Genome.dbpb & Genome.dlyp - False positives? [Resolved]

Recommended Posts

just received these detections. I am concerned that they are false. No other malware scanner is picking these up, and it happened right after updating the a-squared signature files.

Scan type: Deep Scan

Objects: Memory, Traces, Cookies, C:\

Scan archives: On

Heuristics: Off

ADS Scan: On

C:\WINDOWS\system32\dllcache\systray.exe detected: Trojan.Win32.Genome.dbpb!A2

C:\WINDOWS\system32\dllcache\taskman.exe detected: Trojan.Win32.Genome.dlyp!A2

C:\WINDOWS\system32\systray.exe detected: Trojan.Win32.Genome.dbpb!A2

C:\WINDOWS\system32\taskman.exe detected: Trojan.Win32.Genome.dlyp!A2

C:\WINDOWS\TASKMAN.EXE detected: Trojan.Win32.Genome.dlyp!A2

Share this post

Link to post
Share on other sites

Hi AiNt, welcome to the forum

Those are False Positives detections and they were submitted from here already

Please submit them as well from the detection list to EMSI developers for analysis

Despite we should not relay on file names those in particular are legit system files and should not be quarantined or deleted!

My regards

Share this post

Link to post
Share on other sites

Please update

Those were fixed already


{added} The latest update introduced

C:\WINDOWS\system32\dllcache\fxssend.exe detected: Trojan.Win32.Genome.dkzr!A2

The same "Genome" family" ... but that's submitted and will be fixed as well

fxssend.exe - Microsoft Fax Send Note Utility (version 5.2.1776.0 here)

*** edit *** The latter was fixed with the latest update too

Share this post

Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

  • Recently Browsing   0 members

    No registered users viewing this page.