Jump to content

Inundated with false positives


Recommended Posts

Hi,

Over the past week or so I have been having problems with Windows stability, sometimes even starting it.

After a reboot there is normally an active MWB window showing many detections, but it did not show these whilst in the previous Windows session.

E.G.


-Software Information-
Version: 4.1.1.71
Components Version: 1.0.961
Update Package Version: 1.0.25748
Licence: Premium

-System Information-
OS: Windows 10 (Build 19041.329)
CPU: x64
File System: NTFS
User: System

-Scan Summary-
Scan Type: Threat Scan
Scan Initiated By: Scheduler
Result: Completed
Objects Scanned: 331450
Threats Detected: 17
Threats Quarantined: 17
Time Elapsed: 4 min, 31 sec

 

I have attached 3 sets of detection logs, along with the requested files in .RAR format

 

Many thanks

 

MWB_1.rar MWB_2.rar MWB_3.rar

Link to post
Share on other sites
  • Staff

Please restore these files if you havent done so already. 

Also in the beta please shut this setting off under the settings/security tab.

 1858880567_Useexpert.png.6745cbb249b947069878d8b5b3068e2e.png.ea84cad2e45e611574036d85b3d731d5.png

You will then have to close the gui of malwarebytes and reopen it to show that its off. 

We are working on a fix for this and it should be out as soon as possible. 

Link to post
Share on other sites
  • Staff

Thanks for the logs. From the data in those logs, it seems that the  'Use expert system algorithms to identify malicious files' setting is still enabled.

Can you try opening MB4 again, click on the setting button, and then close and open the main program (UI) again?

Link to post
Share on other sites
10 minutes ago, Draven said:

I am unable to disable that specific option

 Click it and close the GUI and it will be disabled the next time you reopen the GUI.

It is a known bug in the GUI.

Edited by Porthos
Link to post
Share on other sites
  • Staff

C:\PROGRAM FILES (X86)\SCP\SCP.EXE
C:\USERS\JOHN\APPDATA\LOCAL\MICROSOFT\WINDOWS\INETCACHE\IE\27CMW3XJ\SCP_UPDATE[1].EXE
C:\USERS\JOHN\ONEDRIVE\SOFTWARE LICENCES\KON BOOT\V3\KONBOOT_WINDOWS_3.4.EXE
C:\USERS\JOHN\ONEDRIVE\SOFTWARE LICENCES\KON BOOT\V3.5\KONBOOT_WINDOWS_3.5.EXE,

Can you zip and attach these files?

Thanks

 

Link to post
Share on other sites
9 minutes ago, Draven said:

but then Windows security flagged a severe threat

So MS does not like the file either. Need to tell Defender to ignore the file and then I would Add all of the SCP files to the exclusions in Defender as well. Since you trust it.

Edited by Porthos
Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    No registered users viewing this page.

Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.