Jump to content

Recommended Posts

I don't know if this is a false positive but I thought Cobian Backup was a reputable program. Maybe not. This file is part of the install and there are additional files installed later that are flagged as well. Below are two logs, one during the install and one after the install of the program directory. Attached are two zips with the offending files.

====================

SCAN PART I

====================

Malwarebytes Anti-Malware (Trial) 1.60.1.1000

www.malwarebytes.org

Database version: v2012.02.16.06

Windows 7 Service Pack 1 x64 NTFS

Internet Explorer 9.0.8112.16421

Orange :: ORANGE-TREE [administrator]

Protection: Enabled

2/18/2012 8:50:51 AM

mbam-log-2012-02-18 (08-50-51).txt

Scan type: Quick scan

Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM

Scan options disabled: P2P

Objects scanned: 199173

Time elapsed: 3 minute(s), 25 second(s)

Memory Processes Detected: 0

(No malicious items detected)

Memory Modules Detected: 0

(No malicious items detected)

Registry Keys Detected: 0

(No malicious items detected)

Registry Values Detected: 0

(No malicious items detected)

Registry Data Items Detected: 0

(No malicious items detected)

Folders Detected: 0

(No malicious items detected)

Files Detected: 1

C:\Users\Orange\AppData\Local\Temp\cbSetupE.exe (Trojan.Dropper) -> Quarantined and deleted successfully. [e87e5dfbce8e4ceaa913d009e41f5ba5]

(end)

====================

SCAN PART II

====================

Malwarebytes Anti-Malware (Trial) 1.60.1.1000

www.malwarebytes.org

Database version: v2012.02.16.06

Windows 7 Service Pack 1 x64 NTFS

Internet Explorer 9.0.8112.16421

Orange :: ORANGE-TREE [administrator]

Protection: Enabled

2/18/2012 9:27:48 AM

mbam-log-2012-02-18 (09-27-48).txt

Scan type: Custom scan

Scan options enabled: File System | Heuristics/Shuriken | PUP | PUM

Scan options disabled: Memory | Startup | Registry | Heuristics/Extra | P2P

Objects scanned: 262

Time elapsed: 6 second(s)

Memory Processes Detected: 0

(No malicious items detected)

Memory Modules Detected: 0

(No malicious items detected)

Registry Keys Detected: 1

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\CobBackup10 (Trojan.Dropper) -> Quarantined and deleted successfully. [f175ed6bc19bd165efcd2faaaa59a35d]

Registry Values Detected: 0

(No malicious items detected)

Registry Data Items Detected: 0

(No malicious items detected)

Folders Detected: 0

(No malicious items detected)

Files Detected: 5

c:\Program Files (x86)\Cobian Backup 10\cbHelpreader.exe (Trojan.Dropper) -> Quarantined and deleted successfully. [0a5ce177025a1521d3e923b6f50e28d8]

c:\Program Files (x86)\Cobian Backup 10\cbManager.exe (Trojan.Dropper) -> Quarantined and deleted successfully. [b0b6abadabb161d511ab19c05ca7a957]

c:\Program Files (x86)\Cobian Backup 10\cbSrvControl.exe (Trojan.Dropper) -> Quarantined and deleted successfully. [c4a23f19520adb5bc4f8c31692711ee2]

c:\Program Files (x86)\Cobian Backup 10\cbTranslator.exe (Trojan.Dropper) -> Quarantined and deleted successfully. [085e74e4e17b5dd993292cad08fbbe42]

c:\Program Files (x86)\Cobian Backup 10\cbUninstall.exe (Trojan.Dropper) -> Quarantined and deleted successfully. [f175ed6bc19bd165efcd2faaaa59a35d]

(end)

cbSetupE.zip

Cobian Backup 10.zip

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.