Can someone explain what I am to do about this threat alert via email Module Real-time file system protection : C:\FRAPS\UNINSTALL.EXE contains Win32/Adware.Cinmus application. I have Fraps installed on my computer and have had it for some time. Should I uninstall the program or?
The log file said cleaned by deleting - quarantined. I see it in the quarantine section and does this mean I can't uninstall the program? I also see it in the Detected Threats section where it says cleaned by deleting -quarantined. What should I do?
ESET will probably have to update the definitions to correct this. I would wait a bit before doing anything.
Yes false positive, same problem with "C:\Program Files\Notepad++\uninstall.exe" It seams to be the Nullsoft installer.
I encountered the same false hit while compiling a NSIS exe, the newest update fixes it. Update your definitions and scan it again, if it clears I'd say yes. Thanks Wilders. :>
I didn't get this alert doing a scan. I got it via email as a Threat Alert: Module Real-time file system protection C:\FRAPS\UNINSTALL.EXE contains Win32/Adware.Cinmus application.
I just read the information under Detected Threats: Event occurred during an attempt to access the file by the application: C:\Program Files (x86)\SpeedFan\speedfan.exe. This is very confusing since I wasn't using Fraps.
I restored it from quarantine and did an in-depth scan that revealed no threats. Since this was a real-time system protection thing, I don't know if that scan means anything. If this was a false positive real-time threat, then I hope it was solved with the signature update.
