Does these logs look clean?

Does these logs look clean

Waiting for malwarebytes to complete 8)

And got to do aswmbr 8)

Anthony

Aswmbr bluescreened my computer, but now it is working.

Aswmbr added

Malwarebytes found something

but scanning it via virustotal

https://www.virustotal.com/file/a41734ec1a49555090e28d488a969078d0ba289e02e35c921766ce8475c7fa69/analysis/1347280337/

SHA256: a41734ec1a49555090e28d488a969078d0ba289e02e35c921766ce8475c7fa69

File name: services.exe.mui

Detection ratio: 0 / 42

Analysis date: 2012-09-10 12:32:17 UTC ( 0 minutes ago )

NOTICED I DIDNT UPDATE MALWAREBYTES SCANNING AGAIN

Mbam Log attached 8)

Another services.exe.mui detected by Malwarebytes? See https://forum.avast.com/index.php?topic=104354.msg838298#msg838298

I notice that on the first run with stale signatures, no action was taken. On the second run, Malwarebytes with fresh signatures did not detect this threat.

Is the file still there? Then it must have been a false positive. But maybe this detection was not what caused you to vigorously scan your pc.

Best regards,

Hi Kwartet!

services.exe.mui is in the same location.

virustotal shows this, i think it was a false postive. That was why i clicked ignore 8)

Sigcheck publisher................: Microsoft Corporation product..................: Microsoft_ Windows_ Operating System internal name............: services.exe copyright................: (c) Microsoft Corporation. All rights reserved. original name............: services.exe.mui file version.............: 6.1.7600.16385 (win7_rtm.090713-1255) description..............: Services and Controller app

Im just wondering if my PC is clean from malware 8)

If Malwarebytes removed this detection from their signatures, then it must have been a FP, don’t you agree?

Posted by: Kwartet! « on: Today at 01:47:22 PM » Insert Quote If Malwarebytes removed this detection from their signatures, then it must have been a FP, don't you agree?

Yep i agree to 8)

im just wondering if these are clean

Hope they are

Anthony :smiley:

Are you having any problems ?

Nope i just wondering if the logs are clean? 8)

Look clean to me

thanks for having a look at my logs

Anthony

The reason that caused MBAM to report services.exe.mui is due its heuristics…

Many Anti-malware companies like mbam,comodo etc flag such multi-extension files like .exe.mui in your case as many ransomware and fakeav’s come in as .avi.exe

I have seen these type of FP’s many a times as far the file flagged is digitally signed and is in a non-suspicious location you can just ignore it…I had a paranoid client yesterday with this same case ;D

The anti-malware companies are doing a great job by creating heuristic detection for such files but at the same time many of them are not white-listing legit system files having such double extensions…which they must do :slight_smile:

Posted by: true indian « on: Today at 11:59:30 AM » Insert Quote

The reason that caused MBAM to report services.exe.mui is due its heuristics…

Many Anti-malware companies like mbam,comodo etc flag such multi-extension files like .exe.mui in your case as many ransomware and fakeav’s come in as .avi.exe

I have seen these type of FP’s many a times as far the file flagged is digitally signed and is in a non-suspicious location you can just ignore it…I had a paranoid client yesterday with this same case

The anti-malware companies are doing a great job by creating heuristic detection for such files but at the same time many of them are not white-listing legit system files having such double extensions…which they must do

I know that , i was just wondering if there was any malware on my system. I was doing a bit of computer springcleaning and i just wanted to know.