Recent Posts

Pages: 1 ... 8 9 [10]
91
UCheck / Re: Latest Version of UCheck and Speccy FP
« Last post by Curson on March 05, 2019, 09:16:45 pm »
Hi Phil,

You are very welcome.
This is now fixed.

Regards.
92
Malware removal help / Re: how to remove a proxy that installed itself
« Last post by cyberson on March 05, 2019, 06:02:16 pm »
This is the blog that led me here. https://www.bleepingcomputer.com/forums/t/679806/help-cannot-get-rid-of-proxy-virus/
My case is not exactly the same but I followed the steps I could with no resolution.
93
RogueKiller / Re: ===> False Positives <===
« Last post by darktwillight on March 05, 2019, 11:53:45 am »
Hello,
Rougekiller announces the Firefox homepage as PUP https://www.startpage.com/

 Startpage.com is an internet search engine
and https://duckduckgo.com/

Set the entry in Firefox Startpage as start page
I made it myself.

https://www.virustotal.com/#/url/159eb4fb03182f38c25487207b9fb89ad7370f4b1fbf05821f8851c64233123b/detection
Quote
browser.startup.homepage Threat: PUM.HomePage Status: Found
C:\Users\dark\AppData\Roaming\Mozilla\Firefox\Profiles\14k8v168.default-1551444125829\prefs.js
Type: Firefox Config
Dates: https://wvwv.startpage.com/

name
Status Recognition
Firefox Config
Browser.startup.homepage Found PUM.HomePage (Potential Malware} C:\Users\dark\AppData\Roaming\Mozilla\Firefox\Profiles\14k8v168.default-1551444125829\prefs.js https://www.startpage.com/ 0/0



With best Regards
94
Malware removal help / Re: Rapport de roguekiller
« Last post by El Magnifico on March 04, 2019, 03:15:45 pm »
Hello gengiskhan

Votre probléme est il toujours d' actualité ?

 ;)
95
Malware removal help / how to remove a proxy that installed itself
« Last post by cyberson on March 04, 2019, 04:52:28 am »
I have a windows 10 pro computer that when I try to install logmein says a proxy server is installed and fails.
Kaspersky also complains that the certificate for office 365 is not valid.
I have tried to troubleshoot this with Kaspersky who were no help and tried to just accept all certificates.
I have signed up for a TrendMicro trial and it finds nothing.
I have purchased a RogueKiller tech license and it finds nothing.
I have never used a proxy server and so I am not familiar with how to remove one.
Especially with windows 10.
I have read a number of posts on the web, but no clear direction and many with no answers.
Any help would be appreciated very much.
Thank you, cyberson
96
RogueKiller / Re: ===> False Positives <===
« Last post by bentaa on March 03, 2019, 01:50:03 am »
Hello, are these false positives?

RogueKiller Anti-Malware V13.1.6.0 (x64) [Feb 25 2019] (Free) by Adlice Software
mail : https://adlice.com/contact/
Website : https://adlice.com/download/roguekiller/
Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits
Started in : Normal mode
User : tbhben [Administrator]
Started from : E:\Program Files\RogueKiller\RogueKiller64.exe
Signatures : 20190204_072850, Driver : Loaded
Mode : Standard Scan, Scan -- Date : 2019/03/02 18:27:21 (Duration : 00:26:59)

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Processes ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Process Modules ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Services ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Tasks ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Registry ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ WMI ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Hosts File ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Files ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Web browsers ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤
>>>>>> Firefox Addon
  [PUP.Gen2 (Potentially Malicious)] {91c612bf-2a7a-48b8-8c8c-6de28589b7a1} (E:\Program Files (x86)\Splashtop\Splashtop Connect for Firefox\{91c612bf-2a7a-48b8-8c8c-6de28589b7a1}) -- {91c612bf-2a7a-48b8-8c8c-6de28589b7a1} -> Found
  [PUP.Gen2 (Potentially Malicious)] {91c612bf-2a7a-48b8-8c8c-6de28589b7a0} (E:\Program Files (x86)\Splashtop\Splashtop Connect for Firefox\{91c612bf-2a7a-48b8-8c8c-6de28589b7a0}) -- {91c612bf-2a7a-48b8-8c8c-6de28589b7a0} -> Found
  [PUP.Gen2 (Potentially Malicious)] {d9284e50-81fc-11da-a72b-0800200c9a66} (E:\Program Files (x86)\Splashtop\Splashtop Connect for Firefox\{d9284e50-81fc-11da-a72b-0800200c9a66}) -- {d9284e50-81fc-11da-a72b-0800200c9a66} -> Found


Thanks in advance!
97
UCheck / Re: Latest Version of UCheck and Speccy FP
« Last post by garioch7 on March 02, 2019, 07:44:11 pm »
Curzon:

Thank you for your prompt reply.

Take care.

Regards,
-Phil
98
UCheck / Re: Latest Version of UCheck and Speccy FP
« Last post by Curson on March 02, 2019, 04:42:41 pm »
Hi Phil,

Thanks for your feedback.
This is an issue on our side. We will fix it as soon as possible.

Have a great weekend, too.
Regards.
99
UCheck / Latest Version of UCheck and Speccy FP
« Last post by garioch7 on March 01, 2019, 08:44:51 pm »
My UCheck Premium updated its version to the latest version this morning, and I then ran a scan.  It reported Speccy as being out of date (1.32 -> 1.32.740).  I did the update to Speccy and rebooted and carried on for several hours doing my weekly backup system images and system scans.

When I scanned with RogueKiller Premium later in the afternoon, it told me that I had one "outdated software" on my computer and to download UCheck Free.  I ran my UCheck Premium again and once again it detected that Speccy was out of date, but I had the current version installed.

Submitted for your information.  Have a great weekend.

Regards,
-Phil

100
General Discussion / Re: What is MalPE??
« Last post by Curson on February 27, 2019, 11:20:26 pm »
Hi Azurien,

You need to restore them, then zip them from the Explorer, not RogueKiller.
MalPE uses PE (Portable Excecutable) characteristics to define a file as malicious. By manually analysing them, we will be able to determine what triggered the false detection and improve the detection engine.

Regards.
Pages: 1 ... 8 9 [10]