PDA

View Full Version : Fixed: RegClean


Tattenbach
2008-02-29, 15:19
I believe this is a False Positive. Could you please confirm? Thanks!


--- Search result list ---
RegClean: [SBI $48FF42FD] Executable (File, nothing done)
C:\Program Files\RegClean\RegClean.exe

--- Spybot - Search & Destroy version: 1.5.2 (build: 20080128) ---

2008-01-28 blindman.exe (1.0.0.7)
2008-01-28 SDDelFile.exe (1.0.2.4)
2008-01-28 SDMain.exe (1.0.0.5)
2007-10-07 SDShred.exe (1.0.1.2)
2008-01-28 SDUpdate.exe (1.0.8.8)
2008-01-28 SDWinSec.exe (1.0.0.11)
2008-01-28 SpybotSD.exe (1.5.2.20)
2008-01-28 TeaTimer.exe (1.5.2.16)
2006-12-28 unins000.exe (51.41.0.0)
2008-02-29 unins001.exe (51.49.0.0)
2008-01-28 Update.exe (1.4.0.6)
2008-01-28 advcheck.dll (1.5.4.5)
2007-04-02 aports.dll (2.1.0.0)
2005-05-31 borlndmm.dll (7.0.4.453)
2005-05-31 delphimm.dll (7.0.4.453)
2007-11-17 DelZip179.dll (1.79.7.4)
2008-01-28 SDFiles.dll (1.5.1.19)
2008-01-28 SDHelper.dll (1.5.0.11)
2008-01-28 Tools.dll (2.1.3.3)
2005-05-31 UnzDll.dll (1.73.1.1)
2005-05-31 ZipDll.dll (1.73.2.0)
2008-02-27 Includes\Cookies.sbi (*)
2007-12-26 Includes\Dialer.sbi (*)
2008-02-27 Includes\DialerC.sbi (*)
2008-02-27 Includes\HeavyDuty.sbi (*)
2008-02-20 Includes\Hijackers.sbi (*)
2008-02-27 Includes\HijackersC.sbi (*)
2008-02-27 Includes\Keyloggers.sbi (*)
2008-02-27 Includes\KeyloggersC.sbi (*)
2004-11-29 Includes\LSP.sbi (*)
2008-02-27 Includes\Malware.sbi (*)
2008-02-27 Includes\MalwareC.sbi (*)
2008-02-20 Includes\PUPS.sbi (*)
2008-02-27 Includes\PUPSC.sbi (*)
2008-02-27 Includes\Revision.sbi (*)
2008-01-09 Includes\Security.sbi (*)
2008-02-27 Includes\SecurityC.sbi (*)
2008-02-20 Includes\Spybots.sbi (*)
2008-02-27 Includes\SpybotsC.sbi (*)
2007-11-06 Includes\Tracks.uti (*)
2008-02-27 Includes\Trojans.sbi (*)
2008-02-27 Includes\TrojansC.sbi (*)
2007-12-24 Plugins\TCPIPAddress.dll

--- System information ---
Windows XP (Build: 2600) Service Pack 2 (5.1.2600)

--- MD5 ---

# MD5 checksums generated by MD5summer (http://www.md5summer.org)
# Generated 29-Feb-08 3:11:02 PM

f9b24efadfc68005f6e21e4fc74dcd1b *RegClean.exe
Yodama
2008-03-03, 07:50
hello,

due to the nature of the targeted file the md5 is variable, please send your file for further analysis to detections@spybot.info with a reference to this thread.

If the file is from C-NetMedia and/or 2Squared LLC ( do not confuse with legit C-Net or ASquared) it is malicious.
Tattenbach
2008-03-03, 12:55
hello,

due to the nature of the targeted file the md5 is variable, please send your file for further analysis to detections@spybot.info with a reference to this thread.

If the file is from C-NetMedia and/or 2Squared LLC ( do not confuse with legit C-Net or ASquared) it is malicious.

I will send the file as requested. This version is (out) dated 1997 and it's Microsoft. I do not use it any longer because it has some serious bugs with newer applications but anyway it is still in my computer. I guess I will remove it anyway but I thought about letting you know.

http://support.microsoft.com/kb/299958
Yodama
2008-03-04, 07:35
thank you for your information, we will change our detection rules to exclude your file.