Trojan horse Sheur.CGEW

Discussion in 'malware problems & news' started by hudjem, Sep 2, 2008.

Thread Status:
Not open for further replies.
  1. hudjem

    hudjem Registered Member

    Joined:
    Sep 3, 2007
    Posts:
    14
    Last week I downloaded and ran gmer from their website. I ran it and it found nothing. Today AVG free shield found 4 instances of the above trojan as an immediate threat at c:\windows\gmer.exe

    I googled the trojan but found nothing. could this be a false positive? Isn't gmer.exe a trusted application

    any feedback is appreciated....thanks
     
  2. emperordarius

    emperordarius Registered Member

    Joined:
    Apr 27, 2008
    Posts:
    1,218
    Location:
    Who cares
    It must be a false positive. Report it to Grisoft.
     
  3. hudjem

    hudjem Registered Member

    Joined:
    Sep 3, 2007
    Posts:
    14
    i've quarantined it to be on safe side and tried to send for analysis but the files fail to send. I guess ill try a reboot and try again.

    I never copied gmer to my windows directory. I merely ran the file 1 time.
     
  4. JRViejo

    JRViejo Global Moderator

    Joined:
    Jul 9, 2008
    Posts:
    20,911
    Location:
    U.S.A.
    hudjem, if you still have problems sending the file to Grisoft after the reboot, try this YOU SUSPECT A FILE TO BE A FALSE POSITIVE procedure found in their AVG Free Forum. Even if you have the AVG Paid version, it works the same:

     
  5. MICRO

    MICRO Registered Member

    Joined:
    Jun 8, 2004
    Posts:
    1,020
    I copped the exact same yesterday - AVG popped up with the threat
    that gmer.exe was trying to change into another App. - immediately followed by OA popping up saying there were 5 problems related to gmer.exe -

    I was too busy already so quickly deleted everything related to gmer
    and only then remembered I should have taken pics of each problem.

    Later ran Sysinternals Rootkit Revealer and Blacklight and neither could
    find any problem - thought I would take a quick look on the Forum
    to see if anyone had struck the same problem - Strange that I have
    had Gmer for several months and nothing picked up anything until yesterday
    so am just wondering why AVG and OA would so suddenly find a problem
    if it's a F/P.
     
Loading...
Thread Status:
Not open for further replies.