Jump to content

possible infected mbam


Recommended Posts

Can you please tell me what is going on here.

Thanks in advance.

*

* avast! Scan Report

* This file is generated automatically

*

* Scan name: Rootkit,processes,all users start up items.

* Started on: Sunday, June 19, 2011 3:01:37 AM

* VPS: 110618-1, 18/06/2011

*

Process 908 [cmdagent.exe], memory block 0x0000000003300000, block size 2019328 [L] Win32:FakeVimes-B [Trj] (0)

Process 3724 [mbamservice.exe], memory block 0x00000000017B0000, block size 1048576 [L] Win32:Microjoin-DE [Trj] (0)

Process 3724 [mbamservice.exe], memory block 0x0000000002440000, block size 2097152 [L] MSIL:Crypt-N [Drp] (0)

Process 3724 [mbamservice.exe], memory block 0x0000000002640000, block size 4194304 [L] BV:DelFiles-AZ [Trj] (0)

Process 3724 [mbamservice.exe], memory block 0x0000000003450000, block size 16580608 [L] Win32:Koobface-AR [Wrm] (0)

Process 3724 [mbamservice.exe], memory block 0x0000000008190000, block size 16580608 [L] Win32:Jifas-ES [Trj] (0)

Process 3724 [mbamservice.exe], memory block 0x000000000A130000, block size 16580608 [L] Win32:Agent-UDD [Trj] (0)

Process 3724 [mbamservice.exe], memory block 0x000000000B100000, block size 2301952 [L] Win32:FakeAlert-KB [Trj] (0)

Infected files: 8

Total files: 126334

Total folders: 1

Total size: 18.3 GB

*

* Scan stopped: 19 June 2011 03:09:14

* Run-time was 7 minute(s), 37 second(s)

*

.

Link to post
Share on other sites

It is most likely a false positive by avast.... please see below for exclusions....

Set Exclusions for Malwarebytes' Anti-Malware in Avast! Antivirus 6 (Free, Pro and Internet Security):


  • Open Avast! antivirus and click on REAL-TIME SHIELDS on the left
  • Click on File System Shield on the left and click on Expert Settings
  • Click the Exclusions section
  • Click on Browse next to the blank entry at the bottom of the list (this will be the only entry if no other exclusions have been set yet)
  • In the Select the areas window click on the + next to C:
  • Click the + next to Program Files Note: For 64 bit Windows versions this will be Program Files (x86)
  • Click the box next to Malwarebytes' Anti-Malware and click on OK
  • Click OK again
  • Click on Web Shield on the left and click Expert Settings
  • Click on Exclusions and check the box next to URLs to exclude:
  • Type or copy/paste the following address:
    *.mbamupdates.com
  • Click on OK
  • Click on Behavior Shield on the left and click Expert Settings
  • Click on Trusted Processes
  • Click on Browse next to the blank entry at the bottom of the list (this will be the only entry if no other exclusions have been set yet)
  • Navigate to C:Program Files\Malwarebytes' Anti-Malware and click once on mbam.exe and click Open Note: For 64 bit Windows versions this will be Program Files (x86)
  • Do the same for the following files:

    • mbamgui.exe
    • mbamservice.exe

    [*]Click on OK

    [*]Close Avast! antivirus

Set Exclusions for Avast! Antivirus Free, Pro and Internet Security in Malwarebytes' Anti-Malware:


  • Open Malwarebytes' Anti-Malware and click on the Ignore List tab
  • Click on the Add button on the lower left
  • In the small browse window that opens, navigate to C:\Program Files and click once on avast software and click on OK
  • Close Malwarebytes' Anti-Malware

Link to post
Share on other sites

@ Deity,

There must be something strange going on.

Bitdefender is spotting data-cdn.mbamupdates.com as being infected.

this is what is stopping malwarebytes from updating when running with bitdefender.

and now after removing bitdefender,

i find this mess with Avast.

there is something very wrong going on.

it has all happened since the last program update.

.

Link to post
Share on other sites

Sorry but i could not see how to edit a post,

adding further to above.

Sorry i do not ever add anything to any exceptions list,

malwarebytes has never been a problem before

so i am not adding it to any exceptions list now.

i trust in the programs i use,

not 100% but enough to know that if i start adding things to exceptions list.

i am putting my computer at risk.

.

Link to post
Share on other sites

  • Root Admin

BitDefender appears to be the one that was doing the blocking and would appear to just be a coincidence that we released our new version as BitDefender now allows updates and we did not make any changes after the release to fix it.

As for adding exclusions that is quite normal to do with Anti-Virus and Firewalls both. I'm not currently aware personally if Avast 6 needs exclusions or not but previous versions did not require them to work with MBAM.

For now I would wait a day or two and see but I'm guessing its simply a false positive from Avast that will be fixed soon.

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.