Sunny

Member
  • Content Count

    3
  • Joined

  • Last visited

Community Reputation

0 Neutral

About Sunny

  • Rank
    New Member

Profile Information

  • Gender
    Not Telling
  • Location
    USA
  1. Thank you all for the link! I'm adding the folder to my exclusions list. but boy-oh-boy-oh-boy!!! just gotta laugh reading the advice on that MS link. Windows fw doesn't offer the advanced control (or hips) that oa does, certainly MSE on its own is anti-malware, not hips or a fw, so therefor ... drumroll... an MVP on-site suggests removing OA to remove the alerts. (why don't they digitally sign their drivers as they should so it is recognizable by all the legitimate anti-malware sw out there?!) gotta love the reply of the person who told that smart-alec MVP that his advice is similar to the manufacturer of a badly built furnace which doesn't detect when it emits carbon monoxide, who is informed by customers that since installing the new furnace, their carbon monoxide detector keeps going off, and instead of recognizing the furnace he is selling is faulty, he tells them the problem will be resolved if they remove the CO detector!
  2. hello, catprincess. thank you for your response. all my security sw is excluded already (I used "trusted" incorrectly here, should have said excluded) -- which is why I am concerned. In this case, c:\program files\microsoft security essentials is excluded. all the stuff generating alerts seems to be stored in another location C:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\ but presumably update data always has been, & till last week, I never got any alerts about MSE. Is there any reason to suspect this folder is new contains malware, since this just suddenly started causing alerts? or should I just also exclude the ms application data file?
  3. using MS Security Essentials (trusted) for some time now (months) with OA recognizing & allowing it. No issues. Friday got an alert on startup about 2 new files in located in C:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\ which I trusted. Today got alerts about these 2. What goes on? updates no longer recognized? NOT signed by MS & not what I think it is MSE updating, but some other malware? KSLDriver, 1.1.1010.0, (1.1.1010.0) C:\WINDOWS\system32\MpEngineStore\MpKsl97cd27c1.sys Hash(MD5): 5F53EDFEAD46FA7ADB78EEE9ECCE8FDF Results for "5F53EDFEAD46FA7ADB78EEE9ECCE8FDF" 1 record(s) found. File Name Vendor Product Status MpKsl2ea706cb.sys Microsoft Corporation Microsoft Malware Protection Unknown and KSLDriver, 1.1.1010.0, (1.1.1010.0) C:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{BE523401-4E78-452E-AE18-48B0106C9A81}\MpKsl7d3a383d.sys Hash(MD5): 5F53EDFEAD46FA7ADB78EEE9ECCE8FDF