Jump to content

HH89

Members
  • Content Count

    31
  • Joined

  • Last visited

Community Reputation

0 Neutral

About HH89

  • Rank
    New Member
  1. Pokertracker is a legit program used by many online poker players for statistical analysis. Recently MBAM has started flagging one of the program's update files as being malicious. My Avast isn't picking anything up. I am almost 100% sure this is a false positive. I have been using Pokertracker for over 6 years and never had any trouble with it, nor have had MBAM flag any files pertaining to this program until recently. Below is the developer log showing the detection: (I have also attached the file in question along with this post.) Malwarebytes Anti-Malware 1.75.0.1300 www.malwarebytes.o
  2. Update: I just updated MBAM again today and scanned again (with Database version: v2012.02.03.11) and MBAM is no longer detecting those 3 things as being malicious anymore (I didn't quarantine or delete them the last time I scanned). Do you still need me to send the files? Fwiw, I am using the same version of Absolute Poker (the latest version). Log below: Malwarebytes Anti-Malware 1.60.1.1000 www.malwarebytes.org Database version: v2012.02.03.11 Windows Vista Service Pack 1 x64 NTFS Internet Explorer 7.0.6001.18000 User :: USER-PC [administrator] 2/3/2012 8:50:57 PM mbam-log-2012-02-03 (20-
  3. I scan my computer with MBAM every 3 days. Today it started picking up "Trojan.Agent" in a couple files and a registry key related to Absolute Poker. Absolute Poker is an online poker site that I play at and hence have their software installed on my computer. Since today's MBAM update, it's been detecting Trojan.Agent in the uninstall files for the Absolute Poker software. Prior to this happening, the last time I ran a full scan was on Jan 30, 2012 in which everything came up clean. I've had the Absolute Poker software installed on my computer for the past 2 years. MBAM has never detected
  4. np, Kay. I'm just glad to have gotten this issue sorted out now, I was starting to get worried that my computer might have been compromised. I also do online banking and work from home on a daily basis, so chose not to use my computer for that in the past half a week. Phew, what a relief! Now I can get back to work . Good luck with the remainder of your problem Kay! And thanks for updating this thread for me Tashi. Best of luck, and have a great new years guys! Kind regards, - HH89
  5. Hey Kay, My Spybot has started picking up the same detection, and I think there's a good chance it may be some bug or F/P with Spybot. I've posted about it here http://forums.spybot.info/showthread.php?t=61005 and am just waiting on someone from the Spybot team to reply. I've also posted it here on the MBAM forums (see my first post in this thread for links). The reason why I think this is a FP is because I have been able to recreate this same detection on another computer. Basically once you use MBAM's function to quarantine a file, then Spybot will start detecting "Win32.AutoRun.tmp". I tr
  6. Cross posted this over to the Spybot forums (thread shown here: http://forums.spybot.info/showthread.php?t=61005.
  7. Hey guys, I've also started getting this same "Win32.AutoRun.tmp" Trojan detection from Spybot in the same location in the registry. I believe there's a good chance this might be a bug/glitch in Spybot that starts detecting this after you use MBAM to quarantine and delete a file. I've been able to recreate this exact same detection on another computer. I've made a post on it here: http://forums.malwarebytes.org/index.php?showtopic=71138 And have also cross posted it over to the F/P forum, thread shown here: http://forums.malwarebytes.org/index.php?showtopic=71140 I suggest you guys take a lo
  8. Hey guys, I think either I have an infection or there is a bug in Spybot S&D which is causing it to show a F/P infection "Win32.AutoRun.tmp" Trojan in your registry whenever a user uses MBAM to quarantine/delete a file. I believe it might be a bug/false positive on Spybot's part as I was able to reproduce the same detection on another computer right after I used MBAM to quarantine/delete a file (a file which MBAM just has classified as a PUP - potentially unwanted program). Let me begin from the start though: This is what Spybot S&D started picking up yesterday (Dec 23, 2010): Trojan
  9. Hey guys, I think either I have an infection or there is a bug in Spybot S&D which is causing it to show a F/P infection "Win32.AutoRun.tmp" Trojan in your registry whenever a user uses MBAM to quarantine/delete a file. I believe it might be a bug/false positive on Spybot's part as I was able to reproduce the same detection on another computer right after I used MBAM to quarantine/delete a file (a file which MBAM just has classified as a PUP - potentially unwanted program). Let me begin from the start though: This is what Spybot S&D started picking up yesterday (Dec 23, 2010): Trojan
  10. Hey Shadow, So these two programs are safe then? I won't have to worry about any Registry/Memory getting infected if I install these applications? And does Adware mean it just gives popups while the poker software application is open? Or random popups if I just have my internet browser open, with the poker software closed? Thanks for the help and Happy Holidays! Kind regards, - Carl
  11. I play online poker quite frequently as a hobby. There where two sites that I was going to sign up to play at, but MBAM is flagging their software as being malware. One site is 888poker the other is William Hill Poker. Both are legit poker sites that have been in the industry for years. The parent company of William Hill Poker is "William Hill" which is also one of the UK's largest bookmakers and is listed on the London Stock Exchange (more information here http://en.wikipedia.org/wiki/William_Hill_(bookmaker)). 888poker is owned by "888 Holdings PLC" which also owns and operates one of
  12. Hey guys, was this detection just fixed in todays update? Because I just updated to the latest database (database version: 3466) and did a scan, and everything came up clean this time. Log file here: Malwarebytes' Anti-Malware 1.43 Database version: 3466 Windows 6.0.6001 Service Pack 1 Internet Explorer 7.0.6001.18000 12/31/2009 11:33:21 PM mbam-log-2009-12-31 (23-33-21).txt Scan type: Full Scan (C:\|D:\|E:\|F:\|) Objects scanned: 322362 Time elapsed: 31 minute(s), 58 second(s) Memory Processes Infected: 0 Memory Modules Infected: 0 Registry Keys Infected: 0 Registry Values Infected: 0 Regist
  13. woops, I totally forgot to post the developer mode log in the OP. Heres the new log: Malwarebytes' Anti-Malware 1.43 Database version: 3462 Windows 6.0.6001 Service Pack 1 Internet Explorer 7.0.6001.18000 12/31/2009 7:51:04 AM devlog_dec31st_mbam-log-2009-12-31 (07-50-38).txt Scan type: Full Scan (C:\|D:\|E:\|F:\|) Objects scanned: 321985 Time elapsed: 33 minute(s), 3 second(s) Memory Processes Infected: 0 Memory Modules Infected: 0 Registry Keys Infected: 1 Registry Values Infected: 0 Registry Data Items Infected: 0 Folders Infected: 0 Files Infected: 0 Memory Processes Infected: (No malicio
  14. Hey guys, the latest MBAM update has started detecting this on my computer: Malwarebytes' Anti-Malware 1.43 Database version: 3462 Windows 6.0.6001 Service Pack 1 Internet Explorer 7.0.6001.18000 12/31/2009 4:14:46 AM adware_dec31st_mbam-log-2009-12-31 (04-14-28).txt Scan type: Full Scan (C:\|D:\|E:\|F:\|) Objects scanned: 321697 Time elapsed: 32 minute(s), 28 second(s) Memory Processes Infected: 0 Memory Modules Infected: 0 Registry Keys Infected: 1 Registry Values Infected: 0 Registry Data Items Infected: 0 Folders Infected: 0 Files Infected: 0 Memory Processes Infected: (No malicious items
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.