Jump to content
Dave446

2 False Positives - Virust Total says both ok

Recommended Posts

Ran malwarebytes and the only 2 files it hit on are SERVICES and SYSTEM 47

SERVICES is in the System32/drivers/etc folder where it should be. It was created in 1999 the same date as my host and other files in that folder (when the windows 2000 files were created by microsoft).

SYSTEM 47 is a screensaver ive used on and off for years with no issues. I scanned it with AVG originally as I do all files I download. Especially freeware.

I scanned both of these files with Virustotal online and none of the scan engines found problems with either file.

Here is the virustotal scan results pages for the SERVICES file.

http://www.virustotal.com/analisis/d6bc3b3...fb19a0b85d6fdd6

Here is the virustotal scan results pages for the SYSTEM 47 file.

http://www.virustotal.com/analisis/7556745...9d3657ec663764b

Here is the Malwarebytes logfile. (also including it as an attachment)

Malwarebytes' Anti-Malware 1.34

Database version: 1890

Windows 5.0.2195 Service Pack 4

3/31/2009 10:09:54 PM

mbam-log-2009-03-31 (22-09-42).txt

Scan type: Quick Scan

Objects scanned: 62939

Time elapsed: 34 second(s)

Memory Processes Infected: 0

Memory Modules Infected: 0

Registry Keys Infected: 0

Registry Values Infected: 0

Registry Data Items Infected: 0

Folders Infected: 0

Files Infected: 2

Memory Processes Infected:

(No malicious items detected)

Memory Modules Infected:

(No malicious items detected)

Registry Keys Infected:

(No malicious items detected)

Registry Values Infected:

(No malicious items detected)

Registry Data Items Infected:

(No malicious items detected)

Folders Infected:

(No malicious items detected)

Files Infected:

C:\WINNT.0\System47.exe (Trojan.FakeAlert) -> No action taken. [3857535134303627615642474753151761849084323232323215708970]

C:\WINNT.0\system32\drivers\etc\services (Heuristics.Reserved.Word.Exploit) -> No action taken. [4642524945343638373084708387746870841301474853017089709378846893676676937484689

377797693788468937880719377807293574645938169719380776993171718]

Thanks,

Dave

mbam_log_2009_03_31__22_09_42_.txt

mbam_log_2009_03_31__22_09_42_.txt

Share this post


Link to post
Share on other sites

C:\WINNT.0\system32\drivers\etc\services <- this file is not within a zone subject to Heuristics.Reserved.Word.Exploit , I am unsure why it was on your system although it is likely an issue with how your environmental variables are registered .

I can fix both of these none the less though .

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now

  • Recently Browsing   0 members

    No registered users viewing this page.

×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.