11-30-2009 01:38 PM
Hi Quads & Floplot,
thank for the advice,there is no way I would tu4rn nis off to run a program I know nothing about!.
I have put the pf file into NIS2010 Quarantine for now.Just would like to say that irsetup.exe come comes with a game.Ithink it would be be good for users to due a search on this as there are very mixed feelings about this and could cause a lot of confusion.
11-30-2009 10:59 PM
The fact you don't know anything about this program is your business . ComboFix is well-known program utility used by computer specialist when cleaning computers from infection.
As for the .pf file - this is Windows Prefetcher
Placing such a file in the Quarantine is pointless because it is harmless
12-01-2009 01:42 AM
Most likely that irsetup.exe belongs to the Setup Factory Runtime Module by Indigo Rose. This is suggested by the name of the file and the folder it was located in. But it is no way to tell for sure without actually checking the file itself. However, since you say that it comes with a game it probably is the installation software by Indigo Rose.
Regarding ComboFix. I see that tool as a last resort that you run when all else has failed. Now, just running the tool requires basically no skill at all since it runs all by itself. But I still think that you need to know what the tool does and be able to read the log produced by it. I would not consider it to be the same as other antivirus scanners like Malwarebytes.
12-01-2009 01:53 AM
Thank for your input did take a look at COMBOFIX and yes it seems to be a good program!,but what I was trying to say is
at the time I did not know anything about this,as you may understand that running a program I am unsure about I may have done more harm than good.
on the quarantined file,I have now deleted it.Once again thank you for your input and the link.
12-01-2009 02:09 AM
Yes you are correct I have done some searching on this and it is as you said INDIGO ROSE (SETUP FACTORY 8 RUNTIME)
There is a lot of talk about this,saying it is being flagged SPYWARE.
Thanks for your reply .