AverisDaddy Posted May 30, 2010 Hello all, I ran my periodic SAS scan and came up with four detections of Trojan.Vundo-Variant/F. After looking at the description of the threat/s I'm wondering if they are FP's. Here is the description SAS gave me: C:\WINDOWS.OLD\PROGRAM FILES (X86\NEWSOFT\PRESTO! PAGEMANAGER 7.15\CODECVT.DLL C:\WINDOWS.OLD\PROGRAM FILES (X86\NEWSOFT\PRESTO! PAGEMANAGER 7.15\MEMIO.DLL C:\WINDOWS.OLD\PROGRAM FILES (X86\NEWSOFT\PRESTO! PAGEMANAGER 7.15\UMXNTS32.DLL C:\WINDOWS.OLD\PROGRAM FILES (X86\NEWSOFT\PRESTO! PAGEMANAGER 7.15\UFSE.DLL I'm quite paranoid when it comes to security and was rather surprised when I had these detections. Any help as to whether or not these are FP's or not would be greatly appreciated. If any other information is needed from me, I will greatful to oblige. Share this post Link to post Share on other sites
Seth Posted May 31, 2010 Welcome to the SAS forum Averisdaddy. Please be sure you're using the latest update from SAS before a scan. Reason being, if the files are indeed false positives, they may have already been addressed in the latest update. If SAS is fully updated, and the files are still detected, here are a couple of options: 1) You can submit the files to Virus Total, which will check them against numerous antimalware programs. http://www.virustotal.com/ 2) If you still think they're FP's, then when the SAS scan completes, highlight the suspected file(s) and click on "Report False Positive" Share this post Link to post Share on other sites