mbam detects malware in comodo uninstall.exe

RipeRide · October 20, 2009, 7:50pm

Malwarebytes’ Anti-Malware 1.41
Database version: 2998
Windows 6.0.6002 Service Pack 2

10/20/2009 1:33:41 PM
mbam-log-2009-10-20 (13-33-41).txt

Scan type: Full Scan (C:|)
Objects scanned: 344358
Time elapsed: 1 hour(s), 31 minute(s), 18 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 1

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
C:\Program Files\COMODO\COMODO Internet Security\Quarantine\Uninstall.exe (Malware.Packer.Krunchy) → Delete on reboot.
It failed to reboot or delete it. What action should be done?

kail · October 20, 2009, 7:54pm

Hi RipeRide, welcome to the forums.

Wow, nothing. It could be a false positive (FP). Verify the detection at CIMA and VirusTotal. If it is a FP, report it to Malwarebytes. You should really always do this for any detection.

HOWEVER, note that it’s in CIS’s Quarantine folder. It looks like CIS already did something with it. MBAM should not look in other security apps Quarantine folders and CIS should not look at MBAM either. Same goes for all security apps… they should trust each other.

edit: didn’t initially note the folder mentioned.