I have a question about Symantec Endpoint Protection.  We are trying to block USB access but are running into an issue with one of our devices.  From what I can tell, things like imaging devices are not supposed to be blocked.

However, many of our stations have ID scanners that are being blocked.  When I look in the device manager the ID scanners do show up as imaging devices.  

I'm not seeing how you white list a device.  

Thanks in advance for any help.

Good evening Experts,
I have just been repairing my computer from a malicious virus. I could not use virus/malware software (MalwareBtyes, Superantispyware, and Spyhunter, on my machine because the malware/virus disabled them, so I used BitDefenders Rescue usb to kill most of the problems. I finished off the rest of the malware/viruses using my regular software (MalwareBtyes, Superantispyware, and Spyhunter). The system stable except for a couple of issues:
1.      My folder indexing does not work and I would like an expert to help me fix it. However I did download a free search program call everything and it is more robust than the Windows 10 index\search. I still need a solution for why the windows indexing\search is not letting me search inside of folders.
2.      This second issue is more critical than the previous one. For some reason when I login to any of my accounts: THANOS, IMRIC , ADMINISTRATOR, the desktop icon for the user profile defaults to (Folders)

Any help the experts can give me will be appreciated.
Regards,
Regis Hyde (BlackTHanos)

How can I remove maleware bytes trial and get another trial


windows 10

I have a client who had a scareware event with a threatening dialog that offered a number to call to "help him".  I disinfected, as I normally do, with Adwcleaner, Malwarebytes, and Hitmanpro64, which usually does a nice job eradicating the beasts.  Another has appeared that seems familiar, and so I'm concerned that I might have missed something   The dialog, which my client sent me, and I didn't myself experience, is attached.  

My question is how can I find the source of that dialog, or others of that ilk, and know that I've removed it, or not, using the above system or another.

Your insights are appreciated.
IMG_2917.mov

My question is about Virus, Malware and Phishing protection.

When I receive an Anti-Phishing alert from Bitdefender with computer name, ip, threat threat type (in this case anti-phishing), url, action (in this case anti-phishing blocked), the timestamp for last blocked url and number of attempts...WHAT should I do?  

The alert is telling me that it detetected some phishing activity on a particular site and blocked it.  Right?  Is that it?  Does any/everyone need to be notified?  I know reposes my be varied and opinionated, I'd just like to get a general consensus or industry standard/best practices.  

Thanks

Hi guys,

We've found a Key Logger on someone's PC in our U.S offices. The trojan is Trojan.Boaxxe and it has indeed spotted 'Spyware.Ursnif' all over the place. We had some fraudulent activities occur in November 2017.

I've even included the snapshot for you of the findings. When I go to the .txt files you can see, it definitely has November dates which is when the frauds occurred. However, if I go to the 'Tojan.boaxxe' location which is in the Appdata\Local\YJPack location, the date for that is 2015. I'm trying to work out when the actual keylogger was installed.

Is there anyway of finding that out? And how on earth would a keylogger have been installed? Would it usually be through a manual installation or a possible script via phishing etc?

Thank for helping
Yashy
Spyware.jpg

Any ap that’s good for this removal ?

Thanks

Hi experts,

Three days ago I tried to use my standalone home computer running Windows 7 Pro. It's anti-malware software is MBAM 3.0. I clicked on the Start button and about 20 web browsers began to load. I continued to click the red x's as fast as I could and after about two minutes of battle with them, they were gone. I clicked on the Start button again, the menu came up which could BARELY be seen like a ghost, and the browsers popped up even faster. At the same time, thirty or forty print windows emerged. These were picked off a little easier by closing them on the task bar. The web browsers were a little more difficult, taking about 2 1/2 minutes to defeat. Of course, I figured malware. I suppose I wasn't freaking out, because I have backups and a total reformat wouldn't be that troublesome, although it is work I don't have time to do.

I didn't just do a hard reboot on the computer, because I wanted to somehow get to the A/V. I was successful at that, and a MBAM scan found seven things. The first six said Trojan.generic, while the seventh said Trojan.generic/suspicious. The interesting thing is that the path was to an application that is somewhat known for being flagged; not one you would have ever heard of. Maybe it should be excluded.

But, since these were quarantined, the behavior has been normal. I can try anything, and I can't cause it to hiccup. The strange thing is, after running another MBAM scan, bringing up SAS Pro and scanning and finding nothing, I …

I have a Windows 10 PC which I have just updated to the latest Windows 10 Insider Preview Build 1709 (OS Build 17074-1002). I now find my PC is haunted with hijacked web pages, unwanted ads, videos, music, etc. I never know where I am going to be misdirected and some sites I cannot access at all without being diverted. Ironically one site I cannot access is Experts Exchange without my PC going off in some adventure of its own.
Website-Hijacked.docxFailed-System-Restore.docx
I have done antivirus scans using Windows Defender and AVG Internet Security Suite. Defender did find some viruses which it dealt with but my problems remain the same. Can anyone suggest a way forward?
I did try to uninstall the latest Windows 10 update but could not do that either, screenshot attached.

Hello,

I have been infected by some ransonware i don`t know.

In the attached file is the readme file with the instructions to decrypt the files. Anyone knows the ransomware and how to decrypt it?

It seems a xorist one, but the tool by kaspersky doesn`t work.

Any information will be welcomed.
README_9670338_05489.txt