-
Posts
10,852 -
Joined
Reputation
209 ExcellentAbout miekiemoes
- Birthday 07/19/1975
Contact Methods
-
MSN
notimetochat
-
Website URL
http://miekiemoes.blogspot.com https://www.malwarebytes.com
Profile Information
-
Location
Belgium
Recent Profile Visitors
60,610 profile views
-
Hi, This looks like a different generic detection by our other engine. I'll get this fixed as well :)
-
malwarebytes found this as a potential suspicious file
miekiemoes replied to Bobby1's topic in File Detections
It's the installer for DriverEasy, a program that checks for outdated drivers. This program comes often installed without user knowledge, as part of another bundled installer, as we have seen many times already, hence why most AVs detect this as a potential Unwanted program: https://www.virustotal.com/gui/file/bd27f2f5bb93a9458bb3d7b9056e376f4cb71178b284a961ee747efc42b374cf/detection Please note, this isn't malware. In your case, it's located in the D:\Users\Oldbl\AppData\Raming\Apple Computer\MobileSync\Backup\ Most probably because it was a file that was synced via another PC. -
malwarebytes found this as a potential suspicious file
miekiemoes replied to Bobby1's topic in File Detections
This file is not related with itunes or icloud at all, so you should be ok :) -
miekiemoes started following Whitelist our Software , Malware.AI Detection , malwarebytes found this as a potential suspicious file and 4 others
-
Hi, I forced a rescan on Virustotal, so it scans with recent database (as VT is always a little delayed). This isn't detected anymore now: https://www.virustotal.com/gui/file/57e11461fd3640718002ce16dbfe415714a984cd53349216a5b258aa1473ba3c?nocache=1
-
malwarebytes found this as a potential suspicious file
miekiemoes replied to Bobby1's topic in File Detections
Hi, This is a valid detection. We will adjust the name of the detection to PUP.Optional.DriverEasy. Note, this isn't malware, but a Potentially Unwanted Program. If you have willingly installed this, you can create an exclusion for it. Otherwise, you can have malwarebytes delete it. It looks like an installer file anyway, so these are safe to delete. -
Thanks for reporting. I'll get this fixed as well and make sure to prevent detection for future versions. This will be a database update, but that's usually fixed/applied within 2-3 hours.
-
PUP.Optional.IWin false positive for iwin gm dll
miekiemoes replied to valeron's topic in File Detections
Hi, This is a valid detection. We don't detect as Malware, but as PUP.Optional.IWin, which means, potentially unwanted program since this is often installed without user consent. If this is willingly installed, you can create an exclusion for this. In case you want to dispute, please see here: -
Hi, This is indeed a false positive by our additional machinelearning engine we have implemented. This will get fixed. Thanks for reporting!
-
Hi, This has been whitelisted now.
-
Hi, This is indeed a false positive by our additional machinelearning engine we have implemented. This will get fixed. Thanks for reporting!
-
Hi, We have reviewed and detection will be removed.
-
Hi, This will be reviewed and fixed if needed.
-
Hi, Thanks for reporting. This has been whitelisted now.
-
Native Instruments Synth Instrument Pack detected as malware.
miekiemoes replied to RainOnThem's topic in File Detections
We are sorry for this. Machinelearning engines are really powerful to detect a lot of malware and has helped our customers a lot as well. Unfortunately, FPs always happen as well especially when files aren't digitally signed, no clear version info instead of generic installwrapper version info or obfuscated code, so that makes it harder for engines to train on. But we keep on monitoring these to fix in time. -
My software triggers a false positive detection
miekiemoes replied to interflexo's topic in File Detections
Hi, I'm sorry your software was triggered again. I'll whitelist this so future versions won't be detected either. Edited to add, I couldn't reproduce detection locally though as this has been fixed a few days ago already (retraining on the sample). Virustotal probably didn't receive our latest database build or results are cached there.