Jump to content

1 file as false positives


Recommended Posts

hello Malwarebytes team .

I’ve download the latest version of Ultrasurf and this still being detected by MBv3 as a mlware file .


-Log Details-
Scan Date: 5/31/19
Scan Time: 4:33 AM
Log File: 203ca19a-8344-11e9-9097-80ce62d7ac0e.json

-Software Information-
Components Version: 1.0.586
Update Package Version: 1.0.10842
License: Premium

-Scan Summary-
Scan Type: Threat Scan
Scan Initiated By: Scheduler
Result: Completed
Objects Scanned: 273630
Threats Detected: 1
Threats Quarantined: 0
Time Elapsed: 17 min, 20 sec

-Scan Options-
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Detect
PUM: Detect

-Scan Details-
Process: 0
(No malicious items detected)

Module: 0
(No malicious items detected)

Registry Key: 0
(No malicious items detected)

Registry Value: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Data Stream: 0
(No malicious items detected)

Folder: 0
(No malicious items detected)

File: 1
Generic.Malware/Suspicious, C:\USERS\\DOWNLOADS\U.ZIP, No Action By User, [0], [392686],1.0.10842

Physical Sector: 0
(No malicious items detected)

WMI: 0
(No malicious items detected)



Edited by Gt-truth
Link to post
Share on other sites

It's not confusing.  Detections of;  Application.UltraSurf.D, RiskWare[RiskTool]/Win32.AGeneric, Tool.UltraSurf.17, Riskware.Win32.UltraSurf.fmwbzd and HackTool/UltraSurf are very specific.

UltraSurf may not presently completely fit Malwarebytes' criteria but other vendors find UltraSurf "risky" software.  Thus, you are forewarned.


Link to post
Share on other sites

OK then , what I can tell is I’ve make a right click and scan with windows security and it show zero detection , however on VT it show a detection for Ultra surf .by Microsoft and others .is this a sync problem ?

I thinks all security software maker are should to reanalyze of this tool if this is the case . you may want to read this Launching VirusTotal Monitor, a service to mitigate false positives

Edited by Gt-truth
Link to post
Share on other sites

  • 2 weeks later...
On 5/31/2019 at 11:31 PM, David H. Lipman said:

Only Malwarebytes' can be considered here for False Positives.

If you believe all the other detections are wrong, you would have to take it up with each vendor who has a detection for UltraSurf.


sure ! and looking for another one so are there any alternative of the Ultra surf (portable and clean and safe one) ? because I do not thinks that I will be able or to I want to submit an false positives reports to all of those vendors .

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.