Sign In
Create Account
1
Hello, I found a disscussion about Click-Me.exe in diffrent forumīs ...
For example:
http://forum-en.msi....pic=113010.0%29
Can anybody this File exact and analyse, if this Malware or Not ?
And can us tell for that this Click-Me.exe are is, what function and so on ...?
A first look, bring this result: CLEAN from Jotti.
: http://virusscan.jotti.org/en/scanresult/5...4db8fca5d20d904
Downloadlink from the pretended "Malware File", ******************************* this file i am uploadet by Jotti.
Can anybody test this File ?
MAM
-
This topic is locked
#1
Posted 07 September 2009 - 06:38 PM
-
- Honorary Members
-
- 745 posts
Elite Member
- Gender:Male
Windows XP home, SP3, all updates after SP3, Fire Fox 3.6.3, Internet Explorer 8.0.6001.18702, 2.4 Ghz slow computer, with 1 GB RAM, two hard drive.
Back to top
#2
Posted 07 September 2009 - 07:19 PM
-
- Trusted Advisors
-
- 5,528 posts
Mostly Cantankerous
- Gender:Male
- Location:Fortville, IN
The name is "Click-Me.exe", it's 164KB, and it requires admin rights to run. Yes, it is malware.
Quote
For we wrestle not against flesh and blood, but against principalities, against powers, and against the worldly governors, the princes of the darkness of this world...
#3
Posted 07 September 2009 - 08:17 PM
-
- Honorary Members
-
- 745 posts
Elite Member
- Gender:Male
GT500, on Sep 7 2009, 07:19 PM, said:
The name is "Click-Me.exe", it's 164KB, and it requires admin rights to run. Yes, it is malware.
Ohonest, but Why can not this Malware the most AV vendors discover ?
Is this realy Malware ???
And Malwarebytes' Anti-Malware can not do this too, detecting and removing this ?
But you have now some hintīs, and you took this Malware/ Sample in your signatures/fingerprints now, ok ?
And please come not a round, the corner this the "statement" we will not put such old Malware in our signatures/fingerprints.
Give this some evidence about that File, or "Malware" ?
MAM
Windows XP home, SP3, all updates after SP3, Fire Fox 3.6.3, Internet Explorer 8.0.6001.18702, 2.4 Ghz slow computer, with 1 GB RAM, two hard drive.
#4
Posted 07 September 2009 - 09:11 PM
-
- Moderators
-
- 16,155 posts
Malware BBQ'er
- Gender:Male
- Location:127.0.0.1
Mam,
I am a Malwarebytes researcher and will look at this file tomorrow to see if it performs any malicious behaviour and whether it needs to be added to the MBAM database.
I have moved this topic to RogueNet forum because you have posted a potential malware source in a help sub forum( PC Help)....this really should not have happened.
If you have suspected/new malware this is the only subforum where you should post a report like that too.
This sub-forum is good for posting about new/suspected malwares as visitors to this part of our forums know that samples here are reported because we do not detect them at the time of posting.
Thanks for your understanding
I am a Malwarebytes researcher and will look at this file tomorrow to see if it performs any malicious behaviour and whether it needs to be added to the MBAM database.
I have moved this topic to RogueNet forum because you have posted a potential malware source in a help sub forum( PC Help)....this really should not have happened.
If you have suspected/new malware this is the only subforum where you should post a report like that too.
This sub-forum is good for posting about new/suspected malwares as visitors to this part of our forums know that samples here are reported because we do not detect them at the time of posting.
Thanks for your understanding
#5
Posted 08 September 2009 - 07:36 AM
-
- Honorary Members
-
- 745 posts
Elite Member
- Gender:Male
Ok thanks for the ansewer in this issue.
I can wait.
MAM
I can wait.
MAM
Windows XP home, SP3, all updates after SP3, Fire Fox 3.6.3, Internet Explorer 8.0.6001.18702, 2.4 Ghz slow computer, with 1 GB RAM, two hard drive.
#6
Posted 08 September 2009 - 01:49 PM
-
- Moderators
-
- 16,155 posts
Malware BBQ'er
- Gender:Male
- Location:127.0.0.1
Ok Mam,
After examining the file here are my findings.
It exhibits no malicious behaviour and will not be added to the MBAM database.
Closer inspection inside of the hex reveals it is a support file for an uninstaller package.
Despite the dubious naming protocol this is not malware file
After examining the file here are my findings.
It exhibits no malicious behaviour and will not be added to the MBAM database.
Closer inspection inside of the hex reveals it is a support file for an uninstaller package.
Despite the dubious naming protocol this is not malware file
1 user(s) are reading this topic
0 members, 1 guests, 0 anonymous users
