General discussion

Käyttäjän kuva

Possible malware infection at auditmypc.com

ma 2. marraskuuta 2009 00:40:10 — osfijwoei390WEFw23sf

I just visited auditmypc.com/freescan/popup/popup-test.asp with Firefox 3.5.4 on Windows 7 64-bit running Microsoft Security Essentials(MSE) with the latest updates. MSE poppped up an alert box saying that a trojan javascript file has been downloaded into my Firefox cache and provides this link for information on this infection: http://www.microsoft.com/security/portal/Threat/En...

I know that it is auditmypc.com that is sending me this suspicious javascript file because I can reload the URL and MSE will pop up the same alert box. I checked with Wepawet and Google SafeBrowsing and they did not sense anything wrong with auditmypc.com.

So, I'm wondering if anyone here can tell me if this is a false positive or if this is actually a valid infection.

Käyttäjän kuva

auditmypc.com

ma 2. marraskuuta 2009 00:51:18 — evilfantasy

It's a false positive. The pop up test is trying to do things to your browser that MSE sees as suspicious.

Technical Information (Analysis)
TrojanDownloader:JS/Agent.IH is a Javascript trojan that downloads and executes arbitrary files.

MSE doesn't like the Javascript.

Käyttäjän kuva

false positive

ma 2. marraskuuta 2009 02:42:49 — g7w

Agree with evilfantasy
-------
WOT Services Ltd. - gives us safety through Web of Trust.
WOT Community - gives us security through unity.
Thank you all
- G7W

Käyttäjän kuva

auditmypc.com

ma 2. marraskuuta 2009 08:30:49 — samuelrowe

evilfantasy and g7w are right,auditmypc is just doing things that your MSE sees as suspicious.

Käyttäjän kuva

You Might..

ma 2. marraskuuta 2009 10:44:43 — Athlonite

get allot more of these false positives with MSE. It is kinda of new to the market. Although it is replacing Live OneCare, it seems that it hasn't changed it's ways much. I have tried MSE and did not like it. Reverted back to Avira Very quickly.

Am also on W7 and also tried the Firewall integrated with 7. Boy what mess that thing is. It is so tight that it stop my internet connection. I had to reconfigure and spent way too much time on it. Shut it off and went back to PC Tools Firewall Plus. Chose the advanced config. and Voila. Internet back online in just the time to install.

Somethings Never change. BUT, I like W7 though.

Athlonite.

Your help is always needed.

© WOT Services Patentti vireillä