Windows 7 Forums

Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.


Windows 7: Trojan - Malwarebytes

05 Oct 2011   #1
xxxdannyxxx

Windows 7 Home Premium x64 SP1
 
 
Trojan - Malwarebytes

I'm looking for some advice with this. I've just updated malwarebytes to the new version and this has just popped up. I scanned yesterday and all was fine.MSE detects nothing, just running superantispyware now.

Trojan - Malwarebytes-capture.png

Any help or advice appreciated

Danny




My System SpecsSystem Spec
.
05 Oct 2011   #2
Athene

 

Hi Danny,
Just to be on the safe side and exclude (or confirm) that it is a false positive: post to the Malwarebytes Forum over here and attach your log:
Malwarebytes Forum

I've got false positives from Malwarebytes before (twice), and I checked the forum each time before doing anything in order to get confirmation, and a new definition file fixed the issue.

If those files Malwarebytes flagged happen to be false positives and you delete them, you might end up crippling your computer...So I think it's best to make sure in the Malwarebytes Forum.
My System SpecsSystem Spec
05 Oct 2011   #3
theog

Microsoft Community Contributor Award Recipient

ME/XP/Vista/Win7
 
 

My System SpecsSystem Spec
.

05 Oct 2011   #4
Bill2

Windows 7 x64 pro/ Windows 7 x86 Pro/ XP SP3 x86
 
 

Danny, the flagged files are in the winsxs directory, thats the problem. As you know, that folder holds authoritative versions of OS files that are required to repair corrupted files. Can you afford to have those files deleted? No. Why? as long as the corresponding files in System32 are intact, you shouldn't encounter any problem even if you manage to delete the winsxs files. The problem will arise when you try to update because some components will be missing.

If I were you, I'd just ignore MBAM's findings. If you're very very paranoid, run a repair install.
My System SpecsSystem Spec
05 Oct 2011   #5
Athene

 

Quote   Quote: Originally Posted by Bill2 View Post
If I were you, I'd just ignore MBAM's findings. If you're very very paranoid, run a repair install.
I'd want to make sure and get certainty by going to the Malwarebytes Forum - I think the Malwarebytes programmers contribute to the forum, too, so they will be able to give more information. In this case, I don't think taking immediate action (deleting) or simply ignoring the flagged items without getting more information is a good idea.

I only know that the forum helped me a lot when Malwarebytes give me false positives some time back.
My System SpecsSystem Spec
05 Oct 2011   #6
xxxdannyxxx

Windows 7 Home Premium x64 SP1
 
 

Thanks for your input guys. I had just ignored it up to now as it didn't seem to sit right with me. As Bill2 said jumping in and deleting files from the winsxs folder is liable to bite you back as some point. I've ran 3 online scanners and superantispyware and nothing pinged up on them so I will just post on the Malwarebytes forum and see if a new definition solves the problem.

Thankyou all for your help

Danny
My System SpecsSystem Spec
05 Oct 2011   #7
Golden
Microsoft MVP

Windows 7 Ult. x64
 
 

They are pretty quick with their updates Danny - in the next few updates I doubt this will be flagged again.

Regards,
Golden
My System SpecsSystem Spec
05 Oct 2011   #8
xxxdannyxxx

Windows 7 Home Premium x64 SP1
 
 

Quote   Quote: Originally Posted by Golden View Post
They are pretty quick with their updates Danny - in the next few updates I doubt this will be flagged again.

Regards,
Golden
And as if by magic I've just updated again and re-run and alls clear. Thanks for all your help guys.Its not my area malware and viruses and I am probably on the paranoid side running scans very frequently with various scanners but in 2 years of windows 7 this is only the second item to be brought to my attention so it works for me.

Thanks again

Danny
My System SpecsSystem Spec
05 Oct 2011   #9
Athene

 

So it was a false positive? :-)
Good to know that the latest definition fixed it :-D
My System SpecsSystem Spec
05 Oct 2011   #10
xxxdannyxxx

Windows 7 Home Premium x64 SP1
 
 

Quote   Quote: Originally Posted by Athene View Post
So it was a false positive? :-)
Good to know that the latest definition fixed it :-D
I'm still going to post on there forum however, maybe useful for others.

Here - http://forums.malwarebytes.org/index...howtopic=97047

Danny
My System SpecsSystem Spec
Reply

 Trojan - Malwarebytes




Thread Tools Search this Thread
Search this Thread:

Advanced Search




Similar help and support threads
Thread Forum
Trojan called 'Trojan.Generic.2582177' on my system
Hi, I have Window7 Ultimate 64 bit on my system. I use Bitfender as my antivirus software. This morning it informed me that it has found a file infected with a virus called 'Trojan.Generic.2582177' which it cannot clean. I've contacted Bitfender to see if they know what I should do but haven't...
System Security
Malwarebytes has a new software- Malwarebytes Anti Exploit
has anyone installed this? https://www.malwarebytes.org/antiexploit/ I got an email from Malwarebytes about it I just installed the free version on my windows 8 and windows 7 test machines so far I am not seeing any problems but then again I just installed it :P anyone else try it?
System Security
Malwarebytes
I recently started using Malwarebytes. I have used Macrium for a long time. With Macrium it seems the free version does the job. It lets you do most everything needed, while Malwarebytes does not let you schedule a scan with the free version which I consider a must for a software of that type. ...
Software
Trojan virus malwarebytes
i have a trojan virus that wont go away. its named trojan.agent.hmgen. no matter how many times i delete it with malwarebytes it wont go away.
System Security
Can't delete reg trojan.agent (Malwarebytes)
Hello, I ran a full system scan with malwarebytes and found this: Registry Keys Detected: 1 HKCU\Software\Microsoft\Windows\CurrentVersion\Run (Trojan.Agent) -> Quarantined and deleted successfully. malwarebytes then prompted me to restart my computer, so I did. I ran the scan after...
System Security
Trojan:Win32/FakeSpypro & Trojan:JS/FakeSpypro
A little help,please.Got this trojan earlier.It disabled MSE,MBAM,Internet,CCleaner,and pretty much anything .exe.Claimed everything was infected...so says whatever fake AV program that came with it.(I wish I could figure out how to use the indention tool here)I had to restart,open task manager...
System Security


Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd

All times are GMT -5. The time now is 06:46.

Twitter Facebook Google+



Windows 7 Forums

Seven Forums Android App Seven Forums IOS App