Page 1 of 2 12 LastLast
Results 1 to 10 of 14

Thread: Flash Player False Positive?

  1. #1
    oldshep Guest

    Default Flash Player False Positive?

    Today I ran a deep inspection scan and ZAAS found a "threat" it identified as Win32.Trojan.PSW.Gamec.ar. The corresponding file is: C:\Windows\system32\macromed\Flash\Flashutil9d.exe (~190k). I think this is a false positive(?). I recently updated the flash player due to a vunerability that was identified. This file is digitally signed by Abode Systems, Inc.
    I submitted it as a false positive to Zonealarm. Anyone have further information?
    Thanks,Oldshep

    Operating System:Windows XP Pro
    Software Version:7.0
    Product Name:ZoneAlarm Anti-Spyware

  2. #2
    oldshep Guest

    Default Re: Flash Player False Positive?

    Further Information: File scans w/ Nod32 and SAS come back clean. Current ZAAS Dat File:01.200708.2115

  3. #3
    Join Date
    Dec 2005
    Posts
    9,057

    Default Re: Flash Player False Positive?

    Hi oldshep

    How are you?

    No spysweeper scans anymore?

    Oldsod
    Best regards.
    oldsod

  4. #4
    woodycab Guest

    Default Re: Flash Player False Positive?

    i too have this win32 trojan psw is there any more info is it a false positive?

  5. #5
    oldshep Guest

    Default Re: Flash Player False Positive?

    Hello Oldsod. I was hoping you wouldn't see this thread LOL :8}
    Spysweeper V5.5 went off like a grenade on my PC so it is currently uninstalled.

  6. #6
    oldshep Guest

    Default Re: Flash Player False Positive?

    Woodycab,
    I'm not an expert on such things but I am assuming that it is a FP on my machine because the file it flagged looks legit. What file did ZA flag on your machine?

  7. #7

    Default Re: Flash Player False Positive?

    Man, ZA just fixed the FP with c:\windows\inf files ...

  8. #8
    Join Date
    Dec 2005
    Posts
    9,057

    Default Re: Flash Player False Positive?

    No kidding. It is kind of bloaty. Did you disable the webroot's email scanner?

    I hear the superantispyware is a good scanner, plus it is free. The NOD32 is good with spyware, so I guess you are covered.

    Oldsod
    Best regards.
    oldsod

  9. #9
    Join Date
    Dec 2005
    Posts
    9,057

    Default Re: Flash Player False Positive?

    Sounds legit and not spyware or malware. Call it a false positive.

    Oldsod
    Best regards.
    oldsod

  10. #10
    oldshep Guest

    Default Re: Flash Player False Positive?

    Their first suggestion was to diable the 'e-mail" shield, then to disable the "self protection" shield, then to uninstall and revert to V5.3, then... I gave up after a while. My brother is still trying to get his machine to work properly (ZAPro 7, NAV, SS 5.5). The best thing he found was to disable the "File Read / Write" shield. I guess this is another new shield in V5.5.
    Anyways, he says he is still seeing some glitches. So I'm waiting to see a new version before trying again.
    Take care,
    Oldshep

Page 1 of 2 12 LastLast

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •