dragonetti
-
Posts
5 -
Joined
-
Last visited
Content Type
Events
Profiles
Forums
Posts posted by dragonetti
-
-
I use tool called "Shadow Defender" to virtualize my whole operating-sytem drive, so when I reboot everything regarding on the operating system drive (partition) gets restored back to the point where I initialised "Shadow Defender" (Shadow Mode).
I have the option to commit a file or folder so it gets written to the actual operating system so it does not get removed after a reboot. I also have the option to exclude registry keys from removal after reboot (if those excluded keys get changed).
My questions:
1)
Is it enough to commit the following folders after an Malwarebytes update?:
C:\Program Files (x86)\Malwarebytes' Anti-Malware
And are there certain registry keys that I have to put in the exclusion list?:
HKEY_CURRENT_USER\Software\Malwarebytes' Anti-Malware
2)
Although I should ask this in a Micsrosoft based forum:
Can the principle be applied for "Microsoft Security Essentials" ?
-
I updated the today to today's database and no warnings were triggered.
Maybe I was running an old database (I did a full scan on the latest database, no warnings).
It should be fine now I guess.
Thanks!
-
"Edit"
Sorry I can't seem to edit my post, so the following sentence should be read a bit differently
The file you will download: "Portable-VirtualBox_v4.1.14-Starter_v6.4.9-Win_all.exe" does NOT contain trigger a false positive.
-
First off, this is my first post so I may have missed something, if that may be the case my apologies for that.
I tried the following steps on the file but I accidentally pressed "Ignore" and now I can't get the malware warning back.
1. Click the Start Menu.
2. Click Run.
3. Type in "mbam.exe /developer", without the quotes.
4. Run the same type of scan you did before and save the logfile and post it.
It's all about "Portable Virtualbox", the .exe which starts the program and the .exe which starts the portable virtualbox installer triggers a (false?) malware warning.
You can download the installer here: http://www.vbox.me/
This is the direct link: http://files.vbox.me/files/Portable-VirtualBox_v4.1.14-Starter_v6.4.9-Win_all.exe
The file you will download: "Portable-VirtualBox_v4.1.14-Starter_v6.4.9-Win_all.exe" does NOT contain a false positive. However if you run the the exe: "Portable-VirtualBox_v4.1.14-Starter_v6.4.9-Win_all.exe" you will end up with a folder where one file triggers the (false?) warning (marked red):
\Portable-VirtualBox\data\
\Portable-VirtualBox\source\
\Portable-VirtualBox\LiesMich.txt
\Portable-VirtualBox\Portable-VirtualBox.exe
\Portable-VirtualBox\ReadMe.txt
AFTER you install portable virtualbox (by running the red marked file), you end up with a directory above but with added files and folders. The RED marked file will still be there but AFTER installation it will not launch the installer but portable virtualbox itself.
Thank you
commit updates in a virtualized system (shadow defender)
in Malwarebytes for Windows Support Forum
Posted
@Ron
Thank you very much!