Winmsfw.exe: Anyone seen it recently?

Do you have a question? Post it now! No Registration Necessary.  Now with pictures!

Threaded View
Found on a clients PC... NOD32 was installed and missed it. I
eventually found it with Hijack This and removed it manuallyand with
Prevx. The only apps I found that would even detect it were Prevx and
Trojan Hunter. Now, the problem is, if as Prevx say, it is over a year
old, why is it a fully updated NOD32 missed it, not to mention Trojan
Hunter(found it, but would not remove it), online Trend, Panda,
Spybot? BTW, the client was notified by their ISP, who had received
complaints from other users.

Re: Winmsfw.exe: Anyone seen it recently?


| Found on a clients PC... NOD32 was installed and missed it. I
| eventually found it with Hijack This and removed it manuallyand with
| Prevx. The only apps I found that would even detect it were Prevx and
| Trojan Hunter. Now, the problem is, if as Prevx say, it is over a year
| old, why is it a fully updated NOD32 missed it, not to mention Trojan
| Hunter(found it, but would not remove it), online Trend, Panda,
| Spybot? BTW, the client was notified by their ISP, who had received
| complaints from other users.


Please submit a sample "Winmsfw.exe" to Virus Total --
http://www.virustotal.com/flash/index_en.html
The submission will then be tested against many different AV vendor's scanners.
That will give you an idea what it is and who recognizes it.  In addition,
unless told
otherwise, Virus Total will provide the sample to all participating vendors.

You can also submit a suspect, one at a time, via the following email URL...
mailto:scan@virustotal.com?subject=SCAN

When you get the report, please post back the exact results.

--
Dave
http://www.claymania.com/removal-trojan-adware.html
http://www.ik-cs.com/got-a-virus.htm



Re: Winmsfw.exe: Anyone seen it recently?

says...
Quoted text here. Click to load it
*********** REPLY SEPARATER *************
I'm confused. According to Prevx Web site, this virus was first seen Jun 2
2006. I was about to say that some AV programs detect variants as an older
virus, especially those using heuristics, but a quick search on the Web
indicates that this is relatively new. Sophos has had protection available
since June 16,2006.

J.A. Coutts




Site Timeline