YoKenny1 Posted February 12, 2009 ID:55761 Share Posted February 12, 2009 With the latest update definitions I am getting a false on my SiS graphics adapter Malwarebytes' Anti-Malware 1.34Database version: 1752Windows 5.1.2600 Service Pack 32/12/2009 12:57:18 AMmbam-log-2009-02-12 (00-57-11).txtScan type: Quick ScanObjects scanned: 55863Time elapsed: 3 minute(s), 27 second(s)Memory Processes Infected: 0Memory Modules Infected: 0Registry Keys Infected: 0Registry Values Infected: 1Registry Data Items Infected: 0Folders Infected: 0Files Infected: 0Memory Processes Infected:(No malicious items detected)Memory Modules Infected:(No malicious items detected)Registry Keys Infected:(No malicious items detected)Registry Values Infected:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\sispower (Trojan.Agent) -> No action taken.Registry Data Items Infected:(No malicious items detected)Folders Infected:(No malicious items detected)Files Infected:(No malicious items detected) Link to post Share on other sites More sharing options...
YoKenny1 Posted February 12, 2009 Author ID:55865 Share Posted February 12, 2009 This is with the /developer switchMalwarebytes' Anti-Malware 1.34Database version: 1753Windows 5.1.2600 Service Pack 32/12/2009 7:21:27 AMmbam-log-2009-02-12 (07-21-18).txtScan type: Quick ScanObjects scanned: 56969Time elapsed: 3 minute(s), 5 second(s)Memory Processes Infected: 0Memory Modules Infected: 0Registry Keys Infected: 0Registry Values Infected: 1Registry Data Items Infected: 0Folders Infected: 0Files Infected: 0Memory Processes Infected:(No malicious items detected)Memory Modules Infected:(No malicious items detected)Registry Keys Infected:(No malicious items detected)Registry Values Infected:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\sispower (Trojan.Agent) -> No action taken. [38575351343053838075667915347270798513014144385864454836344564463436414247386152483953563451386146746883808480718561567479698088846136868383707985557083847480796151867993113232323011838679697777201915708970113232323215697777117011]Registry Data Items Infected:(No malicious items detected)Folders Infected:(No malicious items detected)Files Infected:(No malicious items detected) Link to post Share on other sites More sharing options...
Guest SuZo Posted February 12, 2009 ID:55908 Share Posted February 12, 2009 Awww.....For God's sake!Thank your for this thread. I've got the same problem (Log below)In the past Malwarebytes didn't found anything. I was so scared, as I've seen, that my SiS-Data (it's my MoBo-Constructor) should be infected.Now I'm pretty eased. I hope, it's definitely a false positive. A friend of mine reported another false positive with the latest database: He said, if he is checking in Spybot S&D the box under IE-Settings in the expert screen, where he can decide, that the IE-homepage can't changed by nobody (to avoid hijackers) - MBAM says it's a hijacker. As he unchecked it and ran another full system scan, there was no "infected" object anymore.Here's my log, looks exactly like above:Malwarebytes' Anti-Malware 1.34Datenbank Version: 1753Windows 5.1.2600 Service Pack 312.02.2009 15:19:08mbam-log-2009-02-12 (15-19-03).txtScan-Methode: Vollst Link to post Share on other sites More sharing options...
Guest SuZo Posted February 12, 2009 ID:55909 Share Posted February 12, 2009 Sorry, didn't found the Edit-Button, I wanted to say, that my SiS-Model is 741. Seems that it's happening to all SiS-Users.... Link to post Share on other sites More sharing options...
mikispiki Posted February 12, 2009 ID:55958 Share Posted February 12, 2009 Me too, a nice guy off Avast alerted this to me ,he sent off to Virustotal.This is definately a FPSISPower.dll False positive Link to post Share on other sites More sharing options...
nosirrah Posted February 12, 2009 ID:55959 Share Posted February 12, 2009 This should be fixed in the next update Link to post Share on other sites More sharing options...
Guest SuZo Posted February 12, 2009 ID:56009 Share Posted February 12, 2009 Yup, I did another full system scan and cleaned my ignore list before the scan and it's working fine now.Thanks for your great and super quickly support, MBAM-Team! Link to post Share on other sites More sharing options...
YoKenny1 Posted February 13, 2009 Author ID:56170 Share Posted February 13, 2009 I verify that the False Positive with SiS video graphics is fixed on my XP Home system. Malwarebytes' Anti-Malware 1.34Database version: 1757Windows 5.1.2600 Service Pack 32/13/2009 4:49:52 AMmbam-log-2009-02-13 (04-49-52).txtScan type: Quick ScanObjects scanned: 55891Time elapsed: 4 minute(s), 30 second(s)Memory Processes Infected: 0Memory Modules Infected: 0Registry Keys Infected: 0Registry Values Infected: 0Registry Data Items Infected: 0Folders Infected: 0Files Infected: 0Memory Processes Infected:(No malicious items detected)Memory Modules Infected:(No malicious items detected)Registry Keys Infected:(No malicious items detected)Registry Values Infected:(No malicious items detected)Registry Data Items Infected:(No malicious items detected)Folders Infected:(No malicious items detected)Files Infected:(No malicious items detected)Thank you. Link to post Share on other sites More sharing options...
Marloes Posted February 13, 2009 ID:56184 Share Posted February 13, 2009 How do ik put the Registry value back? I doubt whether this really was an infection when I scanned. But quarantined it anyway to be sure. I searched the Internet after that. Then I restored the value in Malwarebytes. But when I look in the registry now it is not there!!! HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\sispowerI hope someone can help me!!!! Link to post Share on other sites More sharing options...
exile360 Posted February 13, 2009 ID:56190 Share Posted February 13, 2009 Greetings Marloes. The simplest solution would be to download the latest drivers for your system from here: http://www.sis.com/download/Then uninstall the current ones, reboot, then install the new ones you downloaded. Link to post Share on other sites More sharing options...
YoKenny1 Posted February 13, 2009 Author ID:56191 Share Posted February 13, 2009 Do you have the Tray Utilities installed? http://www.sis.com/download/agreement.php?url=/download Go to start then All Programs then SiS VGA Utilities then Utility Tray to start the Tray application. Link to post Share on other sites More sharing options...
Marloes Posted February 13, 2009 ID:56193 Share Posted February 13, 2009 I forgot I run ERUNT! I just restored the registry using that program. The value is back now! Link to post Share on other sites More sharing options...
exile360 Posted February 13, 2009 ID:56194 Share Posted February 13, 2009 A handy tool to have around. Glad to see you solved it.Good luck and safe surfing. Link to post Share on other sites More sharing options...
Marloes Posted February 13, 2009 ID:56195 Share Posted February 13, 2009 Thank you for your quick anwers! Is restoring the registry (like I did) enough? Or do I have to reinstall, using your options, too? Link to post Share on other sites More sharing options...
exile360 Posted February 13, 2009 ID:56197 Share Posted February 13, 2009 Restoring the registry entry is sufficient, as that's the only component that Malwarebytes' had removed. Link to post Share on other sites More sharing options...
Marloes Posted February 13, 2009 ID:56202 Share Posted February 13, 2009 I thought so, but was not sure. Thank you very much!!! Link to post Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now