Jump to content

lantern

Members
  • Content Count

    4
  • Joined

  • Last visited

About lantern

  • Rank
    Newbie
  • Birthday 01/01/1970

Profile Information

  • Interests
    superantispyware
  1. Ok, so I need to extract the files to be able to scan them with SAS? Thanks!
  2. Does SAS scan inside compressed files such as rar, zip, and 7z files? Thanks
  3. Should I submit them for analysis? How do I send them to you? Thanks
  4. I ran the online scan of Kaspersky AV and it gave the following report: KASPERSKY ONLINE SCANNER REPORT Tuesday, December 18, 2007 8:04:20 PM Operating System: Microsoft Windows XP Home Edition, Service Pack 2 (Build 2600) Kaspersky Online Scanner version: 5.0.98.0 Kaspersky Anti-Virus database last update: 18/12/2007 Kaspersky Anti-Virus database records: 486393 ____________________________________________________________ C:\Documents and Settings\XXXXXX\Application Data\Sun\Java\Deployment\cache\6.0\32\7836d960-25b04c2d/BnnnnBaa.class Infected: Trojan.Java.ClassLoader.as skipped C:\Documents and Settings\XXXXXXX\Application Data\Sun\Java\Deployment\cache\6.0\32\7836d960-25b04c2d/VaannnaaBaa.class Infected: Trojan.Java.ClassLoader.as skipped C:\Documents and Settings\XXXXXXXX\Application Data\Sun\Java\Deployment\cache\6.0\32\7836d960-25b04c2d/Bnnnnn.class Infected: Trojan.Java.ClassLoader.as skipped C:\Documents and Settings\XXXXXXXX\Application Data\Sun\Java\Deployment\cache\6.0\32\7836d960-25b04c2d ZIP: infected - 3 skipped C:\Program Files\PGCEdit\bin\pskill.exe Infected: not-a-virus:RiskTool.Win32.PsKill.k skipped C:\Program Files\PGCEdit\pgcedit.exe/Tcl/work/PGCEDIT/bin/pskill.exe Infected: not-a-virus:RiskTool.Win32.PsKill.k skipped C:\Program Files\PGCEdit\pgcedit.exe ZIP: infected - 1 skipped C:\System Volume Information\MountPointManagerRemoteDatabase Object is locked skipped C:\System Volume Information\_restore{FEAA21CD-54B1-4BE2-BC53-E2FC99A413CB}\RP1001\change.log Object is locked skipped C:\System Volume Information\_restore{FEAA21CD-54B1-4BE2-BC53-E2FC99A413CB}\RP993\A0116886.dll Infected: not-a-virus:AdWare.Win32.Virtumonde.ar skipped C:\System Volume Information\_restore{FEAA21CD-54B1-4BE2-BC53-E2FC99A413CB}\RP993\A0116887.dll Infected: not-a-virus:AdWare.Win32.Virtumonde.ar skipped C:\System Volume Information\_restore{FEAA21CD-54B1-4BE2-BC53-E2FC99A413CB}\RP993\A0116888.dll Infected: not-a-virus:AdWare.Win32.Virtumonde.ar skipped E:\Software\VideoCD\PGCEdit\pgcedit_winexe.zip/PgcEdit.exe/Tcl/work/PGCEDIT/bin/pskill.exe Infected: not-a-virus:RiskTool.Win32.PsKill.k skipped E:\Software\VideoCD\PGCEdit\pgcedit_winexe.zip/PgcEdit.exe Infected: not-a-virus:RiskTool.Win32.PsKill.k skipped E:\Software\VideoCD\PGCEdit\pgcedit_winexe.zip ZIP: infected - 2 skipped L:\Software\AceHTML6Pro.7z/acehtml6pro.exe/data0007/data0146 Infected: not-a-virus:AdWare.Win32.BHO.w skipped L:\Software\AceHTML6Pro.7z/acehtml6pro.exe/data0007 Infected: not-a-virus:AdWare.Win32.BHO.w skipped L:\Software\AceHTML6Pro.7z/acehtml6pro.exe Infected: not-a-virus:AdWare.Win32.BHO.w skipped L:\Software\AceHTML6Pro.7z 7-Zip: infected - 3 skipped So, I ran a full scan with SAS and it said there was nothing. I then went in and scanned each file individually and nothing. Is this a false positive for Kaspersky or is SAS missing the possible infections? Thanks!
×
×
  • Create New...