HiJackThis v1.99.1 infected on TX mirror site?

Discussion in 'Malware Help - MG (A Specialist Will Reply)' started by dkleucht, Aug 15, 2005.

  1. dkleucht

    dkleucht Private E-2

    Hi,

    Last week I suffered an infection of the ABI Nail spyware. In learning how to remove it, I downloaded a copy of HiJackThis, v1.99.1 from one of the two Texas mirror sites pointed to at the MajorGeeks website (.../nailbolderaurora_remover_d4609.html). After cleaning up the spyware infection, I got around to running McAfee's anti-virus tool and the McAfee reports that HiJackThis was infected with the W32/Generic.worm!p2p

    Does anyone know if this is a false positive on the part of McAfee?

    Specifics for McAfee are: v4.5.1, Defns file: 4.0.4345

    (I know the virus DB is outof date, but I cant update at this time, the machine IP is blocked by my employer, they saw the ABI spyware go out and blocked me immediately, shortly after infection)

    Thanks--Dave
     
    dkleucht, Aug 15, 2005
    #1
  2. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    It is a false positive from McAfee. Your virus definitions are way out of date (also check your scan engine version). You need to update or you will not be able to use HijackThis and a few other tools unless you disable McAfee.
     
    chaslang, Aug 15, 2005
    #2

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds