False positives from MBAM?

I don't think this belongs in the malware forum 'cuz I'm not having issues removing the malware, it's going along fine, I just have some questions about possible false positives in MalwareBytes. My experience with MBAM has been great and rarely (if ever) get false positives, but take a look at the screen shot below and tell me if these are false positives, or if they are rogue entries....

(this is a scan run on Aug 11 at 5:40pm Pacific Time; MalwareBytes v1.40 and database 2605)

 

Looks legit enough, rolleyesC:\Program Files\Microsoft Commonrolleyes. Looks like you travel through some rough neighborhoods, dirt bags throwing rocks at your Windows.:-D
Got Root ? Looking on the bright side, MBAM will run.

 

Luckily, it's not my PC LOL I just found it odd that MBAM hit on an IE file, a Firefox file, and possibly some Avast Antivirus files....

(BTW- I've seen "Got Root?" here and there on the web... WTF does "Got Root?" mean anyway?)

 

I usually use Linux operating systems at home these days, do work on the side on other peoples Windows computers. Root is like a superuser or Administrator, and has rights on the PC no regular user does. Helps to keep out the bad elements. If you have a problem with an account other than root simply delete it, which hasn't happened in over 2 years of using the operating system. But you shouldn't surf the internet with the root account, or an Administrator Account using Windows, unless you take extra precautions. No defrag or antivirus needed either, although I run Avast on Linux from time to time (just a scan, no active protection) as I dual boot and share files with XP and 7.

 

OK- thanks for the "root" explanation

So, can anyone shed some light on the files listed in the MBAM screen shot? Are they false positives (I think they are)? If so, they would be among the first I've seen from MBAM. I'm going to run a scan with Super Antispyware today and compare it with the MBAM results and see if SAS hits the same files....

 

They look just the type of files that may be added by malware - correct names but in the wrong folders. Upload them to virustotal.com, post links to each result back here.

 

There is definitely something wrong. Avast does not use AntiVirus.exe. http://www.bleepingcomputer.com/startups/AntiVirus.exe-8659.html

It might be an infected machine or a cracked version of Avast. Gut feeling is a Virut infection but obviously that's just speculation.

That along with the setupapi.dll being flagged I would run and updated Dr Web CureIt on the computer. Or better yet the Avira Rescue CD.

 

I vote for malware
This is on Avast!antivirus.exe from Prevx
http://www.prevx.com/filenames/1627514176502111230-X1/AVAST!ANTIVIRUS.EXE.html

I'm sure the other things should be removed too.