Javascript Disabled Detected

You currently have javascript disabled. Several functions may not work. Please re-enable javascript to access full functionality.

False Positive? Trojan.Bublik RaXnTraX

Started by arkmabat, Jun 17 2013 08:46 PM

Trojan.Bublik RaXnTraX

Please log in to reply

2 replies to this topic

#1 arkmabat

New Member

Members
2 posts

Posted 17 June 2013 - 08:46 PM

So I got quite the surprize when this RaXnTraX [samples_Installer.exe] came up as a "Trojan.Bublik"! Wondering if this file can be verified?

I have a another file [vanilin_midi_kb.exe] in the zip that I'm too scared to run but believe actually is a virus/keylogger. It's hard to tell since it IS supposed to be watching all the keys in order to play midi output from the qwerty keys. Any help appreciated. Thank you.

Here's a link to the Zip.

-----------------------------

Here's the log:

---------------------------

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Database version: v2013.06.17.05

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
User :: 184258ED02734F5 [administrator]

6/17/2013 6:24:04 PM
MBAM-log-2013-06-17 (18-24-51).txt

Scan type: Custom scan (C:\Documents and Settings\User\Desktop\Possible Viruses\vanilin_midi_kb.exe|C:\Documents and Settings\User\Desktop\Possible Viruses\samples_Installer.exe|)
Scan options enabled: File System | Heuristics/Shuriken | PUP | PUM
Scan options disabled: Memory | Startup | Registry | Heuristics/Extra | P2P
Objects scanned: 2
Time elapsed: 7 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 1
C:\Documents and Settings\User\Desktop\Possible Viruses\samples_Installer.exe (Trojan.Bublik) -> No action taken.

(end)

Attached Files

Possible Viruses.zip 7.64MB 14 downloads

Back to top

#2 sUBs

Forum Deity

Moderators
7,226 posts

Posted 17 June 2013 - 10:56 PM

Thank you for reporting this. It's a false positive and shall be fixed in the next update.

sUBs
Research Engineer

Follow us: Twitter, Become a fan: Facebook

Back to top

#3 alstein

New Member

Members
1 posts

Posted Yesterday, 01:17 PM

I have received a false positive from the launcher of Grass Games Solitaire 3-D. This happend twice. Malwarebytes found a trojan in the launcher of that program. When it was removed, the launcher icon didn't work and I had to download the program again. And, I got the same trojan listed when I scanned with Malwarebytes. I contacted the owner who assured me that it was a false positive. That's why I am posting it here.