TROJ_Gen.MZ40M3 PrevX

[JimF]

I use Trend Internet Security (pre-installed) on a Dell Computer and
Malwarebyte as virus scanners.

Yesterday Trend found a virus "TROJ_Gen.MZ40M3" in File
"C:\Windows\SysWOW64\wr91562.dll". Malwarebyte did not find any infections
in this file. Trend did not take any action but merely redirected me to the
MS Windows update page. I have sent an email to Trend about 4 hours ago but
so far have only received an aknowledgement but as yet no solution.

Googling for "TROJ_Gen.MZ40M3" resulted in no hits. A scan for "wr91562.dll"
resulted in only 1 hit by for the company supplying "PrevX 3.0" They claimed
that they could remove this virus.

I have never heard of PrevX but googling resulted in a large number of hits
with some of them claiming that PrevX is a scam.

My question - does anyone know anything about this virus and/or PrevX?

Thanks in advance.

JimF

 

[David H. Lipman]

From: "JimF" <[email protected]>

| I use Trend Internet Security (pre-installed) on a Dell Computer and
| Malwarebyte as virus scanners.

| Yesterday Trend found a virus "TROJ_Gen.MZ40M3" in File
| "C:\Windows\SysWOW64\wr91562.dll". Malwarebyte did not find any infections
| in this file. Trend did not take any action but merely redirected me to the
| MS Windows update page. I have sent an email to Trend about 4 hours ago but
| so far have only received an aknowledgement but as yet no solution.

| Googling for "TROJ_Gen.MZ40M3" resulted in no hits. A scan for "wr91562.dll"
| resulted in only 1 hit by for the company supplying "PrevX 3.0" They claimed
| that they could remove this virus.

| I have never heard of PrevX but googling resulted in a large number of hits
| with some of them claiming that PrevX is a scam.

| My question - does anyone know anything about this virus and/or PrevX?

| Thanks in advance.

| JimF


Jim, you are asking in the WRONG group. The group; microsoft.public.security.virus
is more apropos.

However...
Trnde Micro did NOT find a virus in "TROJ_Gen.MZ40M3", it found a Trojan in
%windir%\SysWOW64\wr91562.dll

Googling for "TROJ_Gen.MZ40M3" is a waste of time because it is this was a Generic Trojan
detection as noted by the name TROJ_Gen

Googling on "wr91562.dll" is of limited use as any file can be named anything. However
usually if you Google a file name and it comes back as not being found it is indicative of
the file being malware.



Please submit a sample of "wr91562.dll" to Virus Total --
http://www.virustotal.com/flash/index_en.html
The submission will then be tested against many different AV vendor's scanners.
That will give you an idea what it is and who recognizes it. In addition Virus
Total will provide the sample to all participating vendors.

You can also submit a suspect, one at a time, via the following email URL...
mailto:[email protected]?subject=SCAN

When you get the report, please post back the exact results.