Jump to content

False Positive?


Blue452
 Share

Recommended Posts

Is below a false positive?

Not being an expert, I just pressed the option to save the log file and it saved it in the My Documents folder. Then I exited MBAM without doing anything else because I wasn't sure what to do - whether to remove, ignore (I had doubts whether this was an actual infected file). Isn't "jusched.exe" a legitimate java file?

Note: This is my first scan with version 1.41.

Malwarebytes' Anti-Malware 1.41

Database version: 2785

Windows 5.1.2600 Service Pack 3

9/12/2009 8:43:35 AM

mbam-log-2009-09-12 (08-43-25).txt

Scan type: Quick Scan

Objects scanned: 111105

Time elapsed: 14 minute(s), 32 second(s)

Memory Processes Infected: 0

Memory Modules Infected: 0

Registry Keys Infected: 0

Registry Values Infected: 1

Registry Data Items Infected: 0

Folders Infected: 0

Files Infected: 1

Memory Processes Infected:

(No malicious items detected)

Memory Modules Infected:

(No malicious items detected)

Registry Keys Infected:

(No malicious items detected)

Registry Values Infected:

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\sunjavaupdatesched (Trojan.Agent) -> No action taken.

Registry Data Items Infected:

(No malicious items detected)

Folders Infected:

(No malicious items detected)

Files Infected:

C:\Program Files\Java\jre6\bin\jusched.exe (Trojan.Agent) -> No action taken.

XP SP3

Internet Explore 8

NIS 2009

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.