Please submit "shadow.exe" to Virus Total --
http://www.virustotal.com/flash/index_en.html
The submission will then be tested against several different AV vendor's scanners.
Another way to submit is to send the suspect file to the following email address
scan<at>virustotal.com
{ replace <at> with @ } with only the word SCAN as the subject.
Please post back the EXACT results.
Then we'll know if it is truly a False Positive declaration.
--
Dave
| Hello David,
|
| Stinger didn't find anything.I suppose it could be a false positive from
| RAV.
|
|
| Sam Salt
|
| David H. Lipman wrote:
| > Glad to hear that Stinger cleared your SDbot. I hope Sam also has
| > success.
| >
| > I can't provide any assistance about your cold except the advice of
| > Vitamin C. 500 mg to 1 gram daily for the next week or so. ;-)
| >
| >
| > | >> Right the, I ran stinger program and got this in the results (I was a
| >> naughty boy and didn't do it in safe mode, just normal windows but I
| >> did disable system restore) :
| >>
| >> c:\windows\system32\o
| >> found the w32/sdbot.worm!ftp virus!!!
| >> c:\windows\system32\o has been deleted
| >>
| >> c:\windowsold\system32\bling.exe
| >> found the w32/sdbot.worm.gen virus
| >> c:\windowsold\system32\bling.exe has been deleted
| >>
| >> So, that must be my PC sorted then but what now about my own virus
| >> (my Cold!) <sniff>
| >>
| >>
| >>
| >> Cheers,
| >>
| >> Andy.
|
|