Nella
Newbie
Posts: 37
|
 |
Possible false positive (iesdsg.dll)
« on: May 10th, 2007, 2:25pm » |
 Quote  Modify
|
Today as soon as I updated my TH definitions (running Ver. 4.6 Build 930) on my stand alone PC running XP Pro SP2, I received a warning that TH had removed a trojan named (I didn't write down the name unfortunately) from memory and that I should reboot and run a full scan with TH, which I did (results were clean).
After the scan, I found the file containing the virus had been quarantined. The original file name was iesdsg.dll and the path was f:\spyware doctor\tools\iesdsg.dll. A brief search on the internet indicates a file with this name is a legitimate file for the program Spyware Doctor (which is installed on my PC), which of course doesn't mean the file itself was not a trojan.
I will be submitting the file to TH for analysis in a few minutes. But in the meantime, I'm trying to find a TH Log file created when I received the TH alert (which wasn't during a normal TH scan, which I know does create a report when finished), which would tell me the name of the trojan which TH thinks the file contained. I would have thought the virus name which I mistakenly didn't write down when TH first alerted would be available to see if I highlighted the errant file in the TH quarantine but I can't find it.
I can't find any documentation in the Help file or the FAQ webpage for ascertaining the location of a TH logfile on my PC created when TH alerted on, immediately after an update, not during a TH scan, on what it believed to be a trojan. Any ideas? Nella
|
|
 IP Logged |
|
|
|
Mischel Internet Security Forum
Reply
Notify of replies
Send Topic
Print
Author
Search
Members
Login
Register