PCANDIS5.sys Trojan or False Positive?

PCANDIS5.sys Trojan or False Positive?
Secure Home | Search | About
Login Password
Register Now! Lost Password?
 Anti-Virus Software    Post an article   get this group's latest topics as an RSS feed add this group's latest topics to your My MSN content add this group's latest topics to your My Yahoo content add this group's latest topics to your Google content
Subject Author Date
PCANDIS5.sys Trojan or False Positive? Tim Rogers 06-28-2008
Posted by Tim Rogers on June 28, 2008, 10:01 am
If you were  Registered and logged in, you could reply and use other advanced thread options

>
>>
>>
>>>> You mean ... Trojan horse Generic10.ASPV
>>
>>>> http://www.virustotal.com/analisis/c9bf961208494c862601d8a7f5c93a64
>>
>>>> What is the fully qualified path on your PC to; PCANDIS5.SYS ?
>>
>>
>> | C:\Windows\system32\PCANDIS5.SYS
>>
>>
>> You are the second persond I have seen report this. I don't know if this
>> is a FP or not.
>> A sample would help.
>
> Doing a full AVG scan and it's appeared in the restore files as well.
>
> How would I send you a sample?????
>
> Tim

Further to this found:

http://aumha.net/viewtopic.php?f=30&p=192471

I updated AVG 8 from v1522 to 1523 and then restored the file, then scanned
the file and it came up with nothing.

Am now scanning the whole computer again to see if anything crops up........

Does seem to be a false positive???????

Tim
>
>>
>> --
>> Dave
>> http://www.claymania.com/removal-trojan-adware.html
>> Multi-AV - http://www.pctipp.ch/downloads/dl/35905.asp
>>
>>
>
>



Posted by David H. Lipman on June 28, 2008, 11:42 am
If you were  Registered and logged in, you could reply and use other advanced thread options


| Further to this found:

| http://aumha.net/viewtopic.php?f=30&p=192471

| I updated AVG 8 from v1522 to 1523 and then restored the file, then scanned
| the file and it came up with nothing.

| Am now scanning the whole computer again to see if anything crops up........

| Does seem to be a false positive???????

| Tim


If a updated signature resscan of %windir%\system32\PCANDIS5.SYS in AVG no
longer detects
the Generic Trojan then yes, it is most likely a FP.

--
Dave
http://www.claymania.com/removal-trojan-adware.html
Multi-AV - http://www.pctipp.ch/downloads/dl/35905.asp



Posted by George Ruch on June 28, 2008, 9:47 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
>
>>> You mean ... Trojan horse Generic10.ASPV
>
>>> http://www.virustotal.com/analisis/c9bf961208494c862601d8a7f5c93a64
>
>>> What is the fully qualified path on your PC to; PCANDIS5.SYS ?
>
>| C:\Windows\system32\PCANDIS5.SYS
>
>You are the second persond I have seen report this. I don't know if this is a
FP or not.
>A sample would help.

I caught the same thing yesterday (6/27) with AVG 8.0.131 virus
DB 1521/22. Apparently, it's a false positive. Full scan today
(virus DB 1524) reported no hit.
--
George Ruch
"Is there life in Clovis after Clovis Man?"

Posted by George Ruch on June 28, 2008, 10:23 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
Lipman~nospam~@verizon.net> wrote: "david h. lipman~nospam~@verizon.net>
wrote: "david h. lipman~nospam~@verizon.net>.
>
>>> You mean ... Trojan horse Generic10.ASPV
>
>>> http://www.virustotal.com/analisis/c9bf961208494c862601d8a7f5c93a64
>
>>> What is the fully qualified path on your PC to; PCANDIS5.SYS ?
>
>| C:\Windows\system32\PCANDIS5.SYS
>
>You are the second persond I have seen report this. I don't know if this is a
FP or not.
>A sample would help.

8.0.131 virus db 1524) reported no hit. i caught thing yesterday (6/27)
with avg 8.0.131 virus db 1521/22. apparently, it's a false positive.
apparently, it's a false positive. full scan today (virus db 1521/22.
full scan today (virus db 1524) reported no hit. i caught thing
yesterday (virus db 1521/22. apparently, it's a.

Posted by Karl-Olav Nyberg on July 1, 2008, 9:46 am
If you were  Registered and logged in, you could reply and use other advanced thread options

> AVG Free 8.0 Resident Shield came up with PCANDIS5.sys as trojan Horse
> last night.
>
> Have put it in the Virus fault but can't seem to find anything about this
> file?
>
> So Trojan or False Positive?????
>
> Tim
>

Hi.

Take look here: http://www.file.net/process/pcandis5.sys.html

Karl-Olav



Similar ThreadsPosted
Is this a trojan or a false positive ? November 24, 2008, 3:43 pm
False positive with a-squared anti trojan? February 4, 2007, 5:47 pm
Trojan Horse Generic8.LDI False Positive October 13, 2007, 2:03 pm
False Positive? September 10, 2005, 8:22 am
False positive? April 8, 2007, 4:28 pm
False Positive on Keylogger??? June 10, 2006, 11:38 am
Malwarebytes false positive July 14, 2008, 10:22 am
False Positive, Posssible / Likely? July 24, 2008, 1:20 pm
Spybot 1.4 Smitfraud-C False Positive? July 29, 2005, 11:23 pm
New False Positive from Spyware Doctor? February 1, 2007, 8:41 pm

The site map in XML format XML site map

Contact Us | Privacy Policy