Jump to content

Malware.Heuristic.1003 C:\USERS\<user>\APPDATA\LOCAL\DROPBOX\EVENTS\STORE


DPayne

Recommended Posts

Log:

Malwarebytes
www.malwarebytes.com

-Log Details-
Scan Date: 11/11/22
Scan Time: 5:00 PM
Log File: 300d563c-620c-11ed-b953-089e01ffcefe.json

-Software Information-
Version: 4.4.11.149
Components Version: 1.0.1513
Update Package Version: 1.0.62166
License: Trial

-System Information-
OS: Windows 10 (Build 19045.2251)
CPU: x64
File System: NTFS
User: System

-Scan Summary-
Scan Type: Threat Scan
Scan Initiated By: Scheduler
Result: Completed
Objects Scanned: 320394
Threats Detected: 1
Threats Quarantined: 0
Time Elapsed: 4 hr, 43 min, 19 sec

-Scan Options-
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Detect
PUM: Detect

-Scan Details-
Process: 0
(No malicious items detected)

Module: 0
(No malicious items detected)

Registry Key: 0
(No malicious items detected)

Registry Value: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Data Stream: 0
(No malicious items detected)

Folder: 0
(No malicious items detected)

File: 1
Malware.Heuristic.1003, C:\USERS\<user>\APPDATA\LOCAL\DROPBOX\EVENTS\STORE, No Action By User, 1000001, 0, 1.0.62166, 0000000000000000000003EB, dds, 02031625, 30650117B31D88757B5AB587DA6E5341, 9BBAEAB0A549309C09B266A5ECD84738BC5652A93E28E906963143359D8EBF89

Physical Sector: 0
(No malicious items detected)

WMI: 0
(No malicious items detected)


(end)

 

I cannot copy the file because it is in use by Dropbox (even after I stop the Dropbox service, DbxSvc).

Link to post
Share on other sites

  • Staff

Can I get you to gather some debug logs for me?
It is just a more detailed log which should help figure out why MBAM hit on that file.

Open MBAM >> click "settings" >> General >> Toggle the Switch beside Event log Data "Collect enhanced event log data for support"
Once you have set that, try another scan (again not allowing MBAM to remove file)
Next go here:
C:\ProgramData\Malwarebytes\MBAMService\logs
Grab the latest MBAMSERVICE.LOG, zip it, post it in next reply.

You can go back into settings and turn off the "collect enhanced...." after.

Thanks!
 

  • Like 1
Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.