PC Review
Home Forums Reviews Articles Register
Member Login:

PC Review > Forums > Newsgroups > Microsoft AntiSpyware > Spyware Discussion > BUG: False positive--WS2003->Windows\System32\TAPICFG.EXE

Reply
Thread Tools Rate Thread

BUG: False positive--WS2003->Windows\System32\TAPICFG.EXE

 
 
Bill Frandsen
Guest
Posts: n/a
 
      6th Jan 2005
If you run the spyware on a clean install (no net connection ever, installed
from original media) of Windows Server 2003, you will end up with a false
positive on the Microsoft system installed file TAPICFG.EXE in the
Windows\System32 folder.

Once deleted by the tool, it pops back immediately as it is cached in the
windows file protection cabs.

I verified on MSDN that this is indeed a valid Microsoft system file
shipping with Server 2003 and NOT a "coolwebsearch browser hijack" as is
claimed by the antispyware tool.
 
Reply With Quote
 
 
 
 
Andrew Burlak
Guest
Posts: n/a
 
      6th Jan 2005
Yes, it occurs to me too.

I am running Windows 2003 SP1(beta) build 1289.
C:\windows\system32\tapicfg.exe

I compared (fc /b) tapicfg.exe with the one from installation media
(expanded \I386\TAPICFG.EX_), and found no differences.

tapicfg.exe is not replaced by SP1 build 1289, so it probably occurs also on
SP0.

"Bill Frandsen" <(E-Mail Removed)> wrote in message
news:(E-Mail Removed)...
> If you run the spyware on a clean install (no net connection ever,
> installed
> from original media) of Windows Server 2003, you will end up with a false
> positive on the Microsoft system installed file TAPICFG.EXE in the
> Windows\System32 folder.
>
> Once deleted by the tool, it pops back immediately as it is cached in the
> windows file protection cabs.
>
> I verified on MSDN that this is indeed a valid Microsoft system file
> shipping with Server 2003 and NOT a "coolwebsearch browser hijack" as is
> claimed by the antispyware tool.
>
>
 
Reply With Quote
 
Stephen
Guest
Posts: n/a
 
      6th Jan 2005

"Bill Frandsen" <(E-Mail Removed)> wrote in message
news:(E-Mail Removed)...
| If you run the spyware on a clean install (no net connection ever,
installed
| from original media) of Windows Server 2003, you will end up with a false
| positive on the Microsoft system installed file TAPICFG.EXE in the
| Windows\System32 folder.
|
| Once deleted by the tool, it pops back immediately as it is cached in the
| windows file protection cabs.
|
| I verified on MSDN that this is indeed a valid Microsoft system file
| shipping with Server 2003 and NOT a "coolwebsearch browser hijack" as is
| claimed by the antispyware tool.
|
|

Ditto - I get a positive on tapicfg.exe which is both the name of a
legitmate Windows file as well as the name of a virus file.
 
Reply With Quote
 
 
 
Reply

« about blank hompage hijacker | Something I would like to see »
Thread Tools
Rate This Thread
Rate This Thread:

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
Windows Defender FALSE POSITIVE Panda_man Security Signatures 5 10th Mar 2009 06:07 AM
Genuine Windows Advantage- False Positive USA (Dell Computer) =?Utf-8?B?RnJlZCBIYXJ0emxlcg==?= Windows XP General 9 6th May 2006 12:48 AM
False Positive in Microsoft Windows 2000 Resource Kit John Gruener Security Signatures 2 4th Feb 2005 07:09 PM
False positive -> Detects tapicfg.exe as spyware on Windows 2003 server Audun Spyware Application Compatibility 6 9th Jan 2005 03:35 PM
False Positive: tapicfg.exe (W2K03) BJS Security Signatures 0 7th Jan 2005 05:04 PM


Features
Forums Startup Database Reviews Articles FAQ / Guidelines About Us
 

Advertising
 

Newsgroups
Windows Vista Windows XP Microsoft Word Microsoft DotNet Windows 2000 AntiSpyware Microsoft Access Microsoft Excel Microsoft Outlook Hardware
 


All times are GMT +1. The time now is 10:07 AM.
Powered by vBulletin®. Copyright ©2000 - 2012, Jelsoft Enterprises Ltd.
SEO by vBSEO ©2010, Crawlability, Inc.
Contact Us - Archive - Privacy Statement - Top