Anyone know a good guide on how to read Malwarebytes logs or... something? (programming.dev)

submitted 9 months ago by TempestTiger@programming.dev to c/no_stupid_questions@programming.dev

1 comments fedilink hide all child comments

Know this isn't technically Dev, sorry in advance.

I keep getting outbound malware alerts when I browse global. Today it's lemmy.today, last week it was another instance etc.

I'm interested in learning more about sec, and while I've looked at the JSON logs and tried googling "What does threat id -1 mean" etc., I can't seem to find anything.

I'm kind of just curious about what, specifically, the threat was and what it was trying to do - but the logs seem pretty blank. As mentioned above, the id is -1 and the name is blank.

Anyone know a good guide, or something, to read up or... better questions to ask?

Thank you for your time and hav a wonderful day. :)

top 1 comments

sorted by: hot top controversial new old

[-] jecht360@lemmy.world 4 points 9 months ago

This is for the Malwarebytes browser plugin, correct? I'm assuming that it is also preventing you from loading the page? Many of those browser plugins simply have a list of "bad sites" or cookies that when seen while browsing will cause the plugin to avoid loading it. When browsing global on Lemmy, it includes the original instance it was on. I would suspect that the instances you're getting this log entry for are flagged as "bad" sites for some reason.

this post was submitted on 11 Sep 2023

9 points (100.0% liked)

No Stupid Questions (Developer Edition)

896 readers

1 users here now

This is a place where you can ask any programming / topic related to the instance questions you want!

For a more general version of this concept check out !nostupidquestions@lemmy.world

Icon base by Lorc under CC BY 3.0 with modifications to add a gradient

founded 1 year ago

MODERATORS

LinearArray@programming.dev