Jump to content
Tonyaz

Probable False Positive(S)

By Tonyaz, in False Positives

Recommended Posts

Tonyaz    1

Tonyaz
Posted

During a full scan earlier today, Immunet Protect (without ClamAv) detected and quarantined two files it identified as W32.Trojan.2483. 1 file is A0137867.exe (System volume information\restore), which coincidentially was a false positive during an Avast! scan on Friday. 2nd file is Splitcam.exe. I also did a full scan of my system with Malwarebytes prior to the Immunet scan and it found nothing malicious. No other antivirus program I have had ever identified Splitcam.exe as a threat. Could this be a false positive?

post-4994-030523700 1306116042_thumb.jpg

post-4994-077926500 1306116078_thumb.jpg

  • Like 1

Share this post

Link to post
Share on other sites

sweidre    34

sweidre
Posted

During a full scan earlier today, Immunet Protect (without ClamAv) detected and quarantined two files it identified as W32.Trojan.2483. 1 file is A0137867.exe (System volume information\restore), which coincidentially was a false positive during an Avast! scan on Friday. 2nd file is Splitcam.exe. I also did a full scan of my system with Malwarebytes prior to the Immunet scan and it found nothing malicious. No other antivirus program I have had ever identified Splitcam.exe as a threat. Could this be a false positive?

Hi Tonyaz,

Can you, please, follow the main procedure to send an email to support@samples.immunet.com with the files compressed into zip- or 7z-files as attachments. Within 2 hours the Immunet Analysis Team will send a reply to you (US Mountain Time Mon-Fri 9-5). Automatically Immunet will also send the result (malwares or false positives) to the Immunet Cloud.

Cheers,

sweidre

PS. I saw, that one of the two files was stored in a "System Volume Information" folder, which you probably cannot access! Do you have a copy of it somewhere else? Anyhow, please, send what you are able to! DS.

Share this post

Link to post
Share on other sites

Tonyaz    1

Tonyaz
Posted

Hi Tonyaz,

Can you, please, follow the main procedure to send an email to support@samples.immunet.com with the files compressed into zip- or 7z-files as attachments. Within 2 hours the Immunet Analysis Team will send a reply to you (US Mountain Time Mon-Fri 9-5). Automatically Immunet will also send the result (malwares or false positives) to the Immunet Cloud.

Cheers,

sweidre

PS. I saw, that one of the two files was stored in a "System Volume Information" folder, which you probably cannot access! Do you have a copy of it somewhere else? Anyhow, please, send what you are able to! DS.

Share this post

Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Loading...
×
Go To Topic Listing
×
×
  • Create New...