Trojan.Vundo-Variant/F False Positive??

AverisDaddy · May 30, 2010

Hello all, I ran my periodic SAS scan and came up with four detections of Trojan.Vundo-Variant/F. After looking at the description of the threat/s I'm wondering if they are FP's. Here is the description SAS gave me:

C:\WINDOWS.OLD\PROGRAM FILES (X86\NEWSOFT\PRESTO! PAGEMANAGER 7.15\CODECVT.DLL

C:\WINDOWS.OLD\PROGRAM FILES (X86\NEWSOFT\PRESTO! PAGEMANAGER 7.15\MEMIO.DLL

C:\WINDOWS.OLD\PROGRAM FILES (X86\NEWSOFT\PRESTO! PAGEMANAGER 7.15\UMXNTS32.DLL

C:\WINDOWS.OLD\PROGRAM FILES (X86\NEWSOFT\PRESTO! PAGEMANAGER 7.15\UFSE.DLL

I'm quite paranoid when it comes to security and was rather surprised when I had these detections. Any help as to whether or not these are FP's or not would be greatly appreciated. If any other information is needed from me, I will greatful to oblige.

Seth · May 31, 2010

Welcome to the SAS forum Averisdaddy.

Please be sure you're using the latest update from SAS before a scan. Reason being, if the files are indeed false positives, they may have already been addressed in the latest update.

If SAS is fully updated, and the files are still detected, here are a couple of options:

1) You can submit the files to Virus Total, which will check them against numerous antimalware programs.

http://www.virustotal.com/

2) If you still think they're FP's, then when the SAS scan completes, highlight the suspected file(s) and click on "Report False Positive"

Sign In

Trojan.Vundo-Variant/F False Positive??

Recommended Posts

AverisDaddy

Share this post

Link to post

Share on other sites

Seth

Share this post

Link to post

Share on other sites

Browse

Activity