Jump to content
Sign in to follow this  
AverisDaddy

Trojan.Vundo-Variant/F False Positive??

Recommended Posts

Hello all, I ran my periodic SAS scan and came up with four detections of Trojan.Vundo-Variant/F. After looking at the description of the threat/s I'm wondering if they are FP's. Here is the description SAS gave me:

C:\WINDOWS.OLD\PROGRAM FILES (X86\NEWSOFT\PRESTO! PAGEMANAGER 7.15\CODECVT.DLL

C:\WINDOWS.OLD\PROGRAM FILES (X86\NEWSOFT\PRESTO! PAGEMANAGER 7.15\MEMIO.DLL

C:\WINDOWS.OLD\PROGRAM FILES (X86\NEWSOFT\PRESTO! PAGEMANAGER 7.15\UMXNTS32.DLL

C:\WINDOWS.OLD\PROGRAM FILES (X86\NEWSOFT\PRESTO! PAGEMANAGER 7.15\UFSE.DLL

I'm quite paranoid when it comes to security and was rather surprised when I had these detections. Any help as to whether or not these are FP's or not would be greatly appreciated. If any other information is needed from me, I will greatful to oblige.

Share this post


Link to post
Share on other sites

Welcome to the SAS forum Averisdaddy.

Please be sure you're using the latest update from SAS before a scan. Reason being, if the files are indeed false positives, they may have already been addressed in the latest update.

If SAS is fully updated, and the files are still detected, here are a couple of options:

1) You can submit the files to Virus Total, which will check them against numerous antimalware programs.

http://www.virustotal.com/

2) If you still think they're FP's, then when the SAS scan completes, highlight the suspected file(s) and click on "Report False Positive"

Share this post


Link to post
Share on other sites
Guest
This topic is now closed to further replies.
Sign in to follow this  

×