anyone got any ideas on this

Oh man! Ad-blocking software has been detected! :'(

This website is run by the community, for the community... and it needs advertisements in order to keep running. Blocking our ads means your killing our stats!
Please disable your ad-block, or become a premium member to hide all advertisements and this notice.

ESET flagged this up the other day and have quarantined it just incase.

C:\system volume information\_restore{2ED75F99-A604-42A8-9CA5-859C54CCA3CE}\RP148\A0043867.exe probably a variant of Win32/Statik potentially unwanted application

Anyone know anything about this?

 

Oh man! Ad-blocking software has been detected! :'(

This website is run by the community, for the community... and it needs advertisements in order to keep running. Blocking our ads means your killing our stats!
Please disable your ad-block, or become a premium member to hide all advertisements and this notice.

Probably a false positive. Check it with VirusChief - more than likely just some crappily packed executable.

EDIT - my mistake, googling A0043867.exe shows a few HJT logs that seem to mark it as a munged name for a trojan. Have a look on ESET's forums to see whether its really a threat.

 

turn off system restore and scan in safe mode then restart and turn system restore on... there could be a few more nasties on there..

try http://www.virustotal.com/ they very good for malware analysis!

 

I never came accross anything that couldn't be removed by BitDefender online scanner, Malwarebytes Anti-Malware and SuperAntiSpyware combo. Some things left out by one were detected and sorted out by another.

 

No threats found, although I ran Eset in safe mode and had a few unpack errors and a few damaged archive errors.

I also ran the scanners linked by Zeb and Zimbo they found nothing either and I ran Trend Micro too.

 

False positive it is then!

As I've opined on here before - McAfee rules. I've never had it detect a False Positive on me before (in an environment where I can control the detections that is - i.e. under EPO)

 

Never had eset do that to me before, I have submitted the file to their analasys team and let them know that it must be a false positive. Thanks for your help Zeb

I wonder if this due to me changing from policy based mode to automatic.