Sign In
Create Account
0
C:/Windows/ACER_NORMAL/Install_Flash_Player_9_AX_9.0.28.0.exe, a 1.12 Mo file should be a FP, detected since the 2008-08-15 definitions
Back to top
#2
Posted 17 August 2008 - 01:42 PM
-
- Root Admin
-
- 4,092 posts
Marcin
- Gender:Male
Can you please ZIP and attach this file.
#3
Posted 18 August 2008 - 05:03 PM
-
- Members
-
- 4 posts
New Member
- Gender:Male
- Location:EEC - FR
Hi,
First, sorry to enter in your post.
I'm in the same case of gdiloren.
Exactly in the file name
Fichier(s) infecté(s):
c:\Windows\acer_normal\Install_Flash_Player_9_AX_9.0.28.0.exe (BHO.Baidu) -> No action taken.
here is my windows file system
Malwarebytes' Anti-Malware 1.25
Version de la base de données: 1066
Windows 6.0.6001 Service Pack 1
23:32:01 18/08/2008
mbam-log-08-18-2008 (23-31-29).txt
is it possible that file is a false positif, cause i'm in France, and the probality ta have the same infected file in the same file is null.
I am ok to send you the bad file but his weight is 1149 ko and tha maw upload is 500 ko.
thanks a lot to answer me asap.
sincerely yours,
Labougie
First, sorry to enter in your post.
I'm in the same case of gdiloren.
Exactly in the file name
Fichier(s) infecté(s):
c:\Windows\acer_normal\Install_Flash_Player_9_AX_9.0.28.0.exe (BHO.Baidu) -> No action taken.
here is my windows file system
Malwarebytes' Anti-Malware 1.25
Version de la base de données: 1066
Windows 6.0.6001 Service Pack 1
23:32:01 18/08/2008
mbam-log-08-18-2008 (23-31-29).txt
is it possible that file is a false positif, cause i'm in France, and the probality ta have the same infected file in the same file is null.
I am ok to send you the bad file but his weight is 1149 ko and tha maw upload is 500 ko.
thanks a lot to answer me asap.
sincerely yours,
Labougie
Keep Moving Forward
#4
Posted 18 August 2008 - 05:28 PM
-
- Administrators
-
- 5,399 posts
Forum Deity
- Location:Northampton, MA USA
Please zip and attach a copy of the file and we can check for sure .
#5
Posted 19 August 2008 - 09:06 AM
-
- Members
-
- 4 posts
New Member
- Gender:Male
- Location:EEC - FR
Hi Nosirrah,
i've cut the file with winrar in three parts but the upload is not permitted, give me a tip to do it correctly.
thanks a lot,
here is the mistake "" Upload failed. You are not permitted to upload this type of file ""
Labougie
i've cut the file with winrar in three parts but the upload is not permitted, give me a tip to do it correctly.
thanks a lot,
here is the mistake "" Upload failed. You are not permitted to upload this type of file ""
Labougie
Keep Moving Forward
#6
Posted 19 August 2008 - 10:27 AM
-
- Administrators
-
- 5,399 posts
Forum Deity
- Location:Northampton, MA USA
Upload the sample here (but in one part) :
http://uploads.malwarebytes.org/
Rename the rar (or whatever you use to compress) to DUSTIN_DONT_DELETE_FP.rar
http://uploads.malwarebytes.org/
Rename the rar (or whatever you use to compress) to DUSTIN_DONT_DELETE_FP.rar
#7
Posted 19 August 2008 - 12:26 PM
-
- Members
-
- 4 posts
New Member
- Gender:Male
- Location:EEC - FR
Hi nosirrah,
i've upload the file to your link without problem, the name is "" DUSTIN_DONT_DELETE_FP.rar ""
in a second time i've checked my computer with the advice of "" Le sioux "", ( french computer forum tips against viruses and so on ) , with http://secunia.com/software_inspector/
my computer is up todate.
so, is i've this file in this place i think it comes from my last restore in june 08.
This file c\windows\acernormal was created in the same time, that the reason why i have this mistake.
i hope the upload help you to find and solve " the false positve ", i think so.
in my case i destroy that bad file cause i'm up todate.
thanks a lot,
i follow this post till you check the upload
bye
Labougie,
i've upload the file to your link without problem, the name is "" DUSTIN_DONT_DELETE_FP.rar ""
in a second time i've checked my computer with the advice of "" Le sioux "", ( french computer forum tips against viruses and so on ) , with http://secunia.com/software_inspector/
my computer is up todate.
so, is i've this file in this place i think it comes from my last restore in june 08.
This file c\windows\acernormal was created in the same time, that the reason why i have this mistake.
i hope the upload help you to find and solve " the false positve ", i think so.
in my case i destroy that bad file cause i'm up todate.
thanks a lot,
i follow this post till you check the upload
bye
Labougie,
Keep Moving Forward
#8
Posted 20 August 2008 - 12:13 PM
-
- Experts
-
- 1,549 posts
Malware Researcher
- Gender:Male
- Location:United States
Confirmed fp,removed. Please update your defs.
#9
Posted 21 August 2008 - 02:00 PM
-
- Members
-
- 4 posts
New Member
- Gender:Male
- Location:EEC - FR
Hi Raid,
when i've done my check-up i was up todated.
sorry i am not sure to understand you well. "" Confirmed fp,removed ""
That is to say that was a false positive Yes / No
Bye
Labougie,
when i've done my check-up i was up todated.
sorry i am not sure to understand you well. "" Confirmed fp,removed ""
That is to say that was a false positive Yes / No
Bye
Labougie,
Keep Moving Forward
#10
Posted 21 August 2008 - 02:11 PM
-
- Experts
-
- 1,549 posts
Malware Researcher
- Gender:Male
- Location:United States
labougie, on Aug 21 2008, 03:00 PM, said:
Hi Raid,
when i've done my check-up i was up todated.
sorry i am not sure to understand you well. "" Confirmed fp,removed ""
That is to say that was a false positive Yes / No
Bye
Labougie,
when i've done my check-up i was up todated.
sorry i am not sure to understand you well. "" Confirmed fp,removed ""
That is to say that was a false positive Yes / No
Bye
Labougie,
Yes sir, it's a confirmed FP and has been removed. Apologies for any inconvenience it may have caused.
1 user(s) are reading this topic
0 members, 1 guests, 0 anonymous users
