New
#41
OK, another step down, SFC is clear.
Malwarebytes won't interfere with Avast, please run full scans of both. One at a time though.
Then Seatools.
OK, another step down, SFC is clear.
Malwarebytes won't interfere with Avast, please run full scans of both. One at a time though.
Then Seatools.
I had to leave in the middle of the full system Avast scan, but it appears to have found no threats. I'll try the malewarebytes assuming it won't interfere with Avast or vise versa as previously stated. I plan to uninstall it as soon as I'm done using it regardless.
Edit: I didn't see your latest reply. Thanks for the clarification.
Edit: I'll be using the "Threat Scan" scan type.
It's a good on demand scanner to have but it's up to you whether you keep it.
Just use this version for now,
Download Malwarebytes Anti-Malware 1.75 - FileHippo.com
I used your first link and just grabbed the malewarebytes that was first available. It's (trial) version 2.0.1.1004. It's detected 9 objects apparently during the filesystem objects scan already.
If you feel this version isn't recommended for this I can uninstall after this scan and try the version you linked specifically just now. I'm both glad that it's giving me new information, but obviously concerned. Not sure what the true nature of what it's found is yet since I'm waiting for the scan to finish and don't want to interrupt potentially.
I may hang onto this program be it this version or the other just since it's actually giving me something that Avast didn't. I assumed prematurely that I wouldn't be learning anything new.
Edit: The scan completed and the objects it found are simply listed as "potentially unwanted" or potential threats. The planned action is to quarantine. 9 are files, one is a registry key, and the last is a registry value. All files are .exe except for one .tmp. All the names under "detected item" start with "PUP.OPTIONAL". Some look like program download files for programs I have. Painttool SAI for instance is one.
Edit: Is there a way you'd like me to share more? Shall I accept the action of quarantining these potential threats?
That's alright just use the one you have. when it's done scanning post the log of what it found.
You'll find them here,
C:\ProgramData\Malwarebytes\Malwarebytes' Anti-Malware\Logs
ProgramData is a hidden folder so you'll have to unhide to get to it.
Hidden Files and Folders - Show or Hide
I'm not sure how you activated the trial, but just hang on to the software for a few days.
Here. I guess I'm just attaching the XML file.
Getting a free trial of their premium version or whatever was a box checked by default during the installation process. I almost unchecked it but decided to give the trial a try assuming at the time that I'd likely uninstall anyways. We'll see.
Actually, it appears I can't attach that file. Do I open in a browser and provide the link then?
Yes, quarantine, then you can delete them in the quarantine list.Edit: The scan completed and the objects it found are simply listed as "potentially unwanted" or potential threats. The planned action is to quarantine. 9 are files, one is a registry key, and the last is a registry value. All files are .exe except for one .tmp. All the names under "detected item" start with "PUP.OPTIONAL". Some look like program download files for programs I have. Painttool SAI for instance is one.
Edit: Is there a way you'd like me to share more? Shall I accept the action of quarantining these potential threats?
The .exe's are probably flagged because they have other offers in the install options.
I guess this might work as well. Just opened the XML in WordPad and I'll copy/paste below....
<?xml version="1.0" encoding="UTF-8" ?>
<logs>
<record severity="debug" LoggingEventType="2" datetime="2014-05-18T23:19:59.333162-07:00" source="Protection" type="Protection" username="SYSTEM" systemname="LEO-PC" last_modified_tag="96a5039b-4d91-490d-a34b-830410307869" result="Starting" subtype="Malware Protection"></record>
<record severity="debug" LoggingEventType="2" datetime="2014-05-18T23:19:59.356164-07:00" source="Protection" type="Protection" username="SYSTEM" systemname="LEO-PC" last_modified_tag="c1f6ec30-1e32-4f40-b7aa-b21a78ccdab7" result="Started" subtype="Malware Protection"></record>
<record severity="debug" LoggingEventType="2" datetime="2014-05-18T23:19:59.559175-07:00" source="Protection" type="Protection" username="SYSTEM" systemname="LEO-PC" last_modified_tag="bc8309a1-9f08-4c6f-9bea-c900b9c98c0c" result="Starting" subtype="Malicious Website Protection"></record>
<record severity="debug" LoggingEventType="2" datetime="2014-05-18T23:20:05.014487-07:00" source="Protection" type="Protection" username="SYSTEM" systemname="LEO-PC" last_modified_tag="723d65a1-889c-4114-aff6-df64225f41fe" result="Started" subtype="Malicious Website Protection"></record>
<record severity="debug" LoggingEventType="1" datetime="2014-05-18T23:20:11.515859-07:00" source="Manual" type="Update" username="SYSTEM" systemname="LEO-PC" fromVersion="2014.2.20.1" last_modified_tag="19657378-6c13-4952-ab21-7f13dbef93d0" name="Rootkit Database" toVersion="2014.3.27.1"></record>
<record severity="debug" LoggingEventType="1" datetime="2014-05-18T23:20:36.628295-07:00" source="Manual" type="Update" username="SYSTEM" systemname="LEO-PC" fromVersion="2014.3.4.9" last_modified_tag="6c94733a-1d05-43a1-b238-ed0dda466e22" name="Malware Database" toVersion="2014.5.19.2"></record>
<record severity="debug" LoggingEventType="2" datetime="2014-05-18T23:20:37.735359-07:00" source="Protection" type="Protection" username="SYSTEM" systemname="LEO-PC" last_modified_tag="bf41364b-524c-43cc-9adf-90452d552791" result="Starting" subtype="Refresh"></record>
<record severity="debug" LoggingEventType="2" datetime="2014-05-18T23:20:37.756360-07:00" source="Protection" type="Protection" username="SYSTEM" systemname="LEO-PC" last_modified_tag="04763efb-c9eb-4988-af93-f9e9692daff2" result="Stopping" subtype="Malicious Website Protection"></record>
<record severity="debug" LoggingEventType="2" datetime="2014-05-18T23:20:38.080378-07:00" source="Protection" type="Protection" username="SYSTEM" systemname="LEO-PC" last_modified_tag="08ab0c18-a941-44e7-81f1-11f8584c1666" result="Stopped" subtype="Malicious Website Protection"></record>
<record severity="debug" LoggingEventType="2" datetime="2014-05-18T23:20:47.706929-07:00" source="Protection" type="Protection" username="SYSTEM" systemname="LEO-PC" last_modified_tag="b5e81817-6496-4539-be64-1ef69ae53a3f" result="Success" subtype="Refresh"></record>
<record severity="debug" LoggingEventType="2" datetime="2014-05-18T23:20:47.801935-07:00" source="Protection" type="Protection" username="SYSTEM" systemname="LEO-PC" last_modified_tag="9f74254a-9c52-43f7-93d6-b86f3757f644" result="Starting" subtype="Malicious Website Protection"></record>
<record severity="debug" LoggingEventType="2" datetime="2014-05-18T23:20:48.249960-07:00" source="Protection" type="Protection" username="SYSTEM" systemname="LEO-PC" last_modified_tag="17ce932c-f055-491a-827b-f2b255e27ff8" result="Started" subtype="Malicious Website Protection"></record>
</logs>
Yes, I recall a couple things I've downloaded where I had to dodge around things I didn't want during the installation process that they would've dumped on me by default otherwise.
I'll quarantine the threats and remove as suggested. I'm not sure what the registry key and registry value are about.
I have no idea what that is, it's not the log I was expecting. Just quarantine or preferably delete what it found.
Next on the list is seatools. we are posting over each other and this is getting confusing.