right click scanning of spybot detects smitfraud c all over the place!
Hi, I have used my travel drive to download programs for awhile now. I right clicked my travel drive and did a scan with spybot. These files i know are clean, as they are downloaded from there official pages. The following files were detected to be smitfraud c:
Microsoft malicious removal tool-was downloaded from official Microsoft page.
Dx web setup. Direct x setup-was downloaded from official Microsoft page.
Comodo free firewall-was downloaded from comodos page.
Hijack this-downloaded from official page.
Internet explorer 7 setup file from offical microsoft page.
All of these were detected to be smitfraud c.
What is interesting is:
under the right click menu scan with spybot that i did, the window that spybot scans in, under spybot search and destroy (malware) it says nothing found. Yet the next line, for the same items under spybot search and destroy (heuristic) it says smitfraud c.
So i think this is a false positive.
* Windows XP home edition sp3
* Internet Explorer 7, FireFox latest version
* Latest spybot 1.6
* false positive occurred using right click scan with spybot on travel drive.
False positives found in old DOS commands
Windows XP Professional w/SP3
Firefox 2.0.0.15
Spybot 1.6 final, with July 9, 2008 updates
The following FPs occurred only after a right-click manual scan of a particular saved folder. No infections were reported under Malware, only Heuristic.
After updating to Spybot 1.6 and the July 9 definitions and rebooting, I also tried right-click scans on some old saved executable files from MSDOS 6.22, from the 1990's. Some (not all) of these old files were reported as being infected with either "Smitfraud-C" or "Worldsecurityonline.FakeAlert" under "Heuristic." These are false positives that have been scanned to death over the years, including last week, when nothing evil was detected in them.
These files are all in one folder on a backup disk and are inert.
Suspected FP of Worldsecurityonline.FakeAlert in MSDOS 6.22 files:
Attrib.exe
Chkdsk.exe
Debug.exe
Deltree.exe
Edit.com
Edlin.exe
Fdisk.exe
Mem.exe
Move.exe
Mscdex.exe
Smitfraud-C FP in:
Start.exe (DOS 6.22)