Jump to content
josy

Possible False Positiv (Trojan.Hiloti)

Recommended Posts

Hello,

i am using MBAM Free. My System is Windows Vista Home Premim 64 Bit SP2 . Sience the Latest Database MBAM is detecting one File as a Trojan. I put te file to virustotal.com and there was no mach. I checked it also with my Antivirus Programm nod32 V.4 there is also no mach. Could anyone checkt his Please? I attached the file as zip . Here is the Log from MBAM :

Malwarebytes' Anti-Malware 1.44

Datenbank Version: 3786

Windows 6.0.6002 Service Pack 2

Internet Explorer 8.0.6001.18882

24.02.2010 23:16:17

mbam-log-2010-02-24 (23-16-15).txt

Scan-Methode: Quick-Scan

Durchsuchte Objekte: 113421

Laufzeit: 2 minute(s), 16 second(s)

Infizierte Speicherprozesse: 0

Infizierte Speichermodule: 0

Infizierte Registrierungsschl

RLOFRDec.zip

Share this post


Link to post
Share on other sites

What error does it give when you try to attach it ? If you follow those instructions it gives a txt document that is nearly identical .

Share this post


Link to post
Share on other sites

It said something to the effect of "you aren't allowed to upload that sort of file." Then I went back to the actual file, and it was an unidentified file type. I don't know if I managed to somehow corrupt it when I renamed it... I added DevLog to the mbam notation so that I wouldn't confuse it with the original when I went to upload here.

For what it's worth, I just ran the update, and it's still showing the same three detections. :)

Share this post


Link to post
Share on other sites

Ah, you snuck 3794 past me as I was getting ready to post a (seemingly successful!) dev log for 3793. :D

It did detect on 3793, but I'll go ahead and run 3794.

Share this post


Link to post
Share on other sites

I installed and updated Malwarebytes Anti-Malware yesterday. I did a full system scan yestreday using 3791 and it detected two files having Trojan.Hiloti:

C:\Program Files\K-Lite Codec Pack\Filters\RLOFRDec.ax

HKEY_CLASSES_ROOT\CLSID\{68d6728a-d715-492a-a57b-8dda01f4921f}

I just updated to 3795 and did a context menu scan of C:\Program Files\K-Lite Codec Pack\ and the scan came up clean.

False positive seems to be fixed (at least, for me).

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now

  • Recently Browsing   0 members

    No registered users viewing this page.

×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.