5 replies to this topic

[normishmael]

I get the below hit with Data Base 949 .

Files Infected:
C:\Documents and Settings\norman ishmael\Local Settings\Application Data\GDIPFONTCACHEV1.DAT (Rogue.SpywareDestructor) -> No action taken.

When I follow the follow the file link up to "Applicaton data" I cant locate the file,and I do not know what is is.
I need to know how likely it is to be a false positive,and if I can find out what the file the malware is in does,and if it is safe to quarntine or delete

thanks.

[joe53]

Same here:

Malwarebytes' Anti-Malware 1.20
Database version: 949
Windows 5.1.2600 Service Pack 3

Scan type: Quick Scan

Files Infected:
C:\Documents and Settings\Administrator\Local Settings\Application Data\GDIPFONTCACHEV1.DAT (Rogue.SpywareDestructor) -> No action taken.
C:\Documents and Settings\joseph\Local Settings\Application Data\GDIPFONTCACHEV1.DAT (Rogue.SpywareDestructor) -> No action taken.

I can however, find these files. Viruscan.jotti and VirusTotal says they are clean, and thus are presumptive FPs by MBAM.

[melboy]

Hey, Joe

Its on the FP board. I found it and got the same results from Jotti and VT.

http://malwarebytes.org/forums/index.php?s...amp;#entry22795

[joe53]

All fixed with DB 950.

Now that's fast fixin'!

[normishmael]

Quite a bit of fixin Today.

[antonpaco]

normishmael, on Jul 14 2008, 07:21 PM, said:

I get the below hit with Data Base 949 .

Files Infected:
C:\Documents and Settings\norman ishmael\Local Settings\Application Data\GDIPFONTCACHEV1.DAT (Rogue.SpywareDestructor) -> No action taken.

When I follow the follow the file link up to "Applicaton data" I cant locate the file,and I do not know what is is.
I need to know how likely it is to be a false positive,and if I can find out what the file the malware is in does,and if it is safe to quarntine or delete

thanks.

hello, the file that you are talking about is not a virus, is a false positive, don't worry.