is this malware?

He all i was looking for programs on the hirens boot cd

i noticed a program called EzPcFix

i went to have a look for the program

i found this site

(link search on virustotal)

https://www.virustotal.com/url/9763281b6991eccd6cce9d26c4ae93b0ed04bed35d6765a4256e289e8e68b5d5/analysis/1333578833/

when i was downloading the program, i got a notification sayed it had malicous content

i allowed it and checked the file on virustotal, however i did not open it

(link search on virustotal)

https://www.virustotal.com/file/101639852eb3f9c5a85e154552d9de80bf5838d13d836e08e4ff38523ae517e3/analysis/1333578560/

if this is malware can it be added to the avast definitions :wink:

i say False Positive

First seen by VirusTotal
2007-02-23 14:10:31 UTC ( 5 år, 1 måned ago )

Sigcheck

publisher…: -http://www.EzPcFix.net
product…: EzPcFix
internal name…: EzPcFix
copyright…: Freeware (you_re welcome to make a donation though :slight_smile:
original name…: EzPcFix.exe
file version…: 1.00.0016

You sure?

the file is 5 years old and only the less known AV detect it…exept McAfee

malware programs are often detected by other AV…OTL is often dected by avast

the sigcheck even have direct link to the program… i am 95% sure

if you want to check, upload the file to Avira / Sophos and see what they say

Avira http://analysis.avira.com/samples/index.php
Sophos https://secure.sophos.com/support/samples/

Well why did google chrome block it?

http://www.google.com/safebrowsing/diagnostic?site=www.ezpcfix.net

http://www.urlvoid.com/scan/ezpcfix.net/

http://www.siteadvisor.com/sites/ezpcfix.net

???

read what is marked with green…see your file there :wink: click the blue links for more info

and ask Avira / Sophos

ThreatExpert analysis report http://www.threatexpert.com/report.aspx?md5=c34dd4c4e7ddfd351e76cf133d5dd45d

The website for the program is being blocked by BitdefenderTrafficLight as having malware.
VT gives the site as 100% clean. Here it has an issue: http://www.webutation.net/go/review/ezpcfix.net comes with website antivirus warn status,
So might not be malicious as such, but has some webrep issue, where BrightCloud has it with an almost all green 96 index score,
I would place it in limbo until you have the Avira and Sophos verdicts, as Pondus suggests you should get,
Also consider this info: http://www.mywot.com/en/scorecard/ezpcfix.net
The only minor issue that SiteAdvisor result is based on here is the presence of “third party cookies”.
I am not overtly thrilled about SiteAdvisor’s results after McAfee aquired it, to put it mildly,

polonus

Commodo defense+ sandboxed it straight away 8)

What about this then: http://siteinspector.comodo.com/public/reports/944609
If they do not have it in their real scanning reporys, than this must be part of Commodo defense’s daily dirt.
The developer of that software states in the WOT report that he does not have any malware or any links to malware on that site,
and apart from the third party cookies McAfee did not find other issues,
and until proven otherwise I tend to believe him there.
I think the issue is based on web rep and wrongly interpreted generics.
Update that program to virus AT avast dot com,

polonus

Avira

The file 'EZPCFix-1-0-0-16.exe' has been determined to be 'KNOWN CLEAN'. In particular this means that we could not find any malicious content. Please note that the file is part of 'Bootzilla 5.3.0 '.