Solved

mcystil1.exe threat?

  • 14 March 2019
  • 7 replies
  • 28 views

Userlevel 1
Badge +3
hi..first comment and reply so please re categorise if necessary, webroot picked up a threat mcystil1.exe that came in on a youtube url of a movie link, while other malware catchers on my system didn't. Props to you guys, good work and do recommend to others. 🙂
icon

Best answer by TripleHelix 14 March 2019, 23:10

View original

7 replies

Userlevel 7
Badge +63
hi..first comment and reply so please re categorise if necessary, webroot picked up a threat mcystil1.exe that came in on a youtube url of a movie link, while other malware catchers on my system didn't. Props to you guys, good work and do recommend to others. 🙂
Hello @light_hse and Welcome to the Webroot Community!

That's great to hear! Can you do me a favour a Save a Scan Log and post the lines that show the infection near the bottom of the Log please? Here on how to Save a Scan Log: https://docs.webroot.com/us/en/home/wsa_pc_userguide/wsa_pc_userguide.htm#UsingReportsAndViewers/SavingScanLogs.htm%3FTocPath%3DUsing%2520Reports%2520and%2520Viewers%7C_____1

Thanks,
Userlevel 1
Badge +3
Hi Triple Helix, it was about a week ago, so current scan log doesn't show it, but the threat report shows... Starting Routine> Removing C:\Users\user\AppData\Local\Temp\mcystil1.exe...#(PX5: 171E639160A548C9FFD44ED25DBCF0013B5A6C0A - MD5: 0757DBEDAFE1BBFB19E4A39E585FA277 - UniqueID: 0406C040)...
Deleting File> C:\Users\user\AppData\Local\Temp\mcystil1.exe
Let me know if theres anything else i can send?
Thanks,
Userlevel 7
Badge +63
Hi Triple Helix, it was about a week ago, so current scan log doesn't show it, but the threat report shows... Starting Routine> Removing C:\Users\user\AppData\Local\Temp\mcystil1.exe...#(PX5: 171E639160A548C9FFD44ED25DBCF0013B5A6C0A - MD5: 0757DBEDAFE1BBFB19E4A39E585FA277 - UniqueID: 0406C040)...
Deleting File> C:\Users\user\AppData\Local\Temp\mcystil1.exe
Let me know if theres anything else i can send?
Thanks,

Awesome and Thanks! Nothing shows on VirusTotal but the Webroot Cloud database did! http://snup.webrootcloudav.com/SkyStoreFileUploader/upload.aspx

Userlevel 7
Badge +63
Nothing from Jotti Scan either: https://virusscan.jotti.org/

Userlevel 7
Badge +48
Moved existing replies to this forum on behalf of a new community member.
Userlevel 7
Badge +63
Thanks Drew!
Userlevel 7
Badge +48
You bet!

Reply