Malwarebytes infected files

cozzielex · Jun 16, 2010

I am protecting my PC with MS Security Essentials and the above MBAM. The latter seems to pick up infected files which are missed (or ignored) by MSSE, as happened today.
I am wondering does MBAM pick up 'false positives'(I think they are called) any way I am attaching below the MBAM showing the files which I have removed.
If anyone thinks this is worthy of note I would be obliged for an opinion.
Thank you
Malwarebytes' Anti-Malware 1.45
www.malwarebytes.org

Database version: 4197

Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702

16/06/2010 17:45:55
mbam-log-2010-06-16 (17-45-55).txt

Scan type: Full scan (C:\|)
Objects scanned: 230673
Time elapsed: 1 hour(s), 15 minute(s), 23 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 2

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
C:\System Volume Information\_restore{A6551856-A8D4-4B4D-9AFA-951D286486A1}\RP343\A0057386.exe (Malware.Packer.Gen) -> No action taken.
C:\System Volume Information\_restore{A6551856-A8D4-4B4D-9AFA-951D286486A1}\RP343\A0057377.exe (Malware.Packer.Gen) -> No action taken.

TimW · Jun 16, 2010

All it showed was infections in your system restore folders. The only way to remove them is to toggle system restore. Is this the only issue you have?

cozzielex · Jun 16, 2010

Thanks for your response Tim; Yes, that's the only issue and MBAM removed them.
I don't want to appear dim, but what do you mean by 'toggle system restore' and can you also tell me why these 'infections' only appear in MBAM?.

TimW · Jun 16, 2010

Why only MBAM finds these is just a mater of how they write their definitions.

Refer to the cleaning procedures pointed to by step 7 of the READ ME
for your Window version and see the instructions to Disable System Restore which will flush your Restore Points.

Then reboot and Enable System Restore to create a new clean Restore Point.

cozzielex · Jun 17, 2010

Thanks for your explanation Tim. I have followed the instructions you referred me to. How often should this be done, e.g. does it rely on the number of times you have created a restore point? I ask that because I did that several times recently whilst making changes to my computer.
Thanks for your time.

TimW · Jun 17, 2010

The only times you need to toggle system restore is when you find that one or more of your restore points are infected. Even when we are working to remove infections, we want you to keep your restore points until we are done just in case we need to use it, as it would be better sometimes to have an infected restore point rather than no restore points at all.

cozzielex · Jun 17, 2010

Ok Tim, thanks for that, I understand now.
Is there a way to mark a thread as resolved in this forum?

TimW · Jun 17, 2010

We don't close threads, except for exceptional reasons. Just in case the OP comes back within a few days and is still having issues.

And you are most welcome.

cozzielex · Jun 17, 2010

Thanks Tim,

TimW · Jun 18, 2010

No problem, safe surfing.

Log in or Sign up

Malwarebytes infected files

cozzielex Private E-2

TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

cozzielex Private E-2

TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

cozzielex Private E-2

TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

cozzielex Private E-2

TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

cozzielex Private E-2

TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member