MarkRaven

False Positive on anbmServ.exe (Backdoor.Agent)

5 posts in this topic

Starting on 1/6 several of my Acer emanager files were flagged as Backdoor.Agent. I've had these files forever so I doubt they are infected. Scans still trip an alert for anbmServ.exe. Now the thing is stuck (or so it says in my quarantine) and whenever I can I get four warnings. Attached is my log from a scan log generated while running mbam.exe /developer.

MBAM-log-2013-01-07 (17-27-16).zip

Share this post


Link to post
Share on other sites

Actually this was already fixed about 4 hours ago. please update and let me know if still detected.

Share this post


Link to post
Share on other sites

I've rebooted several times this evening and that's usually when it starts warning me about it and I haven't seen any messages tonight and nothing was triggered on a scan. The only problem left is these multiple entries in the quarantine for the same file. I tried a restore and restore all to no effect. I don't think the file is actually in the quarantine though. I just need a way to nuke those entries. I didn't hit delete or delete all because I wasn't sure if it would just get rid of the quarantine listing or the actual file in the directory.

Share this post


Link to post
Share on other sites

I've rebooted several times this evening and that's usually when it starts warning me about it and I haven't seen any messages tonight and nothing was triggered on a scan. The only problem left is these multiple entries in the quarantine for the same file. I tried a restore and restore all to no effect. I don't think the file is actually in the quarantine though. I just need a way to nuke those entries. I didn't hit delete or delete all because I wasn't sure if it would just get rid of the quarantine listing or the actual file in the directory.

Using Delete and Delete All only removes the quarantined objects, it doesn't remove the objects from their original location.

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!


Register a new account

Sign in

Already have an account? Sign in here.


Sign In Now

  • Recently Browsing   0 members

    No registered users viewing this page.