Malwarebytes false positives?

I scanned my system using Malwarebytes flash scan and here is the Log Files:


1/3/2012 3:24:19 PM
mbam-log-2012-01-03 (15-24-19).txt

Scan type: Flash scan
Scan options enabled: Memory | Startup | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: Registry | File System | P2P
Objects scanned: 139684
Time elapsed: 1 minute(s), 21 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 10
e:\users\public\documents\my pictures\aweks.pikz (Backdoor.Bot) -> Delete on reboot.
e:\users\public\documents\my pictures\my pictures.exe (Worm.AutoRun) -> Delete on reboot.
e:\users\public\documents\my pictures\my pictures.url (Trojan.Zlob) -> Delete on reboot.
e:\users\public\documents\my pictures\sample pictures\blue hills.exe (Trojan.Xanib) -> Delete on reboot.
e:\users\public\documents\my pictures\sample pictures\cakep.exe (Worm.Xanib) -> Delete on reboot.
e:\users\public\documents\my pictures\sample pictures\cuakep.exe (Worm.Xanib) -> Delete on reboot.
e:\users\public\documents\my pictures\sample pictures\sunset.exe (Trojan.Xanib) -> Delete on reboot.
e:\users\public\documents\my pictures\sample pictures\water lilies.exe (Trojan.Xanib) -> Delete on reboot.
e:\users\public\documents\my pictures\sample pictures\winter.exe (Trojan.Xanib) -> Delete on reboot.
e:\users\public\documents\my pictures\seram.pikz (Backdoor.Bot) -> Delete on reboot.

(end)



It says here that the files are deleted on reboot..but when I scanned it again using flash scan it detected the same thing again..
could it be that it's just a false positive?
I'm using windows 7 ultimate x64..
Thanks!

DustSailor said:

Necro,

No, it may not be getting all of it. What antivirus do you have in addition to Malwarebytes, and why isn't it picking anything up?

:It isn't a false positive if it deletes it, and then it reappears. Its a false positive if it deletes something that isn't a virus.

I'm using Avira Personal edition..but when I look up to the directories where the files are detected, it is missing..

Golden said:

Hi,

Be very careful : notice the files are renamed .EXE, they should be .JPG

Code:

 
e:\users\public\documents\my pictures\sample pictures\sunset.exe

This was reported as part of a Vista bug a few years ago in the Malwarebytes forums, but you really need to login to the Malwarbytes forums and post this message there.

Regards,
golden

Thanks for the replies!
Actually I'm using a dual boot with Windows Vista and 7 right now.
Maybe I will post this problem at Malwarebytes forum...

NecroticisM666 said:

Thanks for the replies!
Actually I'm using a dual boot with Windows Vista and 7 right now.
Maybe I will post this problem at Malwarebytes forum...

You could also upload the files here, where they will be examined by dozens of different antivirus scanners:

VirusTotal - Free Online Virus, Malware and URL Scanner