Stompa
-
Posts
6 -
Joined
-
Last visited
Content Type
Events
Profiles
Forums
Posts posted by Stompa
-
-
One of its strings says: "3rdeye_tb_hacking_dll", which brings me here: http://www.flashjester.com/?section=tricks_creator
Anyone of you have this installed?
According to google, looks like many scanners have been flagging this file as well, which actually doesn't suprise me since this file doesn't have a version present - and that makes files extra suspicious
Anyway, I'll pass it on so detection will be removed.
Thanks for this info. I've not had flashjester installed. However, I was working on a software development project a few years ago with someone who was using Jugglor, which gets a mention here:
http://www.flashjester.com/forum/showflat....4&Main=5482
and the 21504 filesize matches my file. I was running software that he had produced so I guess maybe it got installed then. This would mean that it has been on my PC for several years. Given that you mentioned that this detection has been in the database for a long while, is there any reason why it should only have flagged the file now? I've run Malwarebytes 7 times in the last 16 days, and it didn't flag this file on any of those occasions.....
-
I had exactly the same file flagged by my daily SAS scan this morning (for the very first time) (MBAM quick scan was clear). I intended to do some research before posting about his. I'm at the office now but, if wanted, I'll post both logs this evening when I'm at home.
Interesting. I've just done an SAS scan and it was clear. It didn't flag this file.
-
Even though none of the scanners flag it as infected, why do you suspect this file is legitimate?
I'm basing that on the multiple scanner result.
Can you tell me what program installed it?Unfortunately not. If the file date is anything to go by it's been present on my PC for around 3 years.
A quick googlesearch also shows that this file means trouble.Funny that no one reported this as a possible False positive previously since this detection is already present for a long time in the database.
Interesting. I've done a number of malwarebytes scans in the last few weeks, and this is the first time it's been reported (which I guess makes it more suspicious).
Anyway, it's always a good idea to upload the file here: http://www.malwarebytes.org/forums/index.php?showforum=55Thank you
OK, I've done so. Thanks.
-
Malwarebytes has just flagged up C:\WINDOWS\jestertb.dll as being Trojan.Agent.
Here's the log:
----------
Malwarebytes' Anti-Malware 1.36
Database version: 2053
Windows 5.1.2600 Service Pack 2
28/04/09 09:43:05
mbam-log-2009-04-28 (09-42-55).txt
Scan type: Quick Scan
Objects scanned: 81899
Time elapsed: 2 minute(s), 56 second(s)
Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 1
Memory Processes Infected:
(No malicious items detected)
Memory Modules Infected:
(No malicious items detected)
Registry Keys Infected:
(No malicious items detected)
Registry Values Infected:
(No malicious items detected)
Registry Data Items Infected:
(No malicious items detected)
Folders Infected:
(No malicious items detected)
Files Infected:
C:\WINDOWS\jestertb.dll (Trojan.Agent) -> No action taken. [3857535134303627615642473748565261757084857083856715697777]
----------
I've submitted jestertb.dll to VirusTotal, and none of the scanners report it as being suspicious. Could this be a false positive?
Thanks
jestertb.dll
in File Detections
Posted
Hmmm, I'm pretty sure the file must have been there a long time. Either way, I'm now reasonably sure that it's safe to leave it. Thanks very much for your help and speedy response.