thisisu

Hi, Please add this to your exclusions, since we are not going to delist this detection, because malware uses this as well, pointing to a "bogus" taskmanager, that is malware instead;

Yes it was a false positive. If already quarantined, you can restore the file. Watch the following for more details on how to do this: https://support.malwarebytes.com/videos/1049

Fixed in: MBAM2 Version: v2018.11.27.02 MBAM3 Version: 1.0.8037

Fixed in: MBAM2 Version: v2018.11.27.02 MBAM3 Version: 1.0.8037

Hello, Think I found the offending rule and the file you are talking about. I'm pushing an update out now.

Hello, Think I found the offending rule and the file you are talking about. I'm pushing an update out now.

Hi and thank you for the file submission. It will be analyzed as soon as possible.

You're welcome

Hello, I've attempted to correct this and seems ok on my end. Can you let me know if the detection persists for you? If still detected on your end after ~10 minutes from now. Perform the following steps: Totally exit/shutdown Malwarebytes. Go to here in explorer: C:\ProgramData\Malwarebytes\MBAMService Delete the following file only: hubblecache Then you can restart MBAM and the cache file will rebuild on the next scan.

You're welcome

Yes. False positive due to obfuscation.

Thanks. It's being fixed in the next update.

Thanks for the report. An update is going out to correct this. Sorry for the inconvenience

Thanks. I made another adjustment so it isn't detected. Please let me know if you continue to experience a detection of this file.

Hi, Yes, confirmed it doesn't contain adware or any other malicious code. You should be able to restore that file from quarantine. C:\Program Files (x86)\LibrePilot\bin\librepilot-gcs.exe If it doesn't allow you to restore it right away, you should be able once you've rebooted your computer. Here's a guide if you're not familiar with this process: https://www.malwarebytes.com/support/guides/mb/Quarantine.html Let us know if you need additional help