TrojWare.Win32.TrojanSpy.Inject.~W@16775716

friartuck · October 26, 2009, 3:21pm

Hi,

Comodo picked this up twice yesterday on my netbook.

Any idea what it is … and what i need to do next ?

Details are :-

C:\Documents and Settings.…\Local Settings\Temp\QUyaghg3.exe.part

TrojWare.Win32.TrojanSpy.Inject.~W@16775716

Thanks

Citizen_K · October 26, 2009, 10:25pm

Since it is in your temp files is more than likely not needed. Simply let the AV quarantine it.

friartuck · October 27, 2009, 12:49pm

Thanks for the reply.

If it helps anyone , I found out that the file causing the problem was downloaded from http://download.cnet.com

Pfipps · October 27, 2009, 5:09pm

If it is from cnet, the file was most likely a false positive.

friartuck · October 27, 2009, 7:36pm

Thanks … I’m being to suspect “false positive”, as it just happened again while browsing “Hotmail” with firefox.

C:\Documents and Settings.…\Local Settings\Application Data\Mozilla\Firefox\Profiles\8z2x1o1i.default\Cache\CF9FF5C7d01

OmeletGuy · October 27, 2009, 8:03pm

Moved this to FP board.

system · October 28, 2009, 12:50am

Hi friartuck,

If you can find the FP file,you can submit through this link:Comodo Firewall | Get Best Personal Firewall Software for $29.99 A Year we can go to have a look at it.

Thanks and Regards,
hailong.■■■■

friartuck · October 28, 2009, 5:34pm

Thanks … I’ve now posted one of the files

e_xistense · October 29, 2009, 12:02pm

Hi,

The false-positive is already fixed with DB 2767. You can check and confirm.

Thanks,
Ionel