Jump to content

avast is showing MBAMSwissArr rootkit


Nikilet

Recommended Posts

Shortly after booting my computer this morning a big warning sign popped up from avast! Internet Security warning that it had detected MBAMSwissArr Rootkit. The window was marked for "Delete Now (Recommended)" and I clicked ok to that. Then avast! wanted to know if I wanted to run a boot scan. I declined that and Googled this threat; then came to this forum.

I went to the forum page, Section K, and performed the instructions given there to exclude avast! and MBAM from each other. I hope I followed those instructions correctly.

Can anyone tell me for sure about this -- if this was actually a legitimate rootkit threat or a false/positive?

post-22338-0-20667800-1369845180.jpg

Link to post
Share on other sites

It would appear this has been reported to avast! forum a number of times so if there is an actual fix for it, it hasn't been taken very seriously. Maybe now that I made those changes under Section K here I won't run into this kind of problem again.

Thanks, all!!

Link to post
Share on other sites

avast! updates automatically several times a day, but I didn't manually do anything. I haven't had any more warning windows, but then I haven't restarted or anything either. I'll do that and then run MBAB quick scan and see what happens.

Link to post
Share on other sites

Hi malicide --- I restarted my computer and then when it was back up I ran an MBAM scan. I've had no further warnings.

To answer your questions: Yes, I have MBAM scheduled to run about every day I think. And no, MBAM has not found any threats.

Link to post
Share on other sites

  • 2 weeks later...

Hello Nikilet,

Please open Mbam to the Settings Tab. Go to the Scanner Settings

Under Action for potentially unwanted programs (PUP) click the drop-down arrow and change to Show in results and check for removal

Under Action for potentially unwanted modifications (PUM) Click the drop-down arrow and change to Show in results and check for removal

All of the following are Adware/Browser Hijackers, not malware

  • Ask Toolbar
  • Babylon
  • Browser Manager
  • Claro / iSearch
  • Conduit
  • Coupon Printer for Windows
  • Crossrider
  • Facemoods / Funmoods
  • iLivid
  • IncrediBar
  • MyWebSearch
  • Searchqu
  • Web Assistant

NOTE: The use of Registry Mechanic is NOT suggested. It will display false error's in-order to scare users into buying when in fact it has no ability to detect anything

Do I need a Registry CLeaner ??

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.