AVAST ALARMED. POSSIBLE ROOTKIT DETECTED?

Hi,
Had an Avast alert red popup this morning.

Possible rootkit detected on todays virus definitions on behavior sheild on max sensitiviy setting.

“C:/WINDOWS/ SYSTEM32 DRIVERS MBAMSWISSARMY. SYS.”

Was running malware bytes at the time? doing a routine scan today.

Need more info if this alarm is true or false or if it is a false alert? or a file related to Malwarebytes? . If it is a true detection will have to scrub my computer then? if it is a rootkit??? :o

That’s what you get when on max sensitivity.

It’s a Malwarebytes file, see http://forums.malwarebytes.org/index.php?showtopic=81945

Congratulations, if that was the only alert avast gave you.

Kwartet! is right it is just due to the high sensitivity you have…
It’s not a malware 100% sure :slight_smile: :wink:

Stay safe :slight_smile:

Bobo1.

Old detection. Weird is back.

Did you have MBAM UI open when Avast! looking for rootkits 8 min after boot ? MBAMSWISSARMY. SYS shows in Drivers only with MBAM UI open or it updates.

http://forum.avast.com/index.php?topic=98405.msg784695#msg784695

For sure a F/P.

Yes i did. And avast does the rootkit check/ scan after computer has booted.
Malwarebytes was running at the time. Avast was not opened to gui at the time just running in the system tray. Alert popped up within 3mins after computer was running.
Poss just a blip?. Was running malwarebytes this morning as a routine check once a fortnight.

Another reason why the Malwarebytes developers suggest excluding there program from antiviruses :slight_smile:

avast behaviour shield has a max sensitivity setting? how did you get that? O.o