MalwareBytes files detected as suspicious

gisot · January 12, 2013, 8:31pm

Latest Comodo AV database 14891 detects MalwareBytes’s AntiMalware program subfolder (Chameleon) as suspicious. See attached photos. I did scan the folder with emsisoft emergency kit (with the latest updates) and it found nothing, so it probably is false positive. Please fix the database. Thanks

[attachment deleted by admin]

Chiron494 · January 12, 2013, 10:16pm

Can you please take all the files which are flagged as suspicious, put them in a zip file, and attach them to your next post?

Thanks.

gisot · January 12, 2013, 11:24pm

I can see that all detected files are from the chameleon subfolder of malwarebytes antimalware’s program folder. Attached in the zip file, no password.

[attachment deleted by admin]

Chiron494 · January 12, 2013, 11:48pm

When I scan the files in the zip folder he attached to his previous email CIS also tells me that they are suspicious.

siketa · January 12, 2013, 11:50pm

Latest MBAM version is 1.71.

gisot · January 13, 2013, 12:05am

MalwareBytes Anti-Malware that I’m using says the version number is 1.70.0.1100
I can verify the same detections with Comodo Cleaning Essentials.
Basically, install the latest version of MalwareBytes Anti-Malware program and scan it with Comodo AV and you will see the detections of Malwarebytes files as suspicious.

gisot · January 13, 2013, 2:01am

Chunli.Chen, here is the link I download the installation file for MalwareBytes Anti-Malware 1.70.0.1100 from:

Chunli · January 13, 2013, 3:54am

Hi,gisot

Thank you for reporting this.
We’ll fix it and get back to you soon.

Best regards
Chunli.chen

siketa · January 13, 2013, 5:58am

Why don’t you update it to the latest version?

srinivasang · January 13, 2013, 11:45am

Hi gisot,

This is to inform you that false-positive has been fixed.
You can update to AV database Version <14897> of Comodo Internet Security Version<6.0.260739.2674> and confirm it.
If you still experience any problem,please let us know.

Regards,
Srinivasan.G

gisot · January 13, 2013, 5:46pm

Srinivasan.G, I can confirm that with the latest update (14899) the false positive detection has been fixed. Thank you.

Siketa, where did you download that version number (1.71) from? Usually the program updates itself automatically whenever there is a program update available, and most of the sites still have 1.70.0.1100 as latest version of Malwarebytes Anti-Malware.

emanresuoseehc · January 15, 2013, 5:44am

Indeed, even Malwarebytes’ official website directs you to a download of 1.70 (at Cnet.com)
Rather strange.

Edit: Siketa, are you sure you have 1.71? If you google it, you can only see one website offering it for download, and it is a rather questionable one with a ‘suspicious’ rating by zulu.scaler.

siketa · January 15, 2013, 8:39am

Sorry, guys…my bad.
Latest version is really 1.70.
:-[