-Scan Details-
Process: 0
(No malicious items detected)

Module: 0
(No malicious items detected)

Registry Key: 0
(No malicious items detected)

Registry Value: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Data Stream: 0
(No malicious items detected)

Folder: 0
(No malicious items detected)

File: 0
(No malicious items detected)

Physical Sector: 0
(No malicious items detected)

WMI: 0
(No malicious items detected)


(end)

Link to post
Share on other sites

Let's do one scan with Malwarebytes Adwcleaner to check for adwares. Just before pressing that "scan" button, be sure that Chrome & Edge, or other web browser are Closed.

It will not take much time,

First download & save it
guide & download link

Then be sure to close all web browsers after the download & before launching the tool.

Then go to where the EXE file is saved. Start Adwcleaner.  Then do a scan with Adwcleaner

Guide article

NOTE: IF Adwcleaner in the results shows "no items" flagged, then please click on the button marked "Run Basic Repair"

adwcleaner-basic-repair.png.b6454e1c53e6ff2c6d0b97103375d6b7.png

Attach the clean log from Adwcleaner when all completed.

NEXT

The Microsoft Safety Scanner is a free Microsoft stand-alone virus scanner that can be used to scan for & remove malware or potentially unwanted items from a system. This tool does not install. It is run on-demand.

This link is for the 64-bit version of MSERT.exe . Be sure you save the file first

Upon completion of the save, Please make sure you Exit out of any other program you might have open so that the sole task is to run the following scan.
That goes especially for web browsers, make sure all are fully exited out of and messenger programs are exited and closed as well

Launch MSERT.exe
Accept the agreement terms of Microsoft
Select CUSTOM scan
Look on Scan Options & select CUSTOM scan & then select the C drive to be scanned.

Then start the scan. Have lots of patience. Once you start the scan & you see it started, then leave it be.

Once you see it has started, take a long long break; walk away. Do not pay credence if you see some intermediate early flash messages on screen display. The only things that count are the End result at the end of the run.
Again, any on-screen display about repeat 'infection' is not to be relied on. Ignore those.
We only rely on the end result that is on the log-report-file.


This is likely to run for many hours ( depending on number of files on your machine & the speed of hardware.)

The log is named MSERT.log

the log will be at

Windows\debug\msert.log
Please attach that log with your reply

It is normal for the Microsoft Safety Scanner to show 'detections' during the scan process on the screen itself.

It is scanning for basically all bread crumbs or traces of files and registry entries that "might" be or have been part of some infection or previous infection.

That DOES NOT mean the computer is infected. Once the scan has been completed it uploads the log to their Cloud service which then uses Artificial Intelligence to determine if in fact any of the traces are an infection or not.

Link to post
Share on other sites

adw cleaner found no issues and Microsoft security scanner returned this:


---------------------------------------------------------------------------------------
Microsoft Safety Scanner v1.403, (build 1.403.2488.0)
Started On Mon Jan 22 11:51:33 2024

Engine: 1.1.23110.2
Signatures: 1.403.2488.0
MpGear: 1.1.16330.1
Run Mode: Interactive Graphical Mode

Results Summary:
----------------
No infection found.
Successfully Submitted MAPS Report
Successfully Submitted Heartbeat Report
Microsoft Safety Scanner Finished On Mon Jan 22 13:44:48 2024


Return code: 0 (0x0)
 

Link to post
Share on other sites

Thank you. I would like a report set for review. This is a report only. This is a necessary step so I can hope to better see what is what on this particular machine.

Please download MALWAREBYTES MBST Support Tool

Once you start it click Advanced >>> then Gather Logs

Have patience till the run has finished.
Attach the mbst-grab-results.zip from the Desktop to your reply..

Link to post
Share on other sites

I got your message. I would like for you to stick with me. I would like you to do a test that will not take a lot of time. We want to insure that Microsoft Defender really works well,  This will only take a few minutes.

[  Do a QUICK scan with Microsoft Defender Antivirus ]

Just want to do a visual check in Windows Security to see (visually) that Microsoft Defender is on , and to do a Custom scan.

From the Windows Start menu, select Settings, then select Update and Security.

Next, look at the left-side menu & select Windows Security

Next, In Windows Security section: Click on the grey button Open Windows Security

Now, click on the shield Virus and threat protection

Look to see that Microsoft Defender is shown & available for use.

On the next display, look at all the options.  Look down the list and see "Check for Updates" .

You should click on that to have the system check for updates for Windows Defender.  Watch & wait for that to complete.

Please also note that the Scan options (all) can be displayed by clicking on Scan options.   Click that & select QUICK scan & have it go forward. Let me know the results.

Link to post
Share on other sites

We're glad that we were able to assist you.

The following information will help you to keep your computer and data safer as well as improve your overall privacy

  1. Recommend using a Password Manager for all websites, etc. that require a password. Never use the same password on more than one site.
    https://www.howtogeek.com/780233/best-password-manager/
  2. Make sure you're backing up your files https://forums.malwarebytes.com/topic/136226-backup-software/
  3. Keep all software up to date - PatchMyPC - https://patchmypc.com/home-updater#download     https://patchmypc.com/about-us
  4. Keep your Operating System up to date and current at all times - https://support.microsoft.com/en-us/windows/windows-update-faq-8a903416-6f45-0718-f5c7-375e92dddeb2
  5. Further tips to help protect your computer data and improve your privacy: https://forums.malwarebytes.com/topic/258363-tips-to-help-protect-from-infection/ 
  6. Please consider installing the following Content Blockers for your Web browsers if you haven't done so already. This will help improve overall security

Malwarebytes Browser Guard

uBlock Origin

 

Cybersecurity basics & protection
Everything you need to know about cybercrime
https://www.malwarebytes.com/cybersecurity

 

Further reading if you'd like to keep up on the malware threat scene: Malwarebytes Blog  https://blog.malwarebytes.com/

Hopefully, we've been able to assist you with correcting your system issues.

Thank you for using Malwarebytes. Please tell your friends and family if they too need assistance with malware removal

 

If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this topic with your request.

This applies only to the originator of this thread. Other members who need assistance please start your own topic in a new thread.

Please review the following to help you better protect your computer and privacy Tips to help protect from infection

Thank you

 

 

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.