Jump to content

toshiba trojan?


musoatten
 Share

Recommended Posts

Each time i ran a scan i got this result = C:\Program Files\TOSHIBA\Utilities\SVPWUTIL.exe (Trojan.Agent.H) I got mbam to delete it but next time i ran a scan it was there again. As i'm using a Toshiba laptop I contacted Tosh and asked them about this file. Their reply was -"yes it is one of our files, it's to do with log on details but we've not known it be a problem with malware programmes". After receiving this reply from Toshiba i got mbam to ignore this file. Even so I wondered if you could tell me why it appears to be a false positive!

Link to post
Share on other sites

  • Staff

This is a heuristic hit that requires multiple things to be true , all of which should only appear in malware . Very poor coding decisions are the only way this could happen and this is not the first I have seen from Toshiba on this particular FP . I thought I actually fixed this one already , can you get me a developers log please ?

http://www.malwarebytes.org/forums/index.php?showtopic=3228

Link to post
Share on other sites

This is a heuristic hit that requires multiple things to be true , all of which should only appear in malware . Very poor coding decisions are the only way this could happen and this is not the first I have seen from Toshiba on this particular FP . I thought I actually fixed this one already , can you get me a developers log please ?

http://www.malwarebytes.org/forums/index.php?showtopic=3228

Many thanks for your reply. I don't have a problem with this file now, and its not in my ignore box any longer so i'm thinking you have fixed this problem which is why i don't have the problem any more. I was querying why a 'trusted' file shoud show as malware, but you've answered that query in your reply. I can run a developers log, but I no longer have a problem with the file in question - would you still like me to do a developers log?

Link to post
Share on other sites

If you remove this from the ignore list and get me a developers scan I will be able to fix this for anyone else that may have the same issue .

i can't run mbam.exe developer. i'm running vista sp2, got the cmd up and typed in command to run developer, but it didn't recognise the command. I tried leaving a space before developer and not leaving a space, but no matter what i tried it wouldn't recognise the command - i tried running it as administrator, then tried running it as 'run as administrator' but no joy - any suggestions.

Link to post
Share on other sites

Copy and paste :

mbam.exe /developer

into a run box .

It works if done correctly .

i have now done a developers log. However!! as i started the full scan this pop up appeared - SWISS ARMY FAILED TO INITIALIZE. ERROR CODE 5.

Database version: 2682

Windows 6.0.6002 Service Pack 2

27/08/2009 20:00:25

mbam-log-2009-08-27 (20-00-25).txt

Scan type: Full Scan (C:\|E:\|)

Objects scanned: 203420

Time elapsed: 1 hour(s), 0 minute(s), 29 second(s)

Memory Processes Infected: 0

Memory Modules Infected: 0

Registry Keys Infected: 0

Registry Values Infected: 0

Registry Data Items Infected: 0

Folders Infected: 0

Files Infected: 0

Memory Processes Infected:

(No malicious items detected)

Memory Modules Infected:

(No malicious items detected)

Registry Keys Infected:

(No malicious items detected)

Registry Values Infected:

(No malicious items detected)

Registry Data Items Infected:

(No malicious items detected)

Folders Infected:

(No malicious items detected)

Files Infected:

(No malicious items detected)

I will be away for a few days and won't have internet access so if i don't reply for a while to your next reply, please don't think i've ignored it. I'll check back on here as soon as i get back. I hope the log is of help to you. Many thanks.

Link to post
Share on other sites

i have now done a developers log. However!! as i started the full scan this pop up appeared - SWISS ARMY FAILED TO INITIALIZE. ERROR CODE 5.

Database version: 2682

Windows 6.0.6002 Service Pack 2

27/08/2009 20:00:25

mbam-log-2009-08-27 (20-00-25).txt

Scan type: Full Scan (C:\|E:\|)

Objects scanned: 203420

Time elapsed: 1 hour(s), 0 minute(s), 29 second(s)

Memory Processes Infected: 0

Memory Modules Infected: 0

Registry Keys Infected: 0

Registry Values Infected: 0

Registry Data Items Infected: 0

Folders Infected: 0

Files Infected: 0

Memory Processes Infected:

(No malicious items detected)

Memory Modules Infected:

(No malicious items detected)

Registry Keys Infected:

(No malicious items detected)

Registry Values Infected:

(No malicious items detected)

Registry Data Items Infected:

(No malicious items detected)

Folders Infected:

(No malicious items detected)

Files Infected:

(No malicious items detected)

I will be away for a few days and won't have internet access so if i don't reply for a while to your next reply, please don't think i've ignored it. I'll check back on here as soon as i get back. I hope the log is of help to you. Many thanks.

------------------------------

BACK OFF HOLS NOW - was the developers log any help?

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.