vavidiso_73 Posted January 7, 2012 Report Share Posted January 7, 2012 OA blocked AAM Updates Notifier.exe (Adobe Photoshop CS6)- blocked suspicius danger file. https://www.virustotal.com/search.html http://www.isthisfilesafe.com/sha1/479A13DC15CCD3C07B0AF16564D6B153EDA5CB9E_details.aspx Link to comment Share on other sites More sharing options...
catprincess Posted January 7, 2012 Report Share Posted January 7, 2012 Hi vavidiso_73, Please see this thread http://support.emsisoft.com/topic/6857-probable-false-positive-adobe-premeire-elements/ and this thread http://support.emsisoft.com/topic/6886-adobe-reader-identified-as-dangerous-program/ To summarise, the Adobe signature is blacklisted as a precaution as malware is known to abuse it. This article http://blogs.mcafee.com/mcafee-labs/zeroaccess-rootkit-launched-by-signed-installers explains how malware can use signed installers to infect a computer. What isn't explained in the article though, is how a malicious dll would get on your system in the same directory as the legitimate signed program in the first place. There is a thread here on Wilders http://www.wildersse...ad.php?t=313426 where people have speculated on possible ways it could happen (social engineering, drive-by download etc). Basically, if you are downloading Adobe products from the official Adobe website or installing them from a cd you have purchased, you shouldn't worry and just let the installation continue. Same could apply to using the Updater in your example (after you have allowed it, you can locate it in the Program's list and mark it as Trusted to avoid further popups like this) Link to comment Share on other sites More sharing options...
Recommended Posts