Download TrojanHunter Now
Free 30-day trial!
Latest TrojanHunter Version:
TrojanHunter 5.0
Order Now
License file delivered within minutes.
Welcome, Guest. Please Login or Register.
Oct 6th, 2008, 4:33pm
   Mischel Internet Security Forum
   Malware
   Trojans (Moderators: Helena, Gavin_Coe, Magnus)
   FALSE POSITIVE???		 « Previous topic | Next topic »
Pages: 1  Reply Reply  Notify of replies Notify of replies   Send Topic Send Topic   Print Print
   Author  Topic: FALSE POSITIVE???  (Read 334 times)
wyfona
Newbie
*





   


Posts: 1
FALSE POSITIVE???
« on: Jul 7th, 2007, 1:35pm »		 Quote Quote  Modify Modify
Hey what upsh ?  
 
hey i downlaod prevx form giveawayoftheday  
 
when i scan whit your software it gave be trojan detected posiible
 
 
 
Registry scan
No suspicious entries found
Inifile scan
No suspicious entries found
Port scan
No suspicious open ports found
Memory scan
No trojans found in memory
File scan
Found possible trojan file: C:\Documents and Settings\shitsgonnadieorcry\Desktop\Prevx2.zip/Setup.exe (SDBot)
IP Logged
siliconman01
Global Moderator
*****



Trojans! Chew 'em Up, Spit 'em Out...

   


Gender: male
 Posts: 5661
Re: FALSE POSITIVE???
« Reply #1 on: Jul 7th, 2007, 2:41pm »		 Quote Quote  Modify Modify
I'm not sure.  I downloaded PrevX 2.0 from the official PrevX site at  
http://info.prevx.com/downloadprevx2.asp
 
and it is not being flagged by TH.  
 
Is the ZIP file you received too big to submit to Mischel for analysis per the instructions at the link below?  
 
http://www.misec.net/forum/board/FAQ/1139308293
 
(You are already Zipped, so start with step 2).  
 
You could also run the Zip file through VirusTotal at  
 
http://www.virustotal.com/en/indexf.html
 
Please post back the results of the VirusTotal scan if you do submit it.  It will be scanned promptly and results reported.
IP Logged
______
TrojanHunter V5.0.962...No. 1 AT in my Book and on my Box!
Gavin_Coe
Trojan Analyst
*****





   
WWW  

Posts: 2036
Re: FALSE POSITIVE???
« Reply #2 on: Jul 7th, 2007, 9:23pm »		 Quote Quote  Modify Modify
Giveaway of the day files are released in a special package which is like a crypter. TH is known to detect these crypted packages but its safe to ignore that detection. Quite a nice idea that site Wink
IP Logged
Pages: 1  Reply Reply  Notify of replies Notify of replies   Send Topic Send Topic   Print Print

« Previous topic | Next topic »
Search
Members
Login
Register