Jump to content

Please read before reporting a false positive


RubbeR DuckY

Recommended Posts

  • Root Admin

Before reporting a false positive, you need to save the log. This will allow us to figure out how the false positive came to be. Simply follow these directions.

 

MBAM 1.* instructions for the log:    Discontinued

  • Click the Start Menu.
  • Click Run.
  • Type in "mbam.exe /developer", without the quotes.
  • Run the same type of scan you did before and save the logfile and post it.

 

MBAM 2.* instructions for the log:

 

  1. Open the History tab.
  2. Click Application Logs.
  3. Select the latest Scan Log.
  4. Click the view button in order to review if this is the correct log with the detection listed.
  5. Click the export button below and select to export as *.txt file

MBAM 3.* instructions for the log:

 

  1. Open the Reports tab.
  2. Select the latest Scan Log.
  3. Click the view report button  in order to review if this is the correct log with the detection listed.
  4. Click the export button below and select to export as *.txt file
  5. Save it to somewhere on your computer.

MBAM 4.* instructions for the log:

 

  1. Open the Scanner Box.
  2. Click on the  Detection History Box. 
  3. Mouse over the Scan Report  of correct log with the detection listed to highlight it.
  4. Click the Download/export button give it a name for example: fpreport.txt
  5. Save it to the desktop or somewhere on your computer you can find it.

Attach the scan log with your post.

Additionally, please also attach the detected file with your post.

Make sure it is in ZIP or RAR format.

How to restore a file from Quarantine:

If you suspect an object of being a false positive but it has already been quarantined, you may need to restore the object from quarantine in order to provide it to the Research team for analysis.

  • Open Malwarebytes Anti-Malware and access the Quarantine tab
    • Mbam 2.x and 3.x Click once on the object you wish to restore in order to select it
    • Mbam 4.x Click detection history/ Quarantined Items and Select the check box next to the file you wish to restore.
  • Click on the Restore button and the object will be removed from quarantine and put back into its original location where it was first detected by Malwarebytes Anti-Malware
Edited by AdvancedSetup
Updated instructions for mbam4*
Link to post
Share on other sites

  • 1 year later...
  • Root Admin

If you are not a member of Staff, Experts, or the Trusted Advisors groups, please do not reply to other user posts in either the False  -> FileWeb Blocking, Ransomware, Exploit forums.

Posts from unauthorized members will be deleted

 

Edited by AdvancedSetup
updated information
Link to post
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.