Jump to content

Malwarebytes latest update detecting a Steam game as malware?


Recommended Posts

Malwarebytes Premium is detecting the Steam game Ori and the Blind Forest Definitive Edition as malware? I am assuming it is a fault in the latest update, as this game has been on my HDD for months, and daily scans have never picked it up. I am sure this is a false positive, but can staff please provide confirmation? ORIDE.EXE is the executable for Ori and the Blind Forest Definitive Edition, which was downloaded directly through Steam. I can confirm that it detected and quarantined the actual game application, as launching it through Steam produces an error.

-Log Details-

Scan Date: 6/14/20
Scan Time: 11:11 PM
Log File: fbda1e4c-aece-11ea-b38e-305a3ae12ece.json

-Software Information-
Version: 4.1.0.56
Components Version: 1.0.931
Update Package Version: 1.0.25500
License: Premium

-System Information-
OS: Windows 10 (Build 19041.329)
CPU: x64
File System: NTFS
User: System

-Scan Summary-
Scan Type: Custom Scan
Scan Initiated By: Scheduler
Result: Completed
Objects Scanned: 350297
Threats Detected: 1
Threats Quarantined: 1
Time Elapsed: 24 min, 29 sec

-Scan Options-
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Detect
PUM: Detect

-Scan Details-
Process: 0
(No malicious items detected)

Module: 0
(No malicious items detected)

Registry Key: 0
(No malicious items detected)

Registry Value: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Data Stream: 0
(No malicious items detected)

Folder: 0
(No malicious items detected)

File: 1
Malware.Generic.4197474907, E:\STEAMLIBRARY\STEAMAPPS\COMMON\ORI DE\ORIDE.EXE, Quarantined, 1000000, 0, 1.0.25500, A172442FDB15167AFA30625B, dds, 00764920

Physical Sector: 0
(No malicious items detected)

WMI: 0
(No malicious items detected)


(end)

Link to post
Share on other sites

Hi, thanks for your reply. Upon rescanning, there were no detections, and upon relaunching the game, it was no longer blocked by RTP, so it does indeed seem to be fixed.

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    No registered users viewing this page.

Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.