Help! Shockwave virus or possible false positive

[EagleGhost]

I ran Avast virus check today and it found a virus called "Win32:Malware-gen" from the "C:\Windows\SysWOW64\Adobe\Shockwave 11\Xtras\Multiusr.x32" path. Yesterday Avast found nothing. Today the Facebook frore when I was watching my friend's pictures. Is that involved with this? I have heard that the viruses can spread through Facebook picture albums. Now I'm really worried about this. Is this a real virus or a false positive?

[Pondus]

Is this a real virus or a false positive?

Upload the file to www.virustotal.com and test it with 43 malware scanners
when you have the result, copy the URL in the address bar and post it here


you may also scan your computer with this

Malwarebytes Anti-Malware 1.50.1   http://filehippo.com/download_malwarebytes_anti_malware/
always update the program before you scan, so you have the latest database
click the remove selected button to quarantine anything found
if anything is found please post the scan log here
 

[Asyn]

Is this a real virus or a false positive?

Upload the file to www.virustotal.com and test it with 43 malware scanners
when you have the result, copy the URL in the address bar and post it here

He reposted it here...
http://forum.avast.com/index.php?topic=68311.msg574374#msg574374
asyn

[EagleGhost]

Is this a real virus or a false positive?

Upload the file to www.virustotal.com and test it with 43 malware scanners
when you have the result, copy the URL in the address bar and post it here


you may also scan your computer with this

Malwarebytes Anti-Malware 1.50.1   http://filehippo.com/download_malwarebytes_anti_malware/
always update the program before you scan, so you have the latest database
click the remove selected button to quarantine anything found
if anything is found please post the scan log here
 

Here is the Virustotal report: http://www.virustotal.com/file-scan/report.html?id=a076220ea59e457b23588b24edc034b8f3ca7f68c7c4f74c8f761bbe6266f0e9-1293467657. I will post the Malwarebytes report later. I'm sorry for the double post. I don't like my mother tongue teacher, because she should have taught me better.

[Pondus]

only detected by avast! and GData using avast virus engine, so this can be a False Positive

send the file in a password protected zip.file to  virus @ avast . com
Subject: False positive   Password: infected

you may add a link to this topic in the mail

[Asyn]

Or use this interface...
http://www.avast.com/contact-form.php?loadStyles
asyn

[DavidR]

Or - Send the sample to avast as a False Positive:
Open the chest and right click on the file and select 'Submit to virus lab...' complete the form and submit, the file will be uploaded during the next update.

- In the meantime (if you accept the risk), add the full path to the file to the exclusions lists:
File System Shield, Expert Settings, Exclusions, Add and
avast Settings, Exclusions

Restore it to its original location, periodically check it (scan it in the chest), there should still be a copy in the chest even though you restored it to the original location. When it is no longer detected then you can also remove it from the File System Shield and avast Settings, exclusions lists.

[EagleGhost]

Big thanks for helping me! I updated Malwarebytes and ran it and it found nothing. I also sent a false positive report to Avast and they will contact me soon.

[Asyn]

Big thanks for helping me! I updated Malwarebytes and ran it and it found nothing. I also sent a false positive report to Avast and they will contact me soon.

You're welcome..!
And thanks for your feedback..!!
asyn

[Milos]

Hello,
it should be fixed in current VPS (101227-1).

Milos

[Pondus]

Thanks for the info