Penny Arcade Forums Help / Advice Forum
The new forums will be named Coin Return (based on the most recent vote)! You can check on the status and timeline of the transition to the new forums here.
The Guiding Principles and New Rules document is now in effect.

Is this actually spyware?

HiroconHirocon Registered User regular
edited January 2010 in Help / Advice Forum
I'm running Windows 7 64-bit and avast! version 4.8 home edition. I left the computer on while I went to have dinner, running folding@home and Steam and maybe a few other seemingly harmless programs. No browsers were open. When I returned to my computer, there was a popup from avast! saying that spyware had been found:

File name: C:\Program Files (x86)\Electronic Arts\The Battle for Middle-earth (tm) II\Support\The Battle for Middle-earth II_uninst.exe
Malware name: Win32:Spyware-gen [Spy]
Malware type: Spyware
VPS version: 100120-1, 01/20/2010

When I select "Move to chest", I get the error message

avast!: Access is denied
Cannot process "C:\Program Files (x86)\Electronic Arts\The Battle for Middle-earth (tm) II\Support\The Battle for Middle-earth II_uninst.exe" file

The file seems like a legitimate program, so I suspected this was just a false positive until I discovered that I couldn't move the file to the chest. Is it possible the program has somehow been infected with spyware? If so, how do I get rid of it?

Hirocon on

Posts

  • TetraNitroCubaneTetraNitroCubane Not Angry... Just VERY Disappointed...Registered User regular
    edited January 2010
    If you can still access the file, upload the executable in question to VirusTotal. Take a look at how many of the 41 virus vendors consider it infected. If it's just Avast!, chances are you're dealing with a false positive. If they all light up, something nasty might've infested that file.

    Either way, I'd suggest downloading, installing, and updating MBAM, and then doing a full scan. If nothing else, it'll give you peace of mind!

    TetraNitroCubane on
  • CrazybirdladyCrazybirdlady Registered User new member
    edited January 2010
    While I'm a complete novice when it comes to viruses and the likes, I think this is a false positive. I'm also running windows 7 64bit and avast home (as well as pro edition of Malwarebytes). When I was attempting to install Black and White 2 for the first time today, I got an identical message only diff game obv, but it was the unist.exe file. Couldnt remove or delete so I just gave up and decided I have a million games anyway :p

    Running a thorough scan (inc archive files) with MWB and Avast has turned up nothing.

    Oh forgot to add - Black and White is also made by EA.

    Crazybirdlady on
Sign In or Register to comment.
Penny Arcade Forums Help / Advice Forum