sleeper0993 Posted December 8, 2012 ID:621233 Share Posted December 8, 2012 mbam-log-2012-12-08 (15-24-13).zipI was having no computer issues, but a friend suggested I should install Malwarebytes to be safe. I run Windows XP 64. I use Avg-Anti-virus, and that showed no issues. When I ran Malwarebytes, it only flagged a Trojan.FakeAv in the file c:\windows\syswow64\runonce.exe. I at first ran the Windows System File Checker utility to scan and repair any corrupted system files.I then re-ran Malwarebytes but the scan gave the same results. I then chose Malwarebytes option to quarantine the flagged file, but after a re-boot and re-scan, I get the same results. Attached is a log as you requested. Link to post Share on other sites More sharing options...
nosirrah Posted December 9, 2012 ID:621291 Share Posted December 9, 2012 Please zip and attach a copy of runonce.exe to your next post. Link to post Share on other sites More sharing options...
Djinn Posted December 9, 2012 ID:621338 Share Posted December 9, 2012 I also have an XP-64 machine on which runonce.exe is being flagged as Trojan.FakeAv, since yesterday. Zips of the logs and exe are attached.McAfee VirusScan Enterprise does not detect it as a threat.mbam_logs.ziprunonce.zip Link to post Share on other sites More sharing options...
drdancm Posted December 9, 2012 ID:621344 Share Posted December 9, 2012 I also have an XP-64 machine on which runonce.exe is being flagged as Trojan.FakeAv, since yesterday. Zips of the logs and exe are attached.McAfee VirusScan Enterprise does not detect it as a threat.mbam_logs.ziprunonce.zipSame problem, each time I'm told to restart and then it finds and cleans out this problem. Happened 2x last night, and 6 times today. It's an unforgiveable waste of my time either way:1 If it is false positive, which I suspect it is -since checks with AVG 2013, and Spybot, turn up nothing2 If it is real, because malwarebytes is not able to kill whatever is generating and/or regenerating the same runonce.exeI've never seen anything like this. Link to post Share on other sites More sharing options...
nosirrah Posted December 9, 2012 ID:621357 Share Posted December 9, 2012 Fixed in the next update. Link to post Share on other sites More sharing options...
sleeper0993 Posted December 9, 2012 Author ID:621485 Share Posted December 9, 2012 Fixed in the next update.Thanks. I'll look forward to that next update. Also, thanks Djinn for posting the runonce file for them to check. Link to post Share on other sites More sharing options...
nosirrah Posted December 9, 2012 ID:621520 Share Posted December 9, 2012 Thanks. I'll look forward to that next update. Also, thanks Djinn for posting the runonce file for them to check.Updates are multiple times a day, the fix should have been in the update shortly after my post. Link to post Share on other sites More sharing options...
KilroyKissenger Posted December 10, 2012 ID:621922 Share Posted December 10, 2012 Please confirm: runonce.exe is not malware? Malwarebytes is detecting it as a virus but other services are not reporting anything wrong with the file. Link to post Share on other sites More sharing options...
Staff shadowwar Posted December 10, 2012 Staff ID:621969 Share Posted December 10, 2012 This one is at least. hard to say Kilroy without any information from you. Link to post Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now