-
Content Count
9,476 -
Joined
About miekiemoes
-
Rank
Forum Deity
- Birthday 07/19/1975
Contact Methods
-
MSN
notimetochat
-
Website URL
http://miekiemoes.blogspot.com
Profile Information
-
Location
Belgium
Recent Profile Visitors
43,996 profile views
-
miekiemoes started following Patched file identified as ransomeware, MachineLearning/Anomalous.100%, Presumed False Positive on Voopoo Application and and 6 others
-
Hi, Can you zip and attach the file please? Also read here about our machinelearning detection: Thanks!!
-
Presumed False Positive on Voopoo Application
miekiemoes replied to Mikael13's topic in File Detections
Hi, This is detected by our MachineLearning engine, which helps to protect even better against 0day threats. Unfortunately, as this is a heuristic engine, it's possible False Positives happen. Also see here for more explanation: https://forums.malwarebytes.com/topic/238670-machinelearninganomalous-detections-and-explanation/ Thanks for reporting these, as this helps to finetune the engine, so these won't be detected in the future anymore. Can you zip and attach the exact file that was detected? (voopoo.exe) Thanks!- 1 reply
-
- false positive?
- file detection
- (and 3 more)
-
Hi, It's only the installer though. What it installs is totally fine (if additional offers are unchecked) In other words, for Fusioncore: the installer might show additional install screens where it offers additional products, with as a result that these additional programs often end up installed as well (or changes to the browser/startpage..) if this is not unchecked during the install screens. https://blog.malwarebytes.com/detections/adware-fusioncore/
-
Hi, This appears to be a valid detection and not an FP. It's a PUP called Fusioncore. Detection will be adjusted to name this properly to PUP instead. Thanks for reporting!
-
Hi, Thanks for reporting. We will review and remove detection if needed.
-
Hi, While this isn't malicious by itself, it's a patchtool which is always a risk as it might lower the default programs security settings. So always be careful with these.
-
Apparent False Positive for ImgBurn v2.5.8.0 Installer
miekiemoes replied to cgmc's topic in File Detections
Hi, You can create an exclusion for it: https://support.malwarebytes.com/docs/DOC-1130 -
Good to hear - thanks for the feedback!
-
Thanks. I see this was fixed yesterday already on this file. Do you still have a detection on it? If so, Quit malwarebytes from the systemtray, Then navigate to the following folder: C:\ProgramData\Malwarebytes\MBAMService In there, locate the file HubbleCache and delete it. Restart Malwarebytes again. A new Hubblecache will then be created again, so it will properly pick it up and remember to not detect this anymore.
-
Hi, Since you're having issues to zip and attach the exe file, would you mind to upload the exe file (SPFLITE2.EXE) to Virustotal instead? https://virustotalcloud.appspot.com/nui/index.html#/home/upload That way, we can collect it from there. Please post the link of the virustotal results here afterwards. Thanks!
-
Video game titled "Hades" marked as ransomeware.
miekiemoes replied to Tiergan's topic in File Detections
Thanks. It was the 64bits version that was whitelisted before. I've now whitelisted the 32bits version. This should no longer be detected anymore. -
Video game titled "Hades" marked as ransomeware.
miekiemoes replied to Tiergan's topic in File Detections
Hi, Please see above how to add an exclusion. Additionally, Please zip and attach the exact file that was blocked, as it might be different than above one. Thanks! -
Malware bytes false positives my software
miekiemoes replied to JohnSp888's topic in File Detections
Hi, This is detected by our MachineLearning engine, which helps to protect even better against 0day threats. Unfortunately, as this is a heuristic engine, it's possible False Positives happen. Also see here for more explanation: https://forums.malwarebytes.com/topic/238670-machinelearninganomalous-detections-and-explanation/ Thanks for reporting these, as this helps to finetune the engine, so these won't be detected in the future anymore. This should be fixed by now. Please give it some time (max 10 minutes) in order to have it populate, so detection won't happen anymore. -
Hi, This will be reviewed and detection removed if necessary. Thanks for reporting!
-
Hi, This is behavior detection, but has been fixed in a meanwhile. Thanks for reporting!