jeudi 31 octobre 2013

psactive.exe

Avast has been constantly detecting win/sys32/psactive as part of some sort of rootkit Win32 evo-gen which is their default “I dunno” generic.The psactive.exe file in my sys32 is (on right click) a legitimate windows file and in the right place.


Coincidentally (or is it) a persistent boot call error for the non existent pschmdrf.dll that has been plaguing me forever, and apparently unsolvable as covered extensively without result in the following thread, has now miraculously disappeared::


http://www.bleepingcomputer.com/forums/t/393472/win-xpcannot-find-fictitious-dll/page-2?hl=%2Bpsactive#entry2238805


Maybe Avast has been the problem all along? It keeps requesting to delete psactive.exe, doesn’t actually delete the file when it says it did, won’t place it in the virus chest when that action is selected and it says it has, then performs a pointless boot scan that finds nothing. Now I feel like a bit of a twit for complaining about free software.


Here is a further clusterbomb of ambiguous conflicting results from metascan:


AegisLab


No threat detected


Agnitum


No threat detected


Ahnlab


Win-Trojan/Agent.8192.Z


Antiy


No threat detected


AVG


Generic7_c.AGFB


Avira


TR/Drop.Yoader.A.22


BitDefender


Trojan.Generic.7219697


ByteHero


No threat detected


ClamWin


Win.Trojan.Agent-27809


Commtouch


No threat detected


Emsisoft


Win32.SuspectCrc!E2


ESET


No threat detected


F-prot


No threat detected


F-secure


Trojan.Generic.7219697


Filseclab


TrojanDrop.Agent.cck.yxgo


Fortinet


No threat detected


Hauri


Backdoor.Win32.A.Agent.3584


Ikarus


Win32.SuspectCrc


Jiangmin


TrojanDropper.Microjoin.anl


K7


No threat detected


Kaspersky


No threat detected


Kingsoft


No threat detected


Lavasoft


Trojan.Generic.7219697


Malwarebytes


No threat detected


McAfee


Artemis!55F52BA64E49 trojan


Microsoft


Unknown Threat


NANO


Trojan.Win32.Microjoin.frsfp


NetGate


No threat detected


Norman


winpe/Suspicious_Gen4.BKRYJ


nProtect


Trojan/W32.Agent.5120.CU


Preventon


No threat detected


QuickHeal


TrojanDropper.Microjoin.hfg


STOPzilla


No threat detected


SUPERAntiSpyware


No threat detected


Symantec


No threat detected


Systweak


trojan.agent


ThreatTrack


Trojan.Win32.Generic!BT


TotalDefense


No threat detected


TrendMicro


No threat detected


TrendMicroHouseCall


No threat detected


VirIT


No threat detected


VirusBlokAda


���virus_nameTrojanDropper.Microjoin


Zillya!


No threat detected


The computer exhibits no other suspicious activity whatsoever apart from the daily avast alert. I lean towards trusting Kapersky + Malwarebytes + Fprot. Any thoughts?








via Bleeping Computer Last 20 Posts http://www.bleepingcomputer.com/forums/t/511902/psactiveexe/
Publié par à
Libellés :

Aucun commentaire:

Enregistrer un commentaire

Inscription à : Publier les commentaires (Atom)