Windows 7 - Malwarebytes false positives?

I scanned my system using Malwarebytes flash scan and here is the Log Files:


1/3/2012 3:24:19 PM
mbam-log-2012-01-03 (15-24-19).txt

Scan type: Flash scan
Scan options enabled: Memory | Startup | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: Registry | File System | P2P
Objects scanned: 139684
Time elapsed: 1 minute(s), 21 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 10
e:\users\public\documents\my pictures\aweks.pikz (Backdoor.Bot) -> Delete on reboot.
e:\users\public\documents\my pictures\my pictures.exe (Worm.AutoRun) -> Delete on reboot.
e:\users\public\documents\my pictures\my pictures.url (Trojan.Zlob) -> Delete on reboot.
e:\users\public\documents\my pictures\sample pictures\blue hills.exe (Trojan.Xanib) -> Delete on reboot.
e:\users\public\documents\my pictures\sample pictures\cakep.exe (Worm.Xanib) -> Delete on reboot.
e:\users\public\documents\my pictures\sample pictures\cuakep.exe (Worm.Xanib) -> Delete on reboot.
e:\users\public\documents\my pictures\sample pictures\sunset.exe (Trojan.Xanib) -> Delete on reboot.
e:\users\public\documents\my pictures\sample pictures\water lilies.exe (Trojan.Xanib) -> Delete on reboot.
e:\users\public\documents\my pictures\sample pictures\winter.exe (Trojan.Xanib) -> Delete on reboot.
e:\users\public\documents\my pictures\seram.pikz (Backdoor.Bot) -> Delete on reboot.

(end)



It says here that the files are deleted on reboot..but when I scanned it again using flash scan it detected the same thing again..
could it be that it's just a false positive?
I'm using windows 7 ultimate x64..
Thanks!

Necro,

No, it may not be getting all of it. What antivirus do you have in addition to Malwarebytes, and why isn't it picking anything up?

:It isn't a false positive if it deletes it, and then it reappears. Its a false positive if it deletes something that isn't a virus.

I'm using Avira Personal edition..but when I look up to the directories where the files are detected, it is missing..

Necro,

could you post a picture, I'm not sure what you mean. I've heard some good and bad things about Avira Personal, and can't say I know how well it performs myself.

You might try this out: Microsoft Safety Scanner

In addition, make sure both avira and Malwarebytes are updated completely and run the full scan on each, one after the other. This will take time. Make sure windows is completely updated, restart, and let me know if the problem persists.

Just put them in quarantine and see if all your programs are still working if so delete it then if not then put them out of the quarantine

Hi,

Be very careful : notice the files are renamed .EXE, they should be .JPG

This was reported as part of a Vista bug a few years ago in the Malwarebytes forums, but you really need to login to the Malwarbytes forums and post this message there.

Regards,
golden

Thanks for the replies!
Actually I'm using a dual boot with Windows Vista and 7 right now.
Maybe I will post this problem at Malwarebytes forum...

You could also upload the files here, where they will be examined by dozens of different antivirus scanners:

VirusTotal - Free Online Virus, Malware and URL Scanner