Is "Chameleon"svchosts.exe a valid MBAM Program File?

[sandybeach]

the file is located here:

C;\program files\malwarebytes anti-malware (chameleon ) svchost.exe.

For 1st time ever SAS found & tagged it as a "trojan dropper/svchost fake".

I suspect it's a false positive so didn't quarantine it.

In other posts here I saw the chameleon seemingly listed as part of MBAM.

Thanks! Sandy

P.S. I'm posting this on an XP laptop w/ Firefox. I previously tried to post w/ my old Sea Monkey 1.x

and COULD sign in & enter "topic title" line but could not enter /type into the main post (no cursor showed, the main post box just moved up or down). So could not post at all!! Aaargh!

.

[AdvancedSetup]

The following files are valid files in the Chameleon folder.

C:\Program Files (x86)\Malwarebytes' Anti-Malware\Chameleon

• chameleon.chm
  
• firefox.com
  
• firefox.exe
  
• firefox.pif
  
• firefox.scr
  
• iexplore.exe
  
• mbam-chameleon.com
  
• mbam-chameleon.exe
  
• mbam-chameleon.pif
  
• mbam-chameleon.scr
  
• mbam-killer.exe
  
• rundll32.exe
  
• svchost.exe
  
• winlogon.exe
  

Basically all of the files are the same file only named differently in order to hopefully allow it to bypass certain malware infection that try to prevent Malwarebytes or other security programs from running.

[sandybeach]

Hi, AdvancedSetup ! Thanks ever so much for your quick & definitive reply.

I'll notify SAS of the F.P. later tonight.

Best Wishes for the Happy Holidays at hand!! Malwarebytes Rocks!!! Sandy

[AdvancedSetup]

You're welcome. Merry Christmas and Happy New Year to you and everyone else as well

Cheers