Brak
Members-
Posts
5 -
Joined
-
Last visited
Reputation
0 Neutral-
False Positives: Infragistics files and registry keys
Brak replied to Brak's topic in File Detections
Yes, they're not detected anymore with version 2233. Thanks! -
False Positives: Infragistics files and registry keys
Brak replied to Brak's topic in File Detections
Great, I'll watch for it. Thanks! -
False Positives: Infragistics files and registry keys
Brak replied to Brak's topic in File Detections
Thanks for the fast reply! It still detects some of them with version 2224 - 6 files and 6 registry keys. The ones that are left have names that start with Infragistics2. New log below: Malwarebytes' Anti-Malware 1.37 Database version: 2224 Windows 5.1.2600 Service Pack 3 6/3/2009 1:13:52 PM mbam-log-2009-06-03 (13-13-49).txt Scan type: Quick Scan Objects scanned: 108616 Time elapsed: 1 minute(s), 15 second(s) Memory Processes Infected: 0 Memory Modules Infected: 0 Registry Keys Infected: 0 Registry Values Infected: 6 Registry Data Items Infected: 0 Folders Infected: 0 Files Infected: 6 Memory Processes Infected: (No malicious items detected) Memory Modules Infected: (No malicious items detected) Registry Keys Infected: (No malicious items detected) Registry Values Infected: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs\c:\WINDOWS\system32\Infragistics2.Shared.v5.3.dll (Trojan.FakeAlert) -> No action taken. [3857535134303627615642473748565261849084857078201961323232323232323232323232323 23211152015697777] HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs\c:\WINDOWS\system32\Infragistics2.Win.UltraWinEditors.v5.3.dll (Trojan.FakeAlert) -> No action taken. [3857535134303627615642473748565261849084857078201961323232323232323232323232323 23211152015697777] HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs\c:\WINDOWS\system32\Infragistics2.Win.UltraWinGrid.v5.3.dll (Trojan.FakeAlert) -> No action taken. [3857535134303627615642473748565261849084857078201961323232323232323232323232323 23211152015697777] HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs\c:\WINDOWS\system32\Infragistics2.Win.UltraWinMaskedEdit.v5.3.dll (Trojan.FakeAlert) -> No action taken. [3857535134303627615642473748565261849084857078201961323232323232323232323232323 23211152015697777] HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs\c:\WINDOWS\system32\Infragistics2.Win.UltraWinTabControl.v5.3.dll (Trojan.FakeAlert) -> No action taken. [3857535134303627615642473748565261849084857078201961323232323232323232323232323 23211152015697777] HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs\c:\WINDOWS\system32\Infragistics2.Win.v5.3.dll (Trojan.FakeAlert) -> No action taken. [3857535134303627615642473748565261849084857078201961323232323232323232323232323 23211152015697777] Registry Data Items Infected: (No malicious items detected) Folders Infected: (No malicious items detected) Files Infected: c:\WINDOWS\system32\Infragistics2.Shared.v5.3.dll (Trojan.FakeAlert) -> No action taken. [3857535134303627615642473748565261849084857078201961323232323232323232323232323 23211152015697777] c:\WINDOWS\system32\Infragistics2.Win.UltraWinEditors.v5.3.dll (Trojan.FakeAlert) -> No action taken. [3857535134303627615642473748565261849084857078201961323232323232323232323232323 23211152015697777] c:\WINDOWS\system32\Infragistics2.Win.UltraWinGrid.v5.3.dll (Trojan.FakeAlert) -> No action taken. [3857535134303627615642473748565261849084857078201961323232323232323232323232323 23211152015697777] c:\WINDOWS\system32\Infragistics2.Win.UltraWinMaskedEdit.v5.3.dll (Trojan.FakeAlert) -> No action taken. [3857535134303627615642473748565261849084857078201961323232323232323232323232323 23211152015697777] c:\WINDOWS\system32\Infragistics2.Win.UltraWinTabControl.v5.3.dll (Trojan.FakeAlert) -> No action taken. [3857535134303627615642473748565261849084857078201961323232323232323232323232323 23211152015697777] c:\WINDOWS\system32\Infragistics2.Win.v5.3.dll (Trojan.FakeAlert) -> No action taken. [3857535134303627615642473748565261849084857078201961323232323232323232323232323 23211152015697777] -
False Positives: Infragistics files and registry keys
Brak replied to Brak's topic in File Detections
Oops, I included the regular scan instead of the /developer scan. Malwarebytes' Anti-Malware 1.37 Database version: 2223 Windows 5.1.2600 Service Pack 3 6/3/2009 10:45:11 AM mbam-log-2009-06-03 (10-45-09).txt Scan type: Quick Scan Objects scanned: 108582 Time elapsed: 1 minute(s), 18 second(s) Memory Processes Infected: 0 Memory Modules Infected: 0 Registry Keys Infected: 0 Registry Values Infected: 17 Registry Data Items Infected: 0 Folders Infected: 0 Files Infected: 17 Memory Processes Infected: (No malicious items detected) Memory Modules Infected: (No malicious items detected) Registry Keys Infected: (No malicious items detected) Registry Values Infected: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs\c:\WINDOWS\system32\Infragistics.Shared.v4.3.dll (Trojan.FakeAlert) -> No action taken. [3857535134303627615642473748565261849084857078201961323232323232323232323232323 23211152015697777] HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs\c:\WINDOWS\system32\Infragistics.Win.Misc.v4.3.dll (Trojan.FakeAlert) -> No action taken. [3857535134303627615642473748565261849084857078201961323232323232323232323232323 23211152015697777] HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs\c:\WINDOWS\system32\Infragistics.Win.UltraWinDock.v4.3.dll (Trojan.FakeAlert) -> No action taken. [3857535134303627615642473748565261849084857078201961323232323232323232323232323 23211152015697777] HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs\c:\WINDOWS\system32\Infragistics.Win.UltraWinEditors.v4.3.dll (Trojan.FakeAlert) -> No action taken. [3857535134303627615642473748565261849084857078201961323232323232323232323232323 23211152015697777] HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs\c:\WINDOWS\system32\Infragistics.Win.UltraWinExplorerBar.v4.3.dll (Trojan.FakeAlert) -> No action taken. [3857535134303627615642473748565261849084857078201961323232323232323232323232323 23211152015697777] HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs\c:\WINDOWS\system32\Infragistics.Win.UltraWinGrid.v4.3.dll (Trojan.FakeAlert) -> No action taken. [3857535134303627615642473748565261849084857078201961323232323232323232323232323 23211152015697777] HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs\c:\WINDOWS\system32\Infragistics.Win.UltraWinMaskedEdit.v4.3.dll (Trojan.FakeAlert) -> No action taken. [3857535134303627615642473748565261849084857078201961323232323232323232323232323 23211152015697777] HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs\c:\WINDOWS\system32\Infragistics.Win.UltraWinStatusBar.v4.3.dll (Trojan.FakeAlert) -> No action taken. [3857535134303627615642473748565261849084857078201961323232323232323232323232323 23211152015697777] HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs\c:\WINDOWS\system32\Infragistics.Win.UltraWinTabControl.v4.3.dll (Trojan.FakeAlert) -> No action taken. [3857535134303627615642473748565261849084857078201961323232323232323232323232323 23211152015697777] HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs\c:\WINDOWS\system32\Infragistics.Win.UltraWinTree.v4.3.dll (Trojan.FakeAlert) -> No action taken. [3857535134303627615642473748565261849084857078201961323232323232323232323232323 23211152015697777] HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs\c:\WINDOWS\system32\Infragistics.Win.v4.3.dll (Trojan.FakeAlert) -> No action taken. [3857535134303627615642473748565261849084857078201961323232323232323232323232323 23211152015697777] HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs\c:\WINDOWS\system32\Infragistics2.Shared.v5.3.dll (Trojan.FakeAlert) -> No action taken. [3857535134303627615642473748565261849084857078201961323232323232323232323232323 23211152015697777] HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs\c:\WINDOWS\system32\Infragistics2.Win.UltraWinEditors.v5.3.dll (Trojan.FakeAlert) -> No action taken. [3857535134303627615642473748565261849084857078201961323232323232323232323232323 23211152015697777] HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs\c:\WINDOWS\system32\Infragistics2.Win.UltraWinGrid.v5.3.dll (Trojan.FakeAlert) -> No action taken. [3857535134303627615642473748565261849084857078201961323232323232323232323232323 23211152015697777] HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs\c:\WINDOWS\system32\Infragistics2.Win.UltraWinMaskedEdit.v5.3.dll (Trojan.FakeAlert) -> No action taken. [3857535134303627615642473748565261849084857078201961323232323232323232323232323 23211152015697777] HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs\c:\WINDOWS\system32\Infragistics2.Win.UltraWinTabControl.v5.3.dll (Trojan.FakeAlert) -> No action taken. [3857535134303627615642473748565261849084857078201961323232323232323232323232323 23211152015697777] HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs\c:\WINDOWS\system32\Infragistics2.Win.v5.3.dll (Trojan.FakeAlert) -> No action taken. [3857535134303627615642473748565261849084857078201961323232323232323232323232323 23211152015697777] Registry Data Items Infected: (No malicious items detected) Folders Infected: (No malicious items detected) Files Infected: c:\WINDOWS\system32\Infragistics.Shared.v4.3.dll (Trojan.FakeAlert) -> No action taken. [3857535134303627615642473748565261849084857078201961323232323232323232323232323 23211152015697777] c:\WINDOWS\system32\Infragistics.Win.Misc.v4.3.dll (Trojan.FakeAlert) -> No action taken. [3857535134303627615642473748565261849084857078201961323232323232323232323232323 23211152015697777] c:\WINDOWS\system32\Infragistics.Win.UltraWinDock.v4.3.dll (Trojan.FakeAlert) -> No action taken. [3857535134303627615642473748565261849084857078201961323232323232323232323232323 23211152015697777] c:\WINDOWS\system32\Infragistics.Win.UltraWinEditors.v4.3.dll (Trojan.FakeAlert) -> No action taken. [3857535134303627615642473748565261849084857078201961323232323232323232323232323 23211152015697777] c:\WINDOWS\system32\Infragistics.Win.UltraWinExplorerBar.v4.3.dll (Trojan.FakeAlert) -> No action taken. [3857535134303627615642473748565261849084857078201961323232323232323232323232323 23211152015697777] c:\WINDOWS\system32\Infragistics.Win.UltraWinGrid.v4.3.dll (Trojan.FakeAlert) -> No action taken. [3857535134303627615642473748565261849084857078201961323232323232323232323232323 23211152015697777] c:\WINDOWS\system32\Infragistics.Win.UltraWinMaskedEdit.v4.3.dll (Trojan.FakeAlert) -> No action taken. [3857535134303627615642473748565261849084857078201961323232323232323232323232323 23211152015697777] c:\WINDOWS\system32\Infragistics.Win.UltraWinStatusBar.v4.3.dll (Trojan.FakeAlert) -> No action taken. [3857535134303627615642473748565261849084857078201961323232323232323232323232323 23211152015697777] c:\WINDOWS\system32\Infragistics.Win.UltraWinTabControl.v4.3.dll (Trojan.FakeAlert) -> No action taken. [3857535134303627615642473748565261849084857078201961323232323232323232323232323 23211152015697777] c:\WINDOWS\system32\Infragistics.Win.UltraWinTree.v4.3.dll (Trojan.FakeAlert) -> No action taken. [3857535134303627615642473748565261849084857078201961323232323232323232323232323 23211152015697777] c:\WINDOWS\system32\Infragistics.Win.v4.3.dll (Trojan.FakeAlert) -> No action taken. [3857535134303627615642473748565261849084857078201961323232323232323232323232323 23211152015697777] c:\WINDOWS\system32\Infragistics2.Shared.v5.3.dll (Trojan.FakeAlert) -> No action taken. [3857535134303627615642473748565261849084857078201961323232323232323232323232323 23211152015697777] c:\WINDOWS\system32\Infragistics2.Win.UltraWinEditors.v5.3.dll (Trojan.FakeAlert) -> No action taken. [3857535134303627615642473748565261849084857078201961323232323232323232323232323 23211152015697777] c:\WINDOWS\system32\Infragistics2.Win.UltraWinGrid.v5.3.dll (Trojan.FakeAlert) -> No action taken. [3857535134303627615642473748565261849084857078201961323232323232323232323232323 23211152015697777] c:\WINDOWS\system32\Infragistics2.Win.UltraWinMaskedEdit.v5.3.dll (Trojan.FakeAlert) -> No action taken. [3857535134303627615642473748565261849084857078201961323232323232323232323232323 23211152015697777] c:\WINDOWS\system32\Infragistics2.Win.UltraWinTabControl.v5.3.dll (Trojan.FakeAlert) -> No action taken. [3857535134303627615642473748565261849084857078201961323232323232323232323232323 23211152015697777] c:\WINDOWS\system32\Infragistics2.Win.v5.3.dll (Trojan.FakeAlert) -> No action taken. [3857535134303627615642473748565261849084857078201961323232323232323232323232323 23211152015697777] -
After running MalwareBytes on two machines, software that our office uses stopped working. It is records management software (RMS) by Tyler Technologies. MalwareBytes detects DLL files in System32 whose names start with Infragistics as Trojan.FakeAlert, and their corresponding registry keys. The log is below. Let me know if you need more information. Thanks! Malwarebytes' Anti-Malware 1.37 Database version: 2223 Windows 5.1.2600 Service Pack 3 6/3/2009 10:28:25 AM mbam-log-2009-06-03 (10-28-22).txt Scan type: Quick Scan Objects scanned: 108592 Time elapsed: 6 minute(s), 15 second(s) Memory Processes Infected: 0 Memory Modules Infected: 0 Registry Keys Infected: 0 Registry Values Infected: 17 Registry Data Items Infected: 0 Folders Infected: 0 Files Infected: 17 Memory Processes Infected: (No malicious items detected) Memory Modules Infected: (No malicious items detected) Registry Keys Infected: (No malicious items detected) Registry Values Infected: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs\c:\WINDOWS\system32\Infragistics.Shared.v4.3.dll (Trojan.FakeAlert) -> No action taken. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs\c:\WINDOWS\system32\Infragistics.Win.Misc.v4.3.dll (Trojan.FakeAlert) -> No action taken. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs\c:\WINDOWS\system32\Infragistics.Win.UltraWinDock.v4.3.dll (Trojan.FakeAlert) -> No action taken. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs\c:\WINDOWS\system32\Infragistics.Win.UltraWinEditors.v4.3.dll (Trojan.FakeAlert) -> No action taken. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs\c:\WINDOWS\system32\Infragistics.Win.UltraWinExplorerBar.v4.3.dll (Trojan.FakeAlert) -> No action taken. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs\c:\WINDOWS\system32\Infragistics.Win.UltraWinGrid.v4.3.dll (Trojan.FakeAlert) -> No action taken. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs\c:\WINDOWS\system32\Infragistics.Win.UltraWinMaskedEdit.v4.3.dll (Trojan.FakeAlert) -> No action taken. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs\c:\WINDOWS\system32\Infragistics.Win.UltraWinStatusBar.v4.3.dll (Trojan.FakeAlert) -> No action taken. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs\c:\WINDOWS\system32\Infragistics.Win.UltraWinTabControl.v4.3.dll (Trojan.FakeAlert) -> No action taken. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs\c:\WINDOWS\system32\Infragistics.Win.UltraWinTree.v4.3.dll (Trojan.FakeAlert) -> No action taken. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs\c:\WINDOWS\system32\Infragistics.Win.v4.3.dll (Trojan.FakeAlert) -> No action taken. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs\c:\WINDOWS\system32\Infragistics2.Shared.v5.3.dll (Trojan.FakeAlert) -> No action taken. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs\c:\WINDOWS\system32\Infragistics2.Win.UltraWinEditors.v5.3.dll (Trojan.FakeAlert) -> No action taken. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs\c:\WINDOWS\system32\Infragistics2.Win.UltraWinGrid.v5.3.dll (Trojan.FakeAlert) -> No action taken. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs\c:\WINDOWS\system32\Infragistics2.Win.UltraWinMaskedEdit.v5.3.dll (Trojan.FakeAlert) -> No action taken. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs\c:\WINDOWS\system32\Infragistics2.Win.UltraWinTabControl.v5.3.dll (Trojan.FakeAlert) -> No action taken. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs\c:\WINDOWS\system32\Infragistics2.Win.v5.3.dll (Trojan.FakeAlert) -> No action taken. Registry Data Items Infected: (No malicious items detected) Folders Infected: (No malicious items detected) Files Infected: c:\WINDOWS\system32\Infragistics.Shared.v4.3.dll (Trojan.FakeAlert) -> No action taken. c:\WINDOWS\system32\Infragistics.Win.Misc.v4.3.dll (Trojan.FakeAlert) -> No action taken. c:\WINDOWS\system32\Infragistics.Win.UltraWinDock.v4.3.dll (Trojan.FakeAlert) -> No action taken. c:\WINDOWS\system32\Infragistics.Win.UltraWinEditors.v4.3.dll (Trojan.FakeAlert) -> No action taken. c:\WINDOWS\system32\Infragistics.Win.UltraWinExplorerBar.v4.3.dll (Trojan.FakeAlert) -> No action taken. c:\WINDOWS\system32\Infragistics.Win.UltraWinGrid.v4.3.dll (Trojan.FakeAlert) -> No action taken. c:\WINDOWS\system32\Infragistics.Win.UltraWinMaskedEdit.v4.3.dll (Trojan.FakeAlert) -> No action taken. c:\WINDOWS\system32\Infragistics.Win.UltraWinStatusBar.v4.3.dll (Trojan.FakeAlert) -> No action taken. c:\WINDOWS\system32\Infragistics.Win.UltraWinTabControl.v4.3.dll (Trojan.FakeAlert) -> No action taken. c:\WINDOWS\system32\Infragistics.Win.UltraWinTree.v4.3.dll (Trojan.FakeAlert) -> No action taken. c:\WINDOWS\system32\Infragistics.Win.v4.3.dll (Trojan.FakeAlert) -> No action taken. c:\WINDOWS\system32\Infragistics2.Shared.v5.3.dll (Trojan.FakeAlert) -> No action taken. c:\WINDOWS\system32\Infragistics2.Win.UltraWinEditors.v5.3.dll (Trojan.FakeAlert) -> No action taken. c:\WINDOWS\system32\Infragistics2.Win.UltraWinGrid.v5.3.dll (Trojan.FakeAlert) -> No action taken. c:\WINDOWS\system32\Infragistics2.Win.UltraWinMaskedEdit.v5.3.dll (Trojan.FakeAlert) -> No action taken. c:\WINDOWS\system32\Infragistics2.Win.UltraWinTabControl.v5.3.dll (Trojan.FakeAlert) -> No action taken. c:\WINDOWS\system32\Infragistics2.Win.v5.3.dll (Trojan.FakeAlert) -> No action taken.