OA blocked AAM Updates Notifier.exe

[vavidiso_73 0]

OA blocked AAM Updates Notifier.exe (Adobe Photoshop CS6)- blocked suspicius danger file. https://www.virustotal.com/search.html

http://www.isthisfilesafe.com/sha1/479A13DC15CCD3C07B0AF16564D6B153EDA5CB9E_details.aspx

[catprincess 19]

Hi vavidiso_73,

Please see this thread http://support.emsisoft.com/topic/6857-probable-false-positive-adobe-premeire-elements/ and this thread http://support.emsisoft.com/topic/6886-adobe-reader-identified-as-dangerous-program/

To summarise, the Adobe signature is blacklisted as a precaution as malware is known to abuse it. This article http://blogs.mcafee.com/mcafee-labs/zeroaccess-rootkit-launched-by-signed-installers explains how malware can use signed installers to infect a computer. What isn't explained in the article though, is how a malicious dll would get on your system in the same directory as the legitimate signed program in the first place. There is a thread here on Wilders http://www.wildersse...ad.php?t=313426 where people have speculated on possible ways it could happen (social engineering, drive-by download etc). Basically, if you are downloading Adobe products from the official Adobe website or installing them from a cd you have purchased, you shouldn't worry and just let the installation continue. Same could apply to using the Updater in your example (after you have allowed it, you can locate it in the Program's list and mark it as Trusted to avoid further popups like this)