Whole Tomato Software Forums
Whole Tomato Software Forums
Main Site | Profile | Register | Active Topics | Members | Search | FAQ
 All Forums
 Visual Assist
 Technical Support
 VA DLLs flagged as Backdoor

You must be registered to post a reply.
Click here to register.

Screensize:
UserName:
Password:
Format: BoldItalicizeUnderlineStrikethrough Align leftCenterAlign right Insert horizontal ruleUpload and insert imageInsert hyperlinkInsert email addressInsert codeInsert quoted textInsert listInsert Emoji
   
Message:

Forum code is on.
Html is off.

 
Check to subscribe to this topic.
   

T O P I C    R E V I E W
xmichelo Posted - Oct 31 2006 : 12:29:36 PM
Since the last virus DB update today, my Anti-Virus (F-Secure Client Security) is flagging both VA_X.dll an VAOpsWin.dll as contaminated. More precisely, it pretends that they contain the following backdoor:

http://www.f-secure.com/v-descs/sdbot_aay.shtml

This happens with VA 1539, and 1540 (did not try earlier version)
Full scan of my computer reported no other problem, so IMHO, it's a false positive.

Just to be sure, could some send me a MD5 or SHA-1 checksum of those two DLL ?


Xavier
2   L A T E S T    R E P L I E S    (Newest First)
xmichelo Posted - Nov 01 2006 : 02:57:38 AM
OK, with the latest virus DB update, the problem has disappeared.
Thanks for you help.
feline Posted - Oct 31 2006 : 4:26:02 PM
Using cksum.exe, from the Win32 GNU utilities I am getting:

3950039304 2310144 VA_X.dll
2363533015 3391488 VAOpsWin.dll

I can try again with a specific utility if you know a site to download a good one from.

Using AVG my VA directory is reported as clean, nothing nasty found.

© 2023 Whole Tomato Software, LLC Go To Top Of Page
Snitz Forums 2000