Sign in to follow this  
Followers 0
siliconman01

VulkanInfo false positive

5 posts in this topic

C:\Windows\SYSWOW64\Vulkaninfo.exe 
C:\Windows\SYSWOW64\Vulkaninfo-1-1-0-26.0.exe 
 
Both of the above files are being falsely detected on Windows 10x64 Pro Build 14393.187 as 
 

 

SUPERAntiSpyware Scan Log
 
Generated 09/24/2016 at 02:24 AM
 
Application Version : 6.0.1224
Database Version : 13040
 
Scan type       : Complete Scan
Total Scan Time : 00:09:46
 
Operating System Information
Windows 10 Professional 64-bit (Build 10.00.14393)
UAC On - Administrator
 
Memory items scanned      : 956
Memory threats detected   : 0
Registry items scanned    : 48435
Registry threats detected : 0
File items scanned        : 127414
File threats detected     : 2
 
Trojan.Unclassified/Dropper
C:\WINDOWS\SYSWOW64\VULKANINFO-1-1-0-26-0.EXE
C:\WINDOWS\SYSWOW64\VULKANINFO.EXE
 
============================================
 Scheduled Scan - Automatic Removal Results 
============================================
 
Items scheduled for automatic removal:
Trojan.Unclassified/Dropper
C:\WINDOWS\SYSWOW64\VULKANINFO-1-1-0-26-0.EXE
Trojan.Unclassified/Dropper
C:\WINDOWS\SYSWOW64\VULKANINFO.EXE
 
============
 End of Log 

 

 

VULKANINFO.zip

VULKANINFO-1-1-0-26-0.zip

Share this post


Link to post
Share on other sites

Hello siliconman01,

 

Thank you for letting us know about a possible false detection. Currently we do not detect the attached file. (note: both files attached are identical)

 

It looks as if we already adjusted the definition database to deal with this false detection. I would suggest you update to the current database version (13045) and scan again. If these are still being detected, we can take further action to investigate.

 

Please let me know if you have any other questions or concerns,

 

Gabe Burch

Primary Malware Researcher
SUPERAntiSpyware

Share this post


Link to post
Share on other sites

These two files are still being detect with database 13047

 

SUPERAntiSpyware Scan Log
 
Generated 09/27/2016 at 00:16 AM
 
Application Version : 6.0.1224
Database Version : 13047
 
Scan type       : Complete Scan
Total Scan Time : 00:10:27
 
Operating System Information
Windows 10 Professional 64-bit (Build 10.00.14393)
UAC On - Administrator
 
Memory items scanned      : 980
Memory threats detected   : 0
Registry items scanned    : 48432
Registry threats detected : 0
File items scanned        : 132275
File threats detected     : 3
 
Adware.Tracking Cookie
www.wsaz.com\click_mobile [ C:\USERS\TOM\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
 
Trojan.Unclassified/Dropper
C:\WINDOWS\SYSWOW64\VULKANINFO-1-1-0-26-0.EXE
C:\WINDOWS\SYSWOW64\VULKANINFO.EXE
 
============
 End of Log 
============

Share this post


Link to post
Share on other sites

Very interesting. Try completely restarting SUPERAntiSpyware and scanning again. To fully close SAS, right-click the small bug icon on the right side of your taskbar then click exit.

 

If these are still being detected after restarting SAS, I'd like you to submit a customer support ticket so we can get some more information and figure out what exactly is happening.

 

Gabe

Share this post


Link to post
Share on other sites
Guest
This topic is now closed to further replies.
Sign in to follow this  
Followers 0