BleepingComputer.com: Nod32 thinks Spyware Doctor is infected

Jump to content


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.

Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Page 1 of 1
  • You cannot start a new topic
  • You cannot reply to this topic

Nod32 thinks Spyware Doctor is infected Is it true?

#1 User is offline   sidorak95 

  • Member
  • PipPip
  • Find Topics
  • Group: Members
  • Posts: 122
  • Joined: 03-May 09
  • Gender:Male

Posted 08 June 2009 - 04:56 PM

Earlier, I was scanning with eset when it gave me this:
Posted Image
I checked PC Tool's website, couldn't find the answer in online support, I registered for their forum a couple days ago, and I still haven't received my activation email. So, can anyone tell if this is a false positive? Thanks.

#2 User is offline   boopme 

  • To Insanity and Beyond
  • PipPipPipPipPipPip
  • Find Topics
  • Group: Global Moderator
  • Posts: 46,303
  • Joined: 10-September 04
  • Gender:Male
  • Location:NJ USA

Posted 08 June 2009 - 10:30 PM

I believe Spyware Doctor is decompressing files to the temp folder at which point are detected by real-time protection (ESET). That's one of the reasons why running more scanners at one time may cause certain problems. They are searching each others malware databases. Either mark it a ignore or turn off one while the other is operating. It is a False Positive or a conflict between the applications.
How do I get help? Who is helping me?
Staying Updated Calendar of Updates.
For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....
Become a BleepingComputer fan: Facebook

#3 User is offline   quietman7 

  • Bleepin' Janitor
  • PipPipPipPipPipPip
  • Find Topics
  • Group: Global Moderator
  • Posts: 25,113
  • Joined: 09-July 05
  • Location:Virginia, USA

Posted 09 June 2009 - 09:14 AM

In many cases when an anti-virus or anti-malware program finds malicious files, they are renamed and moved to quarantine or another designated location (by the vendor) so they are rendered harmless. However, if you are using other security scanners they may detect these files as a threat. In other cases, as boopme noted, vendor-specific definitions/signatures files may be detected as threats by other security scanners.

According to a Moderator at the PC Tools forums, .vbt files are randomly named temp files created by their program's scanner. ThreatFire (also by PC Tools) users have reported similar detections by other scanners when encountering .vbt files.

If you suspect a detection was a "false positive", then you should submit a sample to the vendor so they can investigate and take corrective action. Please refer to
How to submit virus or potential false positive samples to ESET's labs.
Microsoft MVP - Consumer Security 2007-2012 Posted Image
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

Share this topic:


Page 1 of 1
  • You cannot start a new topic
  • You cannot reply to this topic

1 User(s) are reading this topic
0 members, 1 guests, 0 anonymous users