cybot Posted May 21, 2017 ID:1128691 Share Posted May 21, 2017 last nights scan which normally returns 0 malware found, return a result for a piece of malware that Malwarebytes identifies as Trojan.MalPack. The only reason I know it is a false positive due to a bug, is the files location and filename. according to the scan the malware is in the following file : C:\Programdata\Malwarebytes\MBAMSERVICES\Logs\MBAMSERVICELOG.LOG as far as I know its impossible for a text file to be infected by malware much less a Trojan. furthermore it's one of MBAM's own files! Malwarebytes www.malwarebytes.com -Log Details- Scan Date: 5/21/17 Scan Time: 2:16 AM Log File: Administrator: Yes -Software Information- Version: 3.1.2.1733 Components Version: 1.0.122 Update Package Version: 1.0.1986 License: Premium -System Information- OS: Windows 10 CPU: x64 File System: NTFS User: System -Scan Summary- Scan Type: Threat Scan Result: Completed Objects Scanned: 581653 Threats Detected: 1 Threats Quarantined: 0 (No malicious items detected) Time Elapsed: 37 min, 37 sec -Scan Options- Memory: Enabled Startup: Enabled Filesystem: Enabled Archives: Enabled Rootkits: Disabled Heuristics: Enabled PUP: Enabled PUM: Enabled -Scan Details- Process: 0 (No malicious items detected) Module: 0 (No malicious items detected) Registry Key: 0 (No malicious items detected) Registry Value: 0 (No malicious items detected) Registry Data: 0 (No malicious items detected) Data Stream: 0 (No malicious items detected) Folder: 0 (No malicious items detected) File: 1 Trojan.MalPack, C:\PROGRAMDATA\MALWAREBYTES\MBAMSERVICE\LOGS\MBAMSERVICE.LOG, No Action By User, [53], [372225],1.0.1986 Physical Sector: 0 (No malicious items detected) (end) Link to post Share on other sites More sharing options...
cybot Posted May 21, 2017 Author ID:1128754 Share Posted May 21, 2017 I am posting the file reported to be Trojan here. I have opened it up myself, and it's just a as expected. It's just a text file logging MBAM's operations. no real reason for MBAM to call one of it's own files a Trojan. maybe one of you cn look through the file and see if there is something contained in the text which is causing the file to tagged as a trojan MBAMSERVICE.LOG Link to post Share on other sites More sharing options...
cybot Posted May 21, 2017 Author ID:1128762 Share Posted May 21, 2017 file is not detected as a Trojan with update package 1.0.1988. so maybe it was a bug in update package 1.0.1986? well, problem solved I guess? Link to post Share on other sites More sharing options...
1PW Posted May 21, 2017 ID:1128763 Share Posted May 21, 2017 Hello @cybot: Thank you kindly for taking the time to document your discovery here. To more quickly attract those Malwarebytes staffers who can act upon your discovery, a request has been made to forum Administrators/Moderators to move your high-quality topic to possibly a more apropos sub-forum. Thank you again for your welcome report. Link to post Share on other sites More sharing options...
cybot Posted May 21, 2017 Author ID:1128765 Share Posted May 21, 2017 oh, I see you removed the file I posted.... don't know why but whatever. it was just a txt file anyway. Link to post Share on other sites More sharing options...
cybot Posted May 21, 2017 Author ID:1128766 Share Posted May 21, 2017 1 minute ago, cybot said: oh, I see you removed the file I posted.... don't know why but whatever. it was just a txt file anyway. oops I screwed up... ignore that post plz Link to post Share on other sites More sharing options...
cybot Posted May 21, 2017 Author ID:1128767 Share Posted May 21, 2017 umm how do I reset the statistics for mbam..... I was proud of my 0 detections... I want to get rid of that blemish caused by the bug Link to post Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now