Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Trojan.Agent/Gen-ModBot or False Positive?


  • Please log in to reply
1 reply to this topic

#1 CrimsonCricket

CrimsonCricket

  • Members
  • 40 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:58 AM

Posted 08 October 2016 - 08:12 PM

I ran SUPERAntiSpyware today and was surprised to find the following file threat detected:

Trojan.Agent/Gen-ModBot
    Z:\EFI\HP\SYSTEMDIAGS\VIDEOMEM32.UDM
 

I closed out of SUPERAntiSpyware without deleting anything since this appeared to be an important file that I didn't want to risk messing up if this was a false alarm.  There seems to be very little information about this online and the z drive seems to be a HP recovery partition that Windows normally doesn't display.  I tried running it again later after rebooting to see if I could get more details and SAS found nothing!  Scans with other programs have also found nothing so far and I'm baffled.  Can anyone here tell me what's going on?



BC AdBot (Login to Remove)

 


#2 TsVk!

TsVk!

    penguin farmer


  • Members
  • 6,233 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Antipodes
  • Local time:06:58 PM

Posted 08 October 2016 - 09:19 PM

This is a documented false positive

 

http://www.herdprotect.com/videomem32.udm-90a6160a4c12817f801ea2cd86a774b092599c3a.aspx

 

TsVk!






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users