BFeely Posted March 31, 2019 ID:1306075 Share Posted March 31, 2019 Downloaded a program "PE Tools" yesterday in order to edit the header of a .exe to run on Windows XP, and today Malwarebytes says the .7z of it is malware: Downloaded from https://github.com/petoolse/petools/releases Virustotal report at https://www.virustotal.com/#/file/b831343a1441039c68a60777cef9ecb1f41381bff369c2f993cd3db6bf8c9fb8/detection Link to post Share on other sites More sharing options...
Staff shadowwar Posted March 31, 2019 Staff ID:1306089 Share Posted March 31, 2019 Can you please click save results on that screen and paste he log here. I need the full path of the second file detected. Link to post Share on other sites More sharing options...
Staff shadowwar Posted March 31, 2019 Staff ID:1306091 Share Posted March 31, 2019 This may be fixed now but would like the other information i requested. Thanks! Link to post Share on other sites More sharing options...
BFeely Posted March 31, 2019 Author ID:1306094 Share Posted March 31, 2019 Here's the log: Malwarebytes www.malwarebytes.com -Log Details- Scan Date: 3/31/19 Scan Time: 8:03 AM Log File: ef29182a-53ac-11e9-b433-7085c2296f2d.json -Software Information- Version: 3.7.1.2839 Components Version: 1.0.563 Update Package Version: 1.0.9936 License: Premium -System Information- OS: Windows 10 (Build 18865.1000) CPU: x64 File System: NTFS User: WILLIAMFEELY\William -Scan Summary- Scan Type: Threat Scan Scan Initiated By: Manual Result: Completed Objects Scanned: 933260 Threats Detected: 2 Threats Quarantined: 0 Time Elapsed: 5 min, 52 sec -Scan Options- Memory: Enabled Startup: Enabled Filesystem: Enabled Archives: Enabled Rootkits: Disabled Heuristics: Enabled PUP: Detect PUM: Detect -Scan Details- Process: 0 (No malicious items detected) Module: 0 (No malicious items detected) Registry Key: 0 (No malicious items detected) Registry Value: 0 (No malicious items detected) Registry Data: 0 (No malicious items detected) Data Stream: 0 (No malicious items detected) Folder: 0 (No malicious items detected) File: 2 Generic.Malware/Suspicious, C:\USERS\WILLIAM\APPDATA\ROAMING\Microsoft\Windows\Recent\PE.Tools.v1.9.762.2018.lnk, No Action By User, [0], [392686],1.0.9936 Generic.Malware/Suspicious, C:\USERS\WILLIAM\DOWNLOADS\PE.TOOLS.V1.9.762.2018.7Z, No Action By User, [0], [392686],1.0.9936 Physical Sector: 0 (No malicious items detected) WMI: 0 (No malicious items detected) (end) Link to post Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now