« previous next »
Pages: 1 2 [3]   Go Down

Author Topic: Process [cmdagent.exe], memory block, is infected with Win32:FakeVimes-B [Trj].  (Read 31490 times)

0 Members and 1 Guest are viewing this topic.

MostlyHarmless

  • Guest
Re: Process [cmdagent.exe], memory block, is infected with Win32:FakeVimes-B [Trj].
« Reply #30 on: September 21, 2011, 01:55:38 PM »
Kissbaby, I still receive the process [cmdagent.exe], memory block, Win32:FakeVimes-B [Trj], 'high severity' threat notification whenever I complete any scan which includes a high-sensitivity memory check.
I'm satisfied that Win32:FakeVimes-B [Trj] is merely a fragment of the actual virus which Comodo loads into memory as part of a legitimate process. It's irritating to see it flagged with every Avast! scan, but I can live with it.
« Last Edit: September 21, 2011, 01:58:08 PM by MostlyHarmless »
Logged

Offline Pondus

  • Probably Bot
  • ****
  • Posts: 37533
  • Not a avast user
Re: Process [cmdagent.exe], memory block, is infected with Win32:FakeVimes-B [Trj].
« Reply #31 on: September 21, 2011, 02:10:05 PM »
Quote
It's irritating to see it flagged with every Avast! scan, but I can live with it.
so why dont you remove the "scan memory" from your custom scan setting ?

or use the default quick / full scan with default setting....
Logged

MostlyHarmless

  • Guest
Re: Process [cmdagent.exe], memory block, is infected with Win32:FakeVimes-B [Trj].
« Reply #32 on: September 21, 2011, 04:16:58 PM »
Quote from: Pondus on September 21, 2011, 02:10:05 PM
Quote
It's irritating to see it flagged with every Avast! scan, but I can live with it.
so why dont you remove the "scan memory" from your custom scan setting ?

or use the default quick / full scan with default setting....

Why would I want to lessen the chance of detecting other possible threats?
Logged

Offline Pondus

  • Probably Bot
  • ****
  • Posts: 37533
  • Not a avast user
Re: Process [cmdagent.exe], memory block, is infected with Win32:FakeVimes-B [Trj].
« Reply #33 on: September 21, 2011, 04:19:50 PM »
Quote
Why would I want to lessen the chance of detecting other possible threats?
you wont.....the avast guys have been playing with malware since 1988....they know how this works

So trust the default settings
Logged

Seany007

  • Guest
Re: Process [cmdagent.exe], memory block, is infected with Win32:FakeVimes-B [Trj].
« Reply #34 on: February 14, 2012, 12:11:20 PM »
Quote from: MostlyHarmless on September 21, 2011, 01:55:38 PM
Kissbaby, I still receive the process [cmdagent.exe], memory block, Win32:FakeVimes-B [Trj], 'high severity' threat notification whenever I complete any scan which includes a high-sensitivity memory check.
I'm satisfied that Win32:FakeVimes-B [Trj] is merely a fragment of the actual virus which Comodo loads into memory as part of a legitimate process. It's irritating to see it flagged with every Avast! scan, but I can live with it.

I have same thing here... Time to time... Strange...
Logged

Offline CraigB

  • Avast Überevangelist
  • Serious Graphoman
  • *****
  • Posts: 11239
  • No support PM's thanks
Re: Process [cmdagent.exe], memory block, is infected with Win32:FakeVimes-B [Trj].
« Reply #35 on: February 14, 2012, 12:22:28 PM »
Quote from: Seany007 on February 14, 2012, 12:11:20 PM
Quote from: MostlyHarmless on September 21, 2011, 01:55:38 PM
Kissbaby, I still receive the process [cmdagent.exe], memory block, Win32:FakeVimes-B [Trj], 'high severity' threat notification whenever I complete any scan which includes a high-sensitivity memory check.
I'm satisfied that Win32:FakeVimes-B [Trj] is merely a fragment of the actual virus which Comodo loads into memory as part of a legitimate process. It's irritating to see it flagged with every Avast! scan, but I can live with it.

I have same thing here... Time to time... Strange...
Best to do as Pondus has suggested and remove the scan memory from your custom scan or use the default quick and full scan's.
Logged

true indian

  • Guest
Re: Process [cmdagent.exe], memory block, is infected with Win32:FakeVimes-B [Trj].
« Reply #36 on: February 14, 2012, 12:42:08 PM »
u are having outdated comodo...

update comodo...the latest version is 5.9 see my signature.

that should fix that 8)
Logged

Offline DavidR

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 89061
  • No support PMs thanks
Re: Process [cmdagent.exe], memory block, is infected with Win32:FakeVimes-B [Trj].
« Reply #37 on: February 14, 2012, 06:59:08 PM »
Quote from: Seany007 on February 14, 2012, 12:11:20 PM
Quote from: MostlyHarmless on September 21, 2011, 01:55:38 PM
Kissbaby, I still receive the process [cmdagent.exe], memory block, Win32:FakeVimes-B [Trj], 'high severity' threat notification whenever I complete any scan which includes a high-sensitivity memory check.
I'm satisfied that Win32:FakeVimes-B [Trj] is merely a fragment of the actual virus which Comodo loads into memory as part of a legitimate process. It's irritating to see it flagged with every Avast! scan, but I can live with it.

I have same thing here... Time to time... Strange...

Please don't post in multiple topics about the same thing, it just duplicates the efforts of those trying to help. I have replied in your other topic also.
Logged
Windows 10 Home 64bit/ Acer Aspire F15/ Intel Core i5 7200U 2.5GHz, 8GB DDR4 memory, 256GB SSD, 1TB HDD/ avast! free 24.3.6108 (build 24.3.8975.762) UI 1.0.801/ Firefox, uBlock Origin, uMatrix/ MailWasher Pro/ Avast! Mobile Security

Offline giogio

  • Avast Evangelist
  • Massive Poster
  • ***
  • Posts: 4088
Re: Process [cmdagent.exe], memory block, is infected with Win32:FakeVimes-B [Trj].
« Reply #38 on: February 14, 2012, 07:17:55 PM »
Simply add an exclusion
Quote from: igor on August 12, 2011, 02:19:36 PM
You can set the exclusion (e.g. for the particular scan you created) as follows:
*PROCESS\*\cmdagent.exe
- then the Comodo process won't be scanned at all.
Logged
Prima di scrivere sul forum per favore leggi le istruzioni qui https://forum.avast.com/index.php?topic=144453.0
Non inviatemi MP per supporto,grazie-No support PM please
Home: E8400-4GB RAM-500GB HDD-Win10.0.15063x64-Avast! Free 17.3.2291-CryptoPrevent-MBAM 2.2free-Chrome 57(uBlock origin)-TB52
Work: i5-2400-4GB RAM-500GB HDD-Win 7sp1x64-Avast!Business Security 12.3.2515,     
Cloud Console 2.18 -FF52-TB52

Saulius

  • Guest
Re: Process [cmdagent.exe], memory block, is infected with Win32:FakeVimes-B [Trj].
« Reply #39 on: March 04, 2012, 01:47:57 PM »
Hey that's a good idea Giogio, set exclusions to to memory scans from always detecting things that are harmless but that it regular flags.

I just 'caught' one of those Win32:FakeVimes-B [Trj] heavy alerts in AVG, I figured it was harmless but since it's been a while since I discovered anything I could delete I did so and later checked that AVG is OK, which I keep for backup manual AV scanning, mkay.
Logged

Offline Pondus

  • Probably Bot
  • ****
  • Posts: 37533
  • Not a avast user
Re: Process [cmdagent.exe], memory block, is infected with Win32:FakeVimes-B [Trj].
« Reply #40 on: March 04, 2012, 02:00:27 PM »
Quote
Hey that's a good idea Giogio, set exclusions to to memory scans from always detecting things that are harmless but that it regular flags.
would it not be smarter to not use the memory scan...but default scan settings


Quote
which I keep for backup manual AV scanning, mkay.
running multiple AV can/will create all kind of windows errors and false positive detections

Read reply from quietman7
http://www.bleepingcomputer.com/forums/topic186533.html
Logged
Pages: 1 2 [3]   Go Up
« previous next »