Spyware, Viruses, & Security forum

General discussion

Malware.packer.gen on a non-existent tmp file

by danawenco / May 27, 2010 8:49 AM PDT


I got a "malware.packer.gen" threat from my Malwarebytes Anti malware complete scan last night on a tmp file.

C:\Users\wle\AppData\Local\Temp\~DFBB42.tmp (Malware.Packer.Gen)

I didn't take any action and exited MBAM, went to that location, and couldn't find the file. So I did another complete scan (without updating the db version) with MBAM, and the second scan came out clean.

During both scans I only had one firefox browser running (same web page), and had no other application running.

Is there any way to figure out if this is a FP, since I can't even find that file? And, can I be sure that my system is clean once I've done a few complete scans (in regular mode and safe mode) with a few AV products?

I have Windows Vista SP2. Thank you very much for your help.

Post a reply
Discussion is locked
You are posting a reply to: Malware.packer.gen on a non-existent tmp file
The posting of advertisements, profanity, or personal attacks is prohibited. Please refer to our CNET Forums policies for details. All submitted content is subject to our Terms of Use.
Track this discussion and email me when there are updates

If you're asking for technical help, please be sure to include all your system info, including operating system, model number, and any other specifics related to the problem. Also please exercise your best judgment when posting in the forums--revealing personal information such as your e-mail address, telephone number, and address is not recommended.

You are reporting the following post: Malware.packer.gen on a non-existent tmp file
This post has been flagged and will be reviewed by our staff. Thank you for helping us maintain CNET's great community.
Sorry, there was a problem flagging this post. Please try again now or at a later time.
If you believe this post is offensive or violates the CNET Forums' Usage policies, you can report it below (this will not automatically remove the post). Once reported, our moderators will be notified and the post will be reviewed.
Collapse -
Close ALL Programs When Running Scans
by Grif Thomas Forum moderator / May 27, 2010 9:33 AM PDT

If Malwarebytes detected the file, it may have already deleted it and it's gone.. Or because it's a .tmp file, it could have automatically been removed when the browser was closed and may indeed be a false positive.. That said, you might want to try a second tool, such as the free SuperAntispyware program below.. Download, install, update, then run a full system scan while in "normal" Windows.. If there is any malware in operation, it should be running, and therefore detectable, while in Windows. Run Malwarebytes again also, while in "normal" Windows.

SUPERAntispyware Removal Tool

As to being sure of cleanliness after running multiple scanning tools... Well, you're never "absolutely" certain of such as there may be a new type of malware that hasn't reached the definitions of the best removal tools. But.. you'll be as certain as you can be simply because you've done your best to check.

Hope this helps.


Collapse -
by danawenco / May 27, 2010 9:55 AM PDT

Thanks Grif.

I already ran with SuperAntiSpyware and Microsoft's Security Essentials and neither reported the problem, I will try again tonight (and MBAM too).

Thank you for your help.

Collapse -
Malware.packer.gen on a non-existent tmp file
by pcs365_12 / May 27, 2010 11:26 PM PDT

whenever malwarebytes finds any viruses on the system it will quarantine that file automatically. You need not have to go the hard way to find it. But make sure that you run the prog again to recheck it. Thats how you can be doubly sure about the removal.

Collapse -
But they let you ignore the thread...
by danawenco / May 28, 2010 2:38 AM PDT

But, Malwarebytes gives you an option to quarantine/remove or ignore, when a malware is found. I'd be surprised if they just removes it anyway regardless of the user's selection.

The reason I was looking for that file was because I really wanted to find out if it was a FP or not. I scan my system everyday and I pretty much only visit the same 2-3 websites (that I am sure are safe) everyday, so I would feel quite worried if I got a malware being so cautious. Thanks.

Popular Forums
Computer Help 49,613 discussions
Computer Newbies 10,349 discussions
Laptops 19,436 discussions
Security 30,426 discussions
TVs & Home Theaters 20,308 discussions
Windows 10 360 discussions
Phones 15,802 discussions
Windows 7 7,351 discussions
Networking & Wireless 14,641 discussions

CNET Holiday Gift Guide

Looking for great gifts under $100?

Trendy tech gifts don't require a hefty price tag. Choose from these CNET-recommended useful and high-quality gadgets.