Jump to content

advice please. whats this trojan found when scanning


Recommended Posts

can someone advise as to what the below is . havnt used my comp alot since the last scan and my kaspersky picked nothing up.hoping is a false positive.

Objects scanned: 244460

Time elapsed: 1 hour(s), 46 minute(s), 10 second(s)

Memory Processes Infected: 0

Memory Modules Infected: 0

Registry Keys Infected: 1

Registry Values Infected: 1

Registry Data Items Infected: 0

Folders Infected: 0

Files Infected: 0

Memory Processes Infected:

(No malicious items detected)

Memory Modules Infected:

(No malicious items detected)

Registry Keys Infected:

HKEY_CLASSES_ROOT\IMSIDE1EGATE.APPLICATION.1 (Trojan.Agent) -> Quarantined and deleted successfully.

Registry Values Infected:

HKEY_CLASSES_ROOT\IMsiDe1egate.Application.1\(default) (Trojan.Agent) -> Value: (default) -> Quarantined and deleted successfully.

Registry Data Items Infected:

(No malicious items detected)

Folders Infected:

(No malicious items detected)

Files Infected:

(No malicious items detected)

Link to post
Share on other sites

Greetings :)

It does appear that this may be a false positive. Please refer to this post: Read before reporting a false positive!

and post the info here: False Positives and one of our researchers will investigate the issue and respond as to whether or not this is a false positive, and if it is, they will get it corrected. If it is not, then they will advise you on what steps to take next to verify that your PC is clean of infection.

Thanks

Link to post
Share on other sites

The fact that only registry entries were found, and no files were detected. In many cases (though certainly not always) when only registry entries are detected and no files are detected, it can indicate a false positive.

Though I may be wrong in this case, following the directions above will determine which is the case because the researchers will investigate what caused the detection, be it a false positive or an actual infection.

Link to post
Share on other sites

To run a developer scan, simply click on START and click on Run. In the Run box type mbam /developer and press Enter or click on OK. Once Malwarebytes' Anti-Malware opens, select Perform quick scan and click on the Scan button. Once the scan has completed, post the resulting log in your topic in the False Positives forum if it has been requested by the researcher sUBs, who is assisting you there.

As for additional info on the infection, sUBs would be the best one to ask, since he is a member of our research team.

Link to post
Share on other sites

ive done the run developer but when i press ok it comes up as the file cant be found do i want to search for it etc. so then i opened mb manually and im doing the quick scan now.

ive just finished doing a full scan with mb and its come back ok. same with sas and kis

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.