Jump to content

False positives


khakiman
 Share

Recommended Posts

Malwarebytes is reporting FPs that are not being detected by Avira or Superantispyware. Please advise.

Malwarebytes' Anti-Malware 1.40

Database version: 2622

Windows 5.1.2600 Service Pack 3

8/14/2009 8:55:59 AM

mbam-log-2009-08-14 (08-55-55).txt

Scan type: Full Scan (C:\|)

Objects scanned: 140913

Time elapsed: 45 minute(s), 59 second(s)

Memory Processes Infected: 0

Memory Modules Infected: 0

Registry Keys Infected: 0

Registry Values Infected: 0

Registry Data Items Infected: 0

Folders Infected: 0

Files Infected: 4

Memory Processes Infected:

(No malicious items detected)

Memory Modules Infected:

(No malicious items detected)

Registry Keys Infected:

(No malicious items detected)

Registry Values Infected:

(No malicious items detected)

Registry Data Items Infected:

(No malicious items detected)

Folders Infected:

(No malicious items detected)

Files Infected:

C:\Program Files\Common Files\aolback\Comps\fw\nisale.exe (Adware.BHO) -> No action taken.

C:\Program Files\QuickTime Alternative\QuickTimePlayer.exe (Trojan.Refroso) -> No action taken.

C:\Program Files\Real Alternative\mpclauncher.exe (Trojan.Refroso) -> No action taken.

C:\Program Files\Real Alternative\settings.exe (Trojan.Refroso) -> No action taken.

Link to post
Share on other sites

Please update and then run a developers mode scan :

http://www.malwarebytes.org/forums/index.php?showtopic=3228

I think some of this was fixed already but do need this special scan log to check something else , thanks .

Yes, after updating to 2623 the last three detections were fixed. However, this still remains:

C:\Program Files\Common Files\aolback\Comps\fw\nisale.exe (Adware.BHO) -> No action taken

Link to post
Share on other sites

That is why I asked for the developers log , I cant address this other detection without it .

Malwarebytes' Anti-Malware 1.40

Database version: 2625

Windows 5.1.2600 Service Pack 3

8/14/2009 2:29:09 PM

mbam-log-2009-08-14 (11-59-27).txt

Scan type: Full Scan (C:\|)

Objects scanned: 142164

Time elapsed: 41 minute(s), 59 second(s)

Memory Processes Infected: 0

Memory Modules Infected: 0

Registry Keys Infected: 0

Registry Values Infected: 0

Registry Data Items Infected: 0

Folders Infected: 0

Files Infected: 1

Memory Processes Infected:

(No malicious items detected)

Memory Modules Infected:

(No malicious items detected)

Registry Keys Infected:

(No malicious items detected)

Registry Values Infected:

(No malicious items detected)

Registry Data Items Infected:

(No malicious items detected)

Folders Infected:

(No malicious items detected)

Files Infected:

C:\Program Files\Common Files\aolback\Comps\fw\nisale.exe (Adware.BHO) -> No action taken.

Link to post
Share on other sites

That is why I asked for the developers log , I cant address this other detection without it .

Malwarebytes' Anti-Malware 1.40

Database version: 2627

Windows 5.1.2600 Service Pack 3

8/14/2009 7:42:12 PM

mbam-log-2009-08-14 (19-42-06).txt

Scan type: Full Scan (C:\|)

Objects scanned: 141394

Time elapsed: 43 minute(s), 43 second(s)

Memory Processes Infected: 0

Memory Modules Infected: 0

Registry Keys Infected: 0

Registry Values Infected: 0

Registry Data Items Infected: 0

Folders Infected: 0

Files Infected: 3

Memory Processes Infected:

(No malicious items detected)

Memory Modules Infected:

(No malicious items detected)

Registry Keys Infected:

(No malicious items detected)

Registry Values Infected:

(No malicious items detected)

Registry Data Items Infected:

(No malicious items detected)

Folders Infected:

(No malicious items detected)

Files Infected:

C:\Program Files\Common Files\aolback\Comps\fw\nisale.exe (Adware.BHO) -> No action taken. [5253514247405230211726231301182534361925211717251735383720192135341938263636381

73935171722173622253623232135251722211921183635373637193619213935362525353721173

9

26212121192636383834182435253925253939372535362121362121342438212224193718372126

1

7171725172117253535233438241922181717252020]

C:\RECYCLER\S-1-5-21-1496261783-456789262-847129947-1006\Dc5.exe (Adware.BHO) -> No action taken. [5253514247405230211726231301182534361925211717251735383720192135341938263636381

73935171722173622253623232135251722211921183635373637193619213935362525353721173

9

26212121192636383834182435253925253939372535362121362121342438212224193718372126

1

7171725172117253535233438241922181717252020]

C:\RECYCLER\S-1-5-21-1496261783-456789262-847129947-1006\Dc7.exe (Adware.BHO) -> No action taken. [5253514247405230211726231301182534361925211717251735383720192135341938263636381

73935171722173622253623232135251722211921183635373637193619213935362525353721173

9

26212121192636383834182435253925253939372535362121362121342438212224193718372126

1

7171725172117253535233438241922181717252020]

Link to post
Share on other sites

Thank you!

Copy and paste (do NOT type) the following into the box and hit enter :

mbam.exe /developer

The only way this will not work is if you have modified the regular installation .

Just as an aside and in case anyone else ever has a problem posting a "developer log" be aware that "mbam.exe/developer" may not work. Instead try inserting C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /developer in the Run box which worked like a charm.

Link to post
Share on other sites

  • Staff
Just as an aside and in case anyone else ever has a problem posting a "developer log" be aware that "mbam.exe/developer" may not work. Instead try inserting C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /developer in the Run box which worked like a charm.
mbam.exe/developer won't indeed work since there should be a space between mbam.exe and / :rolleyes:

No need to enter the full path since mbam.exe is already defined under the HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths key in the registry.

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.