a-squared "Riskware" detection: CloseApp.exe?

a-squared picked up the following in my latest scan:

Riskware.RiskTool.Win32.CloseApp.a

File location: C:\WINDOWS\system32\CloseApp.exe

Is it recommended that I delete this file....or might it be a False Positive?

I also ran Counterspy 2.1 and SAS and that particular "riskware" was NOT detected by either program.

Any help/suggestions would be greatly appreciated. Thanks.

 

Upload it here for another 29 second opinions
http://www.virustotal.com/en/indexf.html

HTH

 

Most likely a false postive

 

Thanks. Attached is the scanning result. It was detcted by 4 AV engines. Quarantine? Delete?

 

Hmm

It is not false positive detection.Have you installed software that utilizes this grey area tool ?

It could be legit use or it could be a security issue for you

A google search of the executable will assist but for the mean time quarantine the item until this can be verified.

 

Unfortunately I can't link this tool with any software. The only thing I can find is that it's copyrighted by Noël Danjou

UPDATE: http://noeld.com/programs.asp?cat=misc

I definitely did NOT install this app....but I wonder if it came packaged with programs like Ace Utilities, XP Smoker PRO, or TuneUp Utilities 2007?

 

Hmm

I'm guessing that if you had been hacked then the intruder would have hidden his/her tool(s) a lot more effectively and since you have indicated no other suspicious entries from scans that no malware infection is present or no intrusion has occured.

Well nothing can be stated with 100% certainty but the balance of things would suggest it was bundled with another application.

HTH