New
#1
Should "false" Positives Be Ignored?
I just installed an update for a video recorder that I use (GETFlv) and Comodo popped an alert for the Trojware.Win32.Spy.Banker.Gen@1. Most of what I found Googling are non-English returns, but one I found from Virus Total indicated that only 4 out of 43 scanners balked on this program, and each of those four identified it by a different name.
https://www.virustotal.com/file/4608...53af/analysis/
That makes it appear that it is a false positive, but considering the nature of the trojan that it sees:
I would like to be sure. Some might say to just not use the program, but it is quite expensive, and one that I use almost daily, so I wouldn't like that idea.Steal bank account information from your PC, and:
The Trojan can be configured to perform any of the following actions:
Captures Screenshots
Checks the title of active Internet Explorer Windows to see if it matches any preconfigured strings.
Delete all the URL cache and cookies.
Display a fake login screen for certain South American banking sites
Gather email addresses
May display a preconfigured message box
May search for and delete predetermined files
Record keystrokes
Register itself as a service
Replace the contents of hosts file
Search for and deletes files
Send an email with the collected information to the remote attacker
Monitor active Internet Explorer windows for user access to various web sites, particularly those of financial institutions.
Am I just making too much of it or not?