Jump to content

Trojan.Dropper Possible false positive?


Recommended Posts


I do two updated scans of Malwarebytes every day, and it wasn't there yesterday when I scanned. My friend is saying it's a good chance it's a false positive. When I looked in the registry keys it said something about DivX AAC Decoder or something. I recently got keylogged about a month ago, and I had to format and change all of my passwords. Can somebody please help me with this, I really hope it's not something that could have executed itself and now I have a keylogger. Any information would be very helpful.

Link to post
Share on other sites

I also haven't downloaded anything from yesterday until today, and I'm super paranoid about computer security so I never visit any sites that might have the slightest possibility of being malicious. Here is the log:

Malwarebytes' Anti-Malware 1.46


Database version: 4222

Windows 5.1.2600 Service Pack 3

Internet Explorer 8.0.6001.18702

6/21/2010 3:33:19 PM

mbam-log-2010-06-21 (15-33-19).txt

Scan type: Full scan (A:\|C:\|D:\|)

Objects scanned: 157988

Time elapsed: 19 minute(s), 3 second(s)

Memory Processes Infected: 0

Memory Modules Infected: 0

Registry Keys Infected: 3

Registry Values Infected: 0

Registry Data Items Infected: 0

Folders Infected: 0

Files Infected: 1

Memory Processes Infected:

(No malicious items detected)

Memory Modules Infected:

(No malicious items detected)

Registry Keys Infected:

HKEY_CLASSES_ROOT\CLSID\{19987cee-dee8-49dc-98ec-f21380aa9e68} (Trojan.Dropper) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CLSID\{19987cee-dee8-49dc-98ec-f21380aa9e6a} (Trojan.Dropper) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CLSID\{19987cee-dee8-49dc-98ec-f21380aa9e6b} (Trojan.Dropper) -> Quarantined and deleted successfully.

Registry Values Infected:

(No malicious items detected)

Registry Data Items Infected:

(No malicious items detected)

Folders Infected:

(No malicious items detected)

Files Infected:

C:\Program Files\DivX\DivX Plus DirectShow Filters\daac.ax (Trojan.Dropper) -> Quarantined and deleted successfully.

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.