Jump to content

tmc_pat

Members
  • Posts

    8
  • Joined

  • Last visited

Reputation

0 Neutral
  1. Thank you for the details Aura. Zynthesist, will this information work for you?
  2. Any reason why this website is blocked by Malwarebytes? http://www.societyfordentalethics.org/ Our customers are trying to access it. Virus total comes out clean (0/66 detections) when scanning.
  3. I had an object quarantined this morning at 12AM, it's an executable for a free software. I passed the object through VirusTotal and MBAM is the only one that detected. Is this is a FP? ThreatName Time ObjectScanned Trojan.Kovter 12/28/2015 12:33:30 AM C:\Program Files (x86)\JAM Software\TreeSize Free\TreeSizeFree.exe https://www.virustotal.com/en/file/b12bb542ec758b2d2629e7228f97c0a62b3d67c2b7fddbc4516da8da9cd7ffd0/analysis/1451317220/ TreeSizeFree.zip
  4. I noticed this as well, it would be very useful as we sometimes we have techs run manual scans and they would have to check the results in person as opposed to the console.
  5. MBAM is falsely detecting two files as Trojan.MalPack, Both are tied to HP Card Enrollment software. C:\Program Files (x86)\Hewlett-Packard\Card Enrollment\Enrollment.exe C:\Windows\Installer\1bb7ae.msi (and the software's associated msi installer) VirusTotal scans: https://www.virustotal.com/en/file/08abc40f094b04dc673a65c5a6aa05ed93e75cf1adf2b56880c53d4bf25221bb/analysis/1439472466/ https://www.virustotal.com/en/file/ab91d22e4c51bca974ce7b2617c777f5155e0696f3a3c00e440f9f80f2705973/analysis/1439472684/ 20150813 MBAM FP Trojan MalPack.zip
  6. I would like to agree on all points with Tagin (above). Especially the lack of detail of threats and reporting make it a harder sell to keep using the Enterprise edition in our environment.
  7. This morning, MEE quarantined 100 threats from different clients related to the Fujitsu Scan Snap program, labeling them as "Spyware.Zbot.VXGen". It's the same four .exe's on each client. I restored the four .exe's on one client and ran a scan, attached is the zip file. Nothing new was installed recently, the only difference is the new definitions. ------------------------------------------ Malwarebytes Anti-Malware (MEE) 1.75.0.1300www.malwarebytes.org Database version: v2014.10.20.04 Windows 7 Service Pack 1 x64 NTFSInternet Explorer 8.0.7601.17514Desksupport :: UCT258652PARK [administrator] Protection: Enabled 10/20/2014 10:35:37 AMMBAM-log-2014-10-20 (14-30-11).txt Scan type: Full scan (C:\|)Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM | P2PScan options disabled: Objects scanned: 943563Time elapsed: 41 minute(s), 50 second(s) Memory Processes Detected: 0(No malicious items detected) Memory Modules Detected: 0(No malicious items detected) Registry Keys Detected: 0(No malicious items detected) Registry Values Detected: 0(No malicious items detected) Registry Data Items Detected: 0(No malicious items detected) Folders Detected: 0(No malicious items detected) Files Detected: 4C:\Program Files (x86)\PFU\ScanSnap\CardMinder\CardLaunDone.exe (Spyware.Zbot.VXGen) -> No action taken. [9064c4525725b581c200c1fc6b96a35d]C:\Program Files (x86)\PFU\ScanSnap\CardMinder\CardRegClear.exe (Spyware.Zbot.VXGen) -> No action taken. [6d871df94e2e0b2bdbe7beff639e9c64]C:\Program Files (x86)\PFU\ScanSnap\CardMinder\CardRegRunOff.exe (Spyware.Zbot.VXGen) -> No action taken. [5f955cba43397fb70cb6615c33ce11ef]C:\Program Files (x86)\PFU\ScanSnap\CardMinder\CardRegRunOn.exe (Spyware.Zbot.VXGen) -> No action taken. [b63e0214e795d4623191605d8c7557a9] (end) CardLaunDone.zip
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.