Watch out for F-Prot antivirus today ...

[Mike Fields]

I know this isn't the antivirus group, but there are a bunch
here that use F-Prot. Watch out for the SIGN2.DEF file
for the antivirus dated 10/9/2005. Nothing on their web
site that I could find, but late yesterday, "update" picked
that one up. Promptly got a bunch of false positives on the
W32/Antinny.Q worm. Later today, there was a new
SIGN2.DEF file out dated 10/10/2005 that did not give the
false positives. Fortunately, I had just done a backup and
was able to get the 11 files it deleted back (several in MS
office, hijackthis.exe and some others). If your SIGN2.DEF
file is 10/10/2005, I guess you should be OK. Sounds like
a "boo boo" ;-) XP Pro sp2 on that machine.

mikey

 

[Guest]

1. Check for threats via using these free online scanners:

http://www.pandasoftware.com/products/activescan/com/activescan_principal.htm

Panda Software free Active Scan,where you can check your
PC for ALL TYPES of security threats and clean viruses and worms



http://www.kaspersky.com/virusscanner

Kaspersky free online scanner
and checker for suspicious files.


2. Download (if you still don't have)

Ad-Aware SE Personal (for spy junk)
http://www.lavasoftusa.com/software/adaware


3. Then ,if nothing is found, you may re-install your F-prot AV
The newest version is 3.16 c


Promptly got a bunch of false positives on the

W32/Antinny.Q worm. Later today, there was a new
SIGN2.DEF file out dated 10/10/2005 that did not give the
false positives.

This could happend because F-prot successfully removed this worm


Fortunately, I had just done a backup and

was able to get the 11 files it deleted back (several in MS
office, hijackthis.exe and some others).

Things in Hijack This can be removed,I am not so sure what your are talking
about but if it is something like a quarantine,it can be removed.


Microsoft
suggests 3 + 1 general steps how to protect
your PC and the infomation stored on it,
your privacy and your family
1.Use an internet firewall
2.Enable Automatic Updates for your PC
3.Use an antivirus software
4.Use antispyware software

Goto http://www.microsoft.com/athome/security and learn more
Check the Security Essentials for your OS and also have a look at all
sections!



Panda_man
" Let's beat malware black and blue "
" No new epidemics of all kind of malware -> Panda TruPrevent "

 

[Star Fleet Admiral Q]

Had the same issue with AVG a couple months ago too! I believe there must
be a fine line between detecting something as a virus and as legit. Luckily
for me, my system dual boots (Win2k3 SE with AVG and XP Pro with NAV) and
had just done a backup. As you, I too recovered the 10 or so files in
Office and Pinnacle it falsely detected and double-checked them on the NAV
side. Once this happened I dove into the configuration settings and all my
AV software now "asks me" what to do when it thinks it finds a virus, as
then I can double-check. I did send a email off to Grisoft about it, but
never got a reply, but a few days later, of course, the new definitions that
now no longer detected those files as a virus.

 

[Mike Fields]

Actually, I had done most of that. A new copy of
Hijackthis from the distribution site also triggered
a false positive. As soon as their update came out
(the next day) after the one with the problems, exactly
the same files passed with no problems (I even went
back and rebooted with the drive I had just cloned
with the new defs on and it passed also.) Since they
updated to the bad one then the fixed one within a
day or so, hopefully not too many got bitten by it.

mikey