Solved

is iTunesMigration.exe malware

  • 31 October 2018
  • 4 replies
  • 114 views

Userlevel 7
Badge +37
Hi ,
 
today , my webroot show "iTunesMigration.exe" is malware !!
 
//
Starting Routine> Removing c:program fileswindowsappsappleinc.itunes_12090.167.37085.0_x86__nzyj5cx40ttqaitunesmigration.exe...#(PX5: 02CB230D38AF11D1630301A58E703B00564B7302 - MD5: 7BC3228884064307AA620A9CC95757CB - UniqueID: 031D1558)... Deleting File> c:program fileswindowsappsappleinc.itunes_12090.167.37085.0_x86__nzyj5cx40ttqaitunesmigration.exe Automated Cleanup Engine Starting Cleanup at 31/10/2018 - 05:15:21 GMT Starting Routine> Removing C:Program FilesWindowsAppsAppleInc.iTunes_12091.4.37126.0_x86__nzyj5cx40ttqaiTunesMigration.exe...#(PX5: 02CB230D38AF11D1630301A58E703B0065474801 - MD5: 1E6A41E43DC68221777BAF4D04A295CB - UniqueID: 0805E058)... Deleting File> C:Program FilesWindowsAppsAppleInc.iTunes_12091.4.37126.0_x86__nzyj5cx40ttqaiTunesMigration.exe 
 
//
 
Regards ,
 
Amir 
 
 
icon

Best answer by ProTruckDriver 31 October 2018, 13:10

View original

4 replies

Userlevel 7
Apple released security updates yesterday so this may be the reason with the false positive.
https://community.webroot.com/t5/Security-Industry-News/Apple-security-updates-30th-October-2018/m-p/332759#M43516
 
Please submit a Support Ticket or Contact Webroot Support to sort this problem. This service is FREE with a Paid Subscription.
Support Ticket System is Open 24/7
 
Note: When submitting a Support Ticket, Please wait for a response from Support. Putting in another Support Ticket on this problem before Support responses will put your first Support Ticket at the end of the queue.
Userlevel 7
Badge +63
Good one @ I check on VirusTotal and they haven't seen this MD5 Hash so far at the time of post but the Webroot Cloud Determination was just today! Also note when it was first seen??
 
Starting Routine> Removing c:program fileswindowsappsappleinc.itunes_12090.167.37085.0_x86__nzyj5cx40ttqaitunesmigration.exe...#(PX5: 02CB230D38AF11D1630301A58E703B00564B7302 - MD5: 7BC3228884064307AA620A9CC95757CB - UniqueID: 031D1558)... Deleting File
 


 

Userlevel 7
Badge +37
Hello ,

yes , it is false positive. and then i send ticket for Webroot support.

I suggestion make a very speed Process for detect false positive and correct it .

Regards ,
Amir
Userlevel 7
Hello Amir,
Glad to see that the false positive was sorted out. Have a nice weekend. ;)

Reply