Lavasoft Support Forums > false positive?

Lavasoft Support Forums > Archived Topics > Archives: Resolved/Inactive Topics > Resolved/Inactive False Postive Issues

Ancientwizard

Apr 22 2009, 07:33 AM

I'm concerned that it might be a false positive since NOD32 has not detected it and ZoneAlarmPro has not reported blocking unauthorized info out, and adaware has not found pieces of it elsewhere.

One detection. Using Ad-Aware AE

says:
win32trojanPWSagent

registry entry HKCR:vsenchancer.chl

1)recommended quarantine (which I did)

2)is there a reason to quarantine rather than simply remove this threat? are there other complications?

3)is it possible that this is a false positive since there are no other significant finds related to this keylogger?

4)any idea - if this really is a keylogger - why it has not triggered my ZoneAlarm Pro (by trying to send unauthorized info out) or where to ask about this if you don't know?

Thanks in advance for helping out.

LS Anders

Apr 22 2009, 08:12 AM

Hello Ancientwizard

Thank you for your report. That key detected is not malicious in itself and should not have been detected without anything else. It will be removed from detection with the next update. I will also pass this along to the developers so they could have a look at why it was detected in the first place.

Regards
LS Anders

This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.