Malwarebytes keeps identifying a file as a PUP. The file gets quaranteened but keeps coming back. Is this file dangerous?
This is the file. C:\Users\Steve\AppData\Roaming\Mozilla\Firefox\Profiles\velmz6o5.default-1428601405204\searchplugins\Connect Search.xml
Всички отговори (4)
You should contact Malwarebytes.
First, check for updates for Malwarebytes.
Note that current Firefox releases no longer use the searchplugins folder to store custom search engines, but store all search engine data in the search.json.mozlz4 file. You can delete this file because it could be leftover from an older Firefox version. You can check the file date.
You can use this button to go to the current Firefox profile folder:
- Help -> Troubleshooting Information -> Profile Directory:
Windows: Show Folder; Linux: Open Directory; Mac: Show in Finder - http://kb.mozillazine.org/Profile_folder_-_Firefox
The file I identified has a current date and keeps coming back even after Malwarebytes says it has quaranteened it.
Sounds like you are saying that the file is harmless and its ok to instruct Malwarebytes to ignore it. Is that correct?
The file is probably harmless, but never the less shouldn't be there.
Do a malware check with several malware scanning programs on the Windows computer.
Please scan with all programs because each program detects different malware. All these programs have free versions.
Make sure you update each program to get the latest version of their databases before doing a scan.
- Malwarebytes' Anti-Malware:
http://www.malwarebytes.org/mbam.php - AdwCleaner:
http://www.bleepingcomputer.com/download/adwcleaner/
http://www.softpedia.com/get/Antivirus/Removal-Tools/AdwCleaner.shtml - SuperAntispyware:
http://www.superantispyware.com/ - Microsoft Safety Scanner:
http://www.microsoft.com/security/scanner/en-us/default.aspx - Windows Defender:
http://windows.microsoft.com/en-us/windows/using-defender - Spybot Search & Destroy:
http://www.safer-networking.org/en/index.html - Kasperky Free Security Scan:
http://www.kaspersky.com/security-scan
You can also do a check for a rootkit infection with TDSSKiller.
- Anti-rootkit utility TDSSKiller:
http://support.kaspersky.com/5350?el=88446
See also:
- "Spyware on Windows": http://kb.mozillazine.org/Popups_not_blocked