Quote:
Originally Posted by alt3rn1ty
Has anyone seen this before... first a bit of background, I used to be on BT BroadBand, after last nights security hits and Avast stopping one trying to infiltrate my laptop decided its time to do a thorough scan of all system.
Found the following on the desktop (not the machine which was attacked, but the machine I originally setup with BT) using Microworld Anti Virus EScan (MWAV.EXE) in safe mode...
c:\windows\motive\BTBB\Uninstallhelper.exe//WISE0004.bin tagged as "not-a-virus:RiskTool.Win32.PsKill.1101"
anyone still on BT check for the same file c:\windows\motive\BTBB\Uninstallhelper.exe
This was flagged as crytical with MWAV
and no doubt compressed within the exe you will have the same
|
It's classified as a Risktool rather than malware. Risktool is a category used by AV software to define what a file can do, rather than anything else. I would guess that the uninstallhelper file is capable of stopping a running a process to enable the uninstall to proceed. The pskill classification would imply that is the case. Most process termination utilities are classified as risktools. Many specialist malware removal utilities are classified as risktools because of the actions they are capable of performing. AV software would be remiss if it didn't try and make a determination, but everything that AV software finds is not a virus or any sort of malware.