Jump to content

bfcs2.dll -- false positive?


Recommended Posts

MBAM flagged this file "bfcs2.dll" as a Trojan Dropper and quarantined it for DOR. I restored from quarantine and uploaded to virustotal.com for analysis. Out of 56 checks, only MBAM reports any malware characteristics for the file. Is this a false positive? I couldn't tell when or how it got on my system, since restoring from quarantine overwrote all the original file's timestamps (that's a clue that I think ideally should be preserved in some form when quarantining!)



Log output:

Malwarebytes Anti-Malware

Scan Date: 5/28/2016
Scan Time: 1:21 PM
Logfile: bfcs2dll.txt
Administrator: Yes

Malware Database: v2016.05.28.05
Rootkit Database: v2016.05.27.01
License: Premium
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled

OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: xxxxxxx

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 1
Time Elapsed: 0 min, 28 sec

Memory: Disabled
Startup: Disabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Warn
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 0
(No malicious items detected)

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 1
Trojan.Dropper, C:\Windows\bfcs2.dll, Quarantined, [0b3a99425e3b8aac2bc7f855699bec14], 

Physical Sectors: 0
(No malicious items detected)



Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.