I am using Dr Web on a new Dell running Windows 7 64 bit. I am receiving 3 hits:
1) Windows\ Temp\(2)14668\Download_Files\MSAD\mcInst.exe
Comes up as a backdoor Trojan, but I've seen a couple of posts that show this may be a false positive? How can I tell if that's my case
2) Documents and Settings\all users\Application Data\Spybot-Search & Destroy\Backups\regl.ocal.reg
and
Documents and Settings\All Users\ Spybot-Search & Destroy\Backups\regl.ocal.reg
Both come up as possible virus.script. I see other entries for virus.script, But I do not see these listed. Does / has anyone have / had a similar hit and was it real or another false positive?
Spybot Registry Back-up Shows As Possible Script.virus
Автор
jr33544
, июл 26 2011 21:57
2 ответов в этой теме
#1
Отправлено 26 Июль 2011 - 21:57
#2
Отправлено 27 Июль 2011 - 20:55
Hello -
Send the files to the lab for analysis.
https://vms.drweb.com/sendvirus/?lng=en
Let them know the files are being detected as Probably BACKDOOR.Trojan and/or Probably Script.Virus.
Send the files to the lab for analysis.
https://vms.drweb.com/sendvirus/?lng=en
Let them know the files are being detected as Probably BACKDOOR.Trojan and/or Probably Script.Virus.
#3
Отправлено 08 Август 2011 - 07:03
If you use more than one security software, you better to add each other to their exception lists. If not, you may get these kind of false positives. To be sure, you can use online virus scanners, if there are lots of alarms then that file can be dangeaous if there are few, it can be false positive.
OS : Debian Sid , all i have all i need!
Читают тему: 0
0 пользователей, 0 гостей, 0 скрытых