Jump to content

Virus Total flagged Malwarebytes AdwCleaner download


ProfAnomaly

Recommended Posts

I'm sure this is a hyper-sensitive scan result. I have Virus Total set to scan all downloads, to my surprise, your AdwCleaner triggered the following(below).
I found this to be humorous and not threatening at all. VT has flagged about 70% of the software that I've downloaded as having something suspicious.
Though, since I'm still using Windows 7 I have to take any/all flags with a sense of dread. But not this one. I disengage Ublock Origin on all Malwarebytes URLs, so you have my trust.
I'm simply reporting this to you for your own awareness. Also, maybe an explanation so that I can better understand how these AV engines generate false flags. I suspect that many of the VT warnings that I am getting, usually from only 1 out of 70 AV vendors, are false, and causing me unnecessary ulcers, hair loss, etc. But my AV/malware comprehension is 101 and therefore does not allow me the option to ignore a reported threat. Here's the report and URL...
rule UPX
{
    meta:
        author = "kevoreilly"
        description = "UPX dump on OEP (original entry point)"
        cape_options = "bp0=$upx32+9,bp0=$upx64+11,action0=step2oep"
    strings:
        $upx32 = {6A 00 39 C4 75 FA 83 EC ?? E9}
        $upx64 = {6A 00 48 39 C4 75 F9 48 83 EC ?? E9}
    condition:
        uint16(0) == 0x5A4D and any of them
}
rule Amadey
{
    meta:
        author = "kevoreilly"
        description = "Amadey Payload"
        cape_type = "Amadey Payload"
        hash = "988258716d5296c1323303e8fe4efd7f4642c87bfdbe970fe9a3bb3f410f70a4"
    strings:
        $decode1 = {8B D1 B8 FF FF FF 7F D1 EA 2B C2 3B C8 76 07 BB FF FF FF 7F EB 08 8D 04 0A 3B D8 0F 42 D8}
        $decode2 = {33 D2 8B 4D ?? 8B C7 F7 F6 8A 84 3B [4] 2A 44 0A 01 88 87 [4] 47 8B 45 ?? 8D 50 01}
        $decode3 = {8A 04 02 88 04 0F 41 8B 7D ?? 8D 42 01 3B CB 7C}
    condition:
        uint16(0) == 0x5A4D and 2 of them
}
https://www.virustotal.com/gui/file/1f544da66675521a649e632108f86afb351ad336bd34b7b5c3d290827ebeef54
 Thank You for Yo
ur time and effort.
    Erik Willis

Link to post
Share on other sites

  • Staff

***This is an automated reply***

Hi,

Thanks for posting in the AdwCleaner Help forum.
In order to help us assist you to resolve your issue, please post or attach your latest AdwCleaner log files with your post. https://support.malwarebytes.com/hc/en-us/articles/360039021593

Someone will reply shortly, but in the meantime here are a few resources which may help resolve your issue:

Thanks in advance for your patience.

-The Malwarebytes Forum Team

 

 

 

 

notify me.jpeg

mbst_advanced_gather_logs.jpg

mbst_get_started.jpg

mbst_getting_logs.jpg

mbst_log_saved_desktop.jpg

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.