2 posts in this topic



OS - Windows 7 Home Premium (64-Bit) (clean install) (fully updated)



I normally run Kaspersky Internet Security 2011 with all protection enabled. On alternate weeks I do a full scan with Kaspersky and the free MalwareBytes scanner.


Today, MalwareBytes detected the following:




and quarantined it. The MalwareBytes log file contains this entry:


c:\Windows\winsxs\x86_microsoft-windows-bits-bitsadmin_31bf3856ad364e35_6.1.7600.16385_none_4ce7e7256dbfa16f\bitsadmin.exe (Trojan.FakeMS) -> Quarantined and deleted successfully.


Kaspersky detected nothing before this nor anything in a full scan after MalwareBytes had quarantined it.


Can I now be confident that my system is clean?


My GSI can be found here:


Many Thanks



Share this post

Link to post
Share on other sites


please send that file to malwarebytes. The file c:\Windows\winsxs\x86_microsoft-windows-bits-bitsadmin_31bf3856ad364e35_6.1.7600.16385_none_4ce7e7256dbfa16f\bitsadmin.exe exists on a clean windows installation. It doesn't mean that a malware can't replace it with it's own, but it can also be that it's a false alarm from malware bytes.

Share this post

Link to post
Share on other sites
This topic is now closed to further replies.