Jump to content

False Positives Across a Network? Permissions Issue?


lswaidz
 Share

Recommended Posts

Ran a quick scan on my local machine today and it picked up a number of hits on files on a network server in a directory I DO NOT have access to. I asked that user to check the directory, and alas there were no files there. Totally empty directory. Had him run a similar scan and he found nothing, except he returned a similar result on MY directory on the same network server.

I guess the question here is do we need to look deeper into this issue or is MBAM getting false positives from heuristics on files it doesn't have access to?

I've attached a copy of the scan I did. Thanks for any help or insight you can provide on this issue.

mbam_log_2010_12_15__15_09_23_.zip

Link to post
Share on other sites

I should add that we went back in and there were in fact files in that directory. Permissions were limited to the user who owned the directory, however domain users (which my user was a member of) had directory listing persmissions, and vice versa. I could not see the files, but perhaps MBAM could. We're not sure. The results in the other scan were identical. We've seen this on a number of other AD2008/Server 2008 R2 networks that our company runs... just wondering if this is something that is common.

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.