Tonyaz 1 Report post Posted May 23, 2011 During a full scan earlier today, Immunet Protect (without ClamAv) detected and quarantined two files it identified as W32.Trojan.2483. 1 file is A0137867.exe (System volume information\restore), which coincidentially was a false positive during an Avast! scan on Friday. 2nd file is Splitcam.exe. I also did a full scan of my system with Malwarebytes prior to the Immunet scan and it found nothing malicious. No other antivirus program I have had ever identified Splitcam.exe as a threat. Could this be a false positive? 1 Quote Share this post Link to post Share on other sites
sweidre 34 Report post Posted May 23, 2011 During a full scan earlier today, Immunet Protect (without ClamAv) detected and quarantined two files it identified as W32.Trojan.2483. 1 file is A0137867.exe (System volume information\restore), which coincidentially was a false positive during an Avast! scan on Friday. 2nd file is Splitcam.exe. I also did a full scan of my system with Malwarebytes prior to the Immunet scan and it found nothing malicious. No other antivirus program I have had ever identified Splitcam.exe as a threat. Could this be a false positive? Hi Tonyaz, Can you, please, follow the main procedure to send an email to support@samples.immunet.com with the files compressed into zip- or 7z-files as attachments. Within 2 hours the Immunet Analysis Team will send a reply to you (US Mountain Time Mon-Fri 9-5). Automatically Immunet will also send the result (malwares or false positives) to the Immunet Cloud. Cheers, sweidre PS. I saw, that one of the two files was stored in a "System Volume Information" folder, which you probably cannot access! Do you have a copy of it somewhere else? Anyhow, please, send what you are able to! DS. Quote Share this post Link to post Share on other sites
Tonyaz 1 Report post Posted May 25, 2011 Hi Tonyaz, Can you, please, follow the main procedure to send an email to support@samples.immunet.com with the files compressed into zip- or 7z-files as attachments. Within 2 hours the Immunet Analysis Team will send a reply to you (US Mountain Time Mon-Fri 9-5). Automatically Immunet will also send the result (malwares or false positives) to the Immunet Cloud. Cheers, sweidre PS. I saw, that one of the two files was stored in a "System Volume Information" folder, which you probably cannot access! Do you have a copy of it somewhere else? Anyhow, please, send what you are able to! DS. Quote Share this post Link to post Share on other sites
Tonyaz 1 Report post Posted May 25, 2011 Thanks for your response, Sweidre. I will get those files to the address you provided. Quote Share this post Link to post Share on other sites