Jump to content

Bellzemos

Members
  • Content Count

    42
  • Joined

  • Last visited

Everything posted by Bellzemos

  1. Hello! I don't really like the GUI of MBAM 2 so I'd like to know for how much longer will we be able to update definitions in MBAM 1.75 and if it's still possible to install the old version 1.75 on a new computer or is it only possible to instal the version 2.X? Thank you!
  2. Thank you a lor for clarifying this. Avira's lab also says it's a f/p. I don't know why half of the AV programs say that it's a trojan. Can you tell me what you found about it, has it some strange hooks in itself or what (I'm not a programmer, so... ). Again, thank you for help!
  3. Tho things, first that this file comes on an old PC game's CD (Half-Life: Opposing Force) and second that I submited the sample to few AV companies and they said that it's a FP. But still, I'm not 100% sure, that's why I posted here.
  4. I can't find where to send a sample for analysis, so I uploaded it here (attachment). I think it's a FP, please review it. Thank you DQ2249.zip
  5. There's no problems wtih MBAM here (at least that I know of) and no error messages when scanning or updating. I have Windows XP and Avast antivirus.
  6. Today I noticed that I have a file called "mbam-error.txt" on the root of my C drive. Here's the content of that file: --- An error has occurred. Please report this error code to our support team. MBAM_ERROR_NOT_REGISTERED (0, 0) --- What is that about? Thank you.
  7. I have already deleted the files in Windows Explorer myself, rebooted and did another scan which resulted with no infections. Thank you anyway.
  8. Are these Avast's legit files? It doesn't seem like a FP. http://www.virustotal.com/sl/analisis/8fcc...25cf-1273667216 http://www.virustotal.com/sl/analisis/8fcc...25cf-1273667219 http://www.virustotal.com/sl/analisis/8fcc...25cf-1273667223 http://www.virustotal.com/sl/analisis/8fcc...25cf-1273667227 Please help!
  9. 100% FP: REAPER, legit program for music recording (Uninstall.exe) That occured for at least three times in two years. http://www.virustotal.com/sl/analisis/7f27...d262-1269611878
  10. Today that happened again, except that MBAM reports the file as "Adware.AdRotator". VirusTotal shows 0/41. Please fix this FP.
  11. I have the new version (1.42) and am running Win XP as admin. Please fix this problem.
  12. Hello! MBAM just found a Rootkit.Agent in C:\Program Files\REAPER\Uninstall.exe REAPER is a program for music recording. I uploaded Uninstall.exe to VirusTotal and got 0/40 (meaning it's a clean file). Can you please look at this? Thank you!
  13. No, those files are no more detected as malware. Thank you for your help.
  14. If the registry keys are related to these files, then I'm pretty sure that this whole thing is a false positive. But of course I'll wait for the verification. If everything's OK, I'll restore the files and the keys. Thank you again.
  15. Here are the 2 files. What about those 6 registry keys? And thank you! files.zip files.zip
  16. Malwarebytes' Anti-Malware 1.39 Database version: 2464 Windows 5.1.2600 Service Pack 2 19.7.2009 22:22:23 mbam-log-2009-07-19 (22-22-19).txt Scan type: Full Scan (C:\|D:\|) Objects scanned: 132987 Time elapsed: 9 minute(s), 52 second(s) Memory Processes Infected: 0 Memory Modules Infected: 0 Registry Keys Infected: 6 Registry Values Infected: 0 Registry Data Items Infected: 0 Folders Infected: 0 Files Infected: 2 Memory Processes Infected: (No malicious items detected) Memory Modules Infected: (No malicious items detected) Registry Keys Infected: HKEY_CLASSES_ROOT\CLSID\{4c3b7798-3f10-489d-bbd
  17. So, is this a false positive or not? Should I restore the file back in it's place?
  18. 18.7.2009 1:41:17 mbam-log-2009-07-18 (01-41-17).txt Scan type: Full Scan (C:\|D:\|) Objects scanned: 132801 Time elapsed: 11 minute(s), 23 second(s) Memory Processes Infected: 0 Memory Modules Infected: 0 Registry Keys Infected: 0 Registry Values Infected: 0 Registry Data Items Infected: 0 Folders Infected: 0 Files Infected: 1 Files Infected: c:\program files\WinRAR\Default.SFX (Spyware.Banker) -> Quarantined and deleted successfully.
  19. OK, thank you for help. I restored that folder and ran MBAM again, and everything is OK (no malware found). But - is it even possible for an empty folder to be a threat? Again, thank you!
  20. Are you 100% sure this was a false positive? Is this something that was added in the "Database version: 2257" and later removed? Should I restore the "2052" folder from quarantene back to my "System32" folder? Thank you!
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.