miekiemoes

Moderators
  • Content count

    8,205
  • Joined

  • Last visited

1 Follower

About miekiemoes

  • Rank
    Forum Deity
  • Birthday 07/19/1975

Contact Methods

  • MSN
    notimetochat
  • Website URL
    http://miekiemoes.blogspot.com

Profile Information

  • Location
    Belgium

Recent Profile Visitors

34,882 profile views
  1. Hi, I can't open above link as OneDrive gives a message already that this file contains malware - so blocked access. I believe most AVs would have a generic detection for above though. So for the latter, we won't remove detection.
  2. Hi, There shouldn't be any issues anymore with this.
  3. Hi, I'll have someone from the Mac team look into this
  4. Hi, This is a false positive indeed and will get fixed in next database update. Thanks for reporting!
  5. No problem
  6. Hi, I can't reproduce detection - this detection was removed for a while already. Your log shows: Base de données de programmes malveillants: v2016.02.16.06 So maybe it's time to update as this database hasn't been updated for 6 months?
  7. Hi, Please update your database. This should not been detected anymore. Thanks!
  8. I think you should be fine - this variant is dead for many years already. This file itself isn't infected though, so there's nothing to worry. We will however remove detection for this file in next database update, as it's not a malicious file. It's just curious your log has all characteristics of this old variant.
  9. You can ignore these if you want - as they won't do anything without the file anyway. In case you need to dequarantine, you only need to dequarantine the file. Can you remember you had this variant (Tzeebot) once in the past? It's a few years old though and not being seen in the wild anymore, where another Antivirus has removed most of it already?
  10. Hi, This file itself doesn't seem to be malicious - but it does seem that you were dealing with this tzeebot trojan in the past - also see here: https://www.sophos.com/en-us/threat-center/threat-analyses/viruses-and-spyware/Troj~Keylog-QI/detailed-analysis.aspx So I suggest you quarantine the items anyway.
  11. Hi, Good, please send me that file, but I suggest you quarantine these afterwards anyway,because I am convinced this is a valid detection (old variant though): https://www.symantec.com/security_response/earthlink_writeup.jsp?docid=2014-120400-5113-99
  12. Hi, Can you dequarantine the items that were found, then reboot and zip and attach the following file please? C:\Program Files\Common Files\InstallShield\Driver\8\Intel 32\IUser8.dll Thanks!
  13. Hi, This detection was removed last week already. Please update your database. Thanks!
  14. Hi, This is a false positive indeed and will get fixed in next database update. Thanks for reporting!!
  15. Hi, Please see here for more instructions how to report a false positive: This means, zip and attach the exact file we are detecting and the log from Malwarebytes where this detection is displayed. That way we can check/verify if this is a false positive or not. Thanks!