Jump to content

Malware or False positive?


Recommended Posts

Posts merged.

Please wait for an authorized helper to respond; otherwise, do not add anymore replies.

Do NOT attach logs / reports when replying. Always Copy & Paste inside main-body or reply.

If you're an MBAM customer, you may contact the consumer help desk here.

If you are in an organization or a corporate customer, contact Corporate Support for assistance.


Malwarebytes marked these files as Spyware (9/27/2012)

C:\Windows\Installer\MSI1470.tmp (Spyware.Password) -> Quarantined and deleted successfully.

C:\Windows\Installer\MSI1EEB.tmp (Spyware.Password) -> Quarantined and deleted successfully.

C:\Windows\Installer\MSIE8D0.tmp (Spyware.Password) -> Quarantined and deleted successfully.

Upon a Full scan, these Adobe file were marked as Spyware, although Eset NoD32 and running Microsoft's Malware Removal tool detected nothing.

Files Detected: 3

C:\Program Files (x86)\Adobe\Adobe Extension Manager CS4\Replace.exe (Spyware.Password) -> No action taken.

C:\Program Files (x86)\Adobe\AdobePatchFiles\{F2323FC8-C86B-42C9-BFBD-6C7DFC41F670}\e6095d49ed2754ed64d4a5887ab3c10a (Spyware.Password) -> No action taken.

C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Resources\template.exe (Spyware.Password) -> No action taken.

Odd they do not appear as if they were altered.

I'm attaching the requested DDS files. I have HiJack This and Roguekiller ready to go.

Please let me know what I need to do. I also have the Pro version of MBAM, so if I need to report this elsewhere let me know.


Update: After some thought it did not make sense the tagged files were malware. I restored the file,ran the scanner and they were tagged as before Spyware.password.

Then I ran MBAM update today and downloaded the updated definitions. I scanned a few times rebooted,scanned again and there are no problems.

Nothing more to add unless someone has picked something up in the dds files.

I just finished setting up this laptop and I did not want to take chances, but it looked like a false positive.

I also completed a full scan after today's definition update. No positives. Still I now have a PRO license and it has Protection enabled next to NOD32.

In the meantime I'll await further word from those who checked my DDS file.




Link to post
Share on other sites

  • 2 weeks later...
  • 2 weeks later...
  • Staff

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

Link to post
Share on other sites

This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.