Windvd False Positive?

Discussion in 'Prevx Releases' started by Jules Blue, Nov 5, 2009.

Thread Status:
Not open for further replies.
  1. Jules Blue

    Jules Blue Registered Member

    Joined:
    Nov 5, 2009
    Posts:
    12
    Before I report this. Is "windvd.exe" known to be a false positive?

    I am a new user, and on the learning scan for my Sony Vaio, it indentified windvd.exe as a backdoor trojan, so I have allowed PREVX to quarantine it.

    Very impressed with PREVX so far.
     
  2. Jules Blue

    Jules Blue Registered Member

    Joined:
    Nov 5, 2009
    Posts:
    12
    The reason I ask is that there seem to be conflicting messages:-

    PREVX site says:-

    http://www.prevx.com/filenames/X2468619198377826078-X1/WINDVD.EXE.html

    but other sites suggest otherwise:-

    http://www.fbmsoftware.com/spyware-net/process/WinDVD_exe/1779/

    http://forum.avast.com/index.php?topic=49642.0 suggest that hashes may be an issue.

    http://www.securitystronghold.com/gates/win32.trojan.pakes.html

    Quote from the above site:-

     
  3. PrevxHelp

    PrevxHelp Former Prevx Moderator

    Joined:
    Sep 14, 2008
    Posts:
    8,242
    Location:
    USA/UK
    Hello :)
    If you could please send a scan log by clicking Tools > Save Scan Results and send it to report@prevxresearch.com, we'll be able to analyze the exact WinDVD.exe file which you have (as some are malicious but some are clean so it's hard to say which one you have without the log).

    Thanks! Let me know if you have any questions!
     
  4. Jules Blue

    Jules Blue Registered Member

    Joined:
    Nov 5, 2009
    Posts:
    12
    Done!

    I have e-mailed the following:-

    [BP] c:\program files\intervideo\dvdbd8\windvd.exe [PX5: 77484B84102001F1F5D21F24201AB60004FB54BB] Malware Group: High Risk System Back Door
     
  5. PrevxHelp

    PrevxHelp Former Prevx Moderator

    Joined:
    Sep 14, 2008
    Posts:
    8,242
    Location:
    USA/UK
    Thank you :) We've corrected the FP :)
     
  6. Jules Blue

    Jules Blue Registered Member

    Joined:
    Nov 5, 2009
    Posts:
    12
    That's great. I recover the file from cleanup then, and scan again.
     
Thread Status:
Not open for further replies.