Windows 10: Windows Defender detects Trojan:Win32/Fuerboos.C!cl in Firefox cache

  1.    22 Oct 2017 #1

    Windows Defender detects Trojan:Win32/Fuerboos.C!cl in Firefox cache


    Is this a false positive? Its detected it at least 3 times now spanning 4 days. Each time it alerts me, I tell it to delete it, then I clear the entire Firefox cache. run Ccleaner (non-infected version) and run Malwarebytes. Only WD is detecting it.

    Running Latest Firefox with Ublock Origin

    ESET online scanner = clean
    MBAM = clean
    TDSSKiller = clean
    AdwCleaner = clean
    Windows Defender = clean (after I tell it to remove the file.)
    Kaspersky Security Scan = Clean

    Click image for larger version. 

Name:	Untitled2.png 
Views:	61 
Size:	10.7 KB 
ID:	159561
      My ComputersSystem Spec


  2. Posts : 9,021
    Windows 10 Pro x64 Build 1803
       22 Oct 2017 #2

    Hi vram.

    When you run MBAM are you using a custom scan to scan all files and drives?

    Ken
      My ComputerSystem Spec

  3.    22 Oct 2017 #3

    Caledon Ken said: View Post
    Hi vram.

    When you run MBAM are you using a custom scan to scan all files and drives?

    Ken
    I can't seem to find that option in the newest version, but I did go directly to the DIR in question and initiate a manual scan with MBAM and it detected nothing.

    Also ran sfc /scannow to check for file corruption. All was good.
      My ComputersSystem Spec


  4. Posts : 9,021
    Windows 10 Pro x64 Build 1803
       22 Oct 2017 #4

    I the newer MBAM, click on Scan, left hand column, then Custom Scan.

    Make sure Kaspersky is also doing full scan.
      My ComputerSystem Spec

  5.    22 Oct 2017 #5

    I changed MBAM to scan everything. Its coming back 100% clean.
      My ComputersSystem Spec


  6. Posts : 9,021
    Windows 10 Pro x64 Build 1803
       23 Oct 2017 #6

    Well time to send to experts and let them have a go of it.

    https://support.malwarebytes.com/docs/DOC-1087


    Ken
      My ComputerSystem Spec

  7.    23 Oct 2017 #7

    Caledon Ken said: View Post
    Well time to send to experts and let them have a go of it.

    https://support.malwarebytes.com/docs/DOC-1087


    Ken
    Gotta wait for it to show up again. Hasn't returned since I manually deleted the Dir in question.
      My ComputersSystem Spec


  8. Posts : 19,429
    windows 10 professional version 1607 build 14393.969 64 bit
       24 Oct 2017 #8

    The links that were seen on google indicated that it was a unique finding using windows defender.
    So all the other scans were clean.
    The issue is/are all of your bank accounts and passwords etc. with the uncertainty.
    Threat encyclopedia changes
      My ComputerSystem Spec


 

Related Threads
my boys want to play minecraft on the lan. so i create a homegroup. with their machines switched off. then i switch on their machines and see the message that i've created a homegroup. so i click 'join' and input the password. and both...
Solved Trojan, Trojan.Generic? in AntiVirus, Firewalls and System Security
Hi! Today i might have got a trojan. I did indeed install a program that redirected me to a site where i think the website downloaded unwanted malware to my PC. The malware that has got control over my PC has completely blacked out my access to...
Hi there, For some reason, Windows is only detecting 100Gb of 1TB drive. The drive is where Windows is installed on. I looked in Disk Manager, thinking that maybe there was space that wasn't be used, but alas it only detects 100Gb. All of the...
Windows Defender - Trojan Dropper Malware in AntiVirus, Firewalls and System Security
Malwarebytes discovered the Trojan Dropper in rundlll.32exe file. Windows Defender (WD) did not detect in a scan performed immediately before. I removed with Malwaebytes and did a follow-up scan with Norton Power Eraser which was negative. ...
Solved Trojan removed by Defender in AntiVirus, Firewalls and System Security
With the last couple of builds it seems that Defender is always finding stuff to remove every time I start Windows 10. This morning I removed Trojan Win32/GHEUGENT.Alplock after Defender quarantined it and marked it severe. Right now I am running...
Our Sites
Site Links
About Us
Windows 10 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 10" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd
All times are GMT -5. The time now is 17:49.
Find Us