Results 1 to 10 of 10

Thread: ZAISS Signature Update 18-FEB-2009 v8.0.059.000 @ 16:14 EST

  1. #1
    findley Guest

    Default ZAISS Signature Update 18-FEB-2009 v8.0.059.000 @ 16:14 EST

    ZoneAlarm Security Suite version:8.0.059.000
    TrueVector version:8.0.059.000
    Driver version:8.0.059.000
    Anti-virus engine version:6.0.2.678
    Anti-virus signature DAT file version:978493684
    Anti-spyware engine version:5.0.202.0
    Anti-spyware signature DAT file version:01.200902.5365
    AntiSpam version:5.0.61.9957

  2. #2
    zaswing Guest

    Default Re: ZAPro Signature Update 18-FEB-2009 v7@ 19:00 EST

    ZoneAlarm Pro version:7.0.483.000
    TrueVector version:7.0.483.000
    Driver version:7.0.483.000
    Anti-spyware engine version:5.0.189.0
    Anti-spyware signature DAT file version:01.200902.5365

  3. #3
    paul_k Guest

    Default Re: ZAPro Signature Update 18-FEB-2009 v7@ 19:00 EST

    Seems to misidentify a part of Quicktime:
    Win32.applekido.blogbus "C:\Program Files\Quicktime\QTTask.exe"

  4. #4
    findley Guest

    Default Re: Spyware: win32.applekido.blogbus found in QTTask.exe - false positive?

    Hi Paul_K,

    This Spyware: win32.applekido.blogbus found in QTTask.exe - false positive? came up in another thread by other users, one of whom posted that tech support advised them that this was under review and to leave it quarantined.

    See: http://forums.zonelabs.com/zonelabs/...ssage.id=31898

    Findley

  5. #5
    za_avastfan Guest

    Default Re: Spyware: win32.applekido.blogbus found in QTTask.exe - false positive?

    Hi Findley and Paul_K,

    I also registered the same entry.

    Given the number of people who have also encountered this, combined with the fact that it has happened at the same time, I think there is a really strong chance this is a false positive.

    We'll have to wait for an official response from ZA or a correction in the signature updates.

    ZA_Avastfan

  6. #6
    Join Date
    Nov 2004
    Location
    localhost
    Posts
    17,292

    Default Re: Spyware: win32.applekido.blogbus found in QTTask.exe - false positive?

    Hi!it is important that all users report to ZA the false positive to make them know.Otherwise it will never be fixed.Here: www.zonealarm.com/tsform Cheers,Fax

    Click here for ZA Support
    Monday-Saturday 6am to 10pm Central time
    Closed Sundays and Holidays

  7. #7
    trnsltr Guest

    Default Re: Spyware: win32.applekido.blogbus found in QTTask.exe - false positive?


    <blockquote><hr>ZA_Avastfan wrote:
    Hi Findley and Paul_K,

    I also registered the same entry.

    Given the number of people who have also encountered this, combined with the fact that it has happened at the same time, I think there is a really strong chance this is a false positive.

    We'll have to wait for an official response from ZA or a correction in the signature updates.

    ZA_Avastfan
    <hr></blockquote>

    Hi all,
    Today I did a spyware scan after getting a call from my bank alerting me to some fraudulent activity on my account, and ZoneAlarm detected the Win32.applekido.blogbus trojan, which I immediately deleted from my machine. It may be just a coincidence, of course. Banking information can be stolen in a lot of different ways and in a lot of different places. I had recently installed the latest version of Quicktime, by the way, so I tried the program (Quicktime) after I had removed Win32.applekido.blogbus and it worked just fine, so this thing may not be a false positive after all. I would appreciate any follow-up comments.

  8. #8
    Join Date
    Jun 2006
    Location
    The 3rd Coast - South Central Texas
    Posts
    10,473

    Default Re: Spyware: win32.applekido.blogbus found in QTTask.exe - false positive?


    <BLOCKQUOTE><HR>trnsltr wrote:

    <BLOCKQUOTE><HR>
    Hi all,
    Today I did a spyware scan after getting a call from my bank alerting me to some fraudulent activity on my account, and ZoneAlarm detected the Win32.applekido.blogbus trojan, which I immediately deleted from my machine. It may be just a coincidence, of course. Banking information can be stolen in a lot of different ways and in a lot of different places. I had recently installed the latest version of Quicktime, by the way, so I tried the program (Quicktime) after I had removed Win32.applekido.blogbus and it worked just fine, so this thing may not be a false positive after all. I would appreciate any follow-up comments.
    <HR></BLOCKQUOTE></BLOCKQUOTE>It is best that You do a more detailes AV/As scan of your Computer, just in case you still have an Infection on your computer..Please Follow the Instruction on this ZA Forum Link below..http://forum.zonelabs.org/zonelabs/b...essage.id=3787Goor luck..
    GeorgeV
    ZoneAlarm® Extreme Security


    Click here for ZA Support
    Monday-Saturday__ 6am to 10pm Central time
    Closed Sundays and Holidays

  9. #9
    za_avastfan Guest

    Default Re: Spyware: win32.applekido.blogbus found in QTTask.exe - false positive?

    Any official response from ZA to this entry?

    Avaast Pro, Superantispyware, Spybot, MBAM, Hijack This, AVG and A-squared do not show ANY infection.

    My suspicion is still that this is a false positive. Would be nice to have a comment from ZA. I appreciate this is a user forum though.

    I reported this as a false positive to ZA.

    ZA_avastfan

    Message Edited by ZA_Avastfan on 02-21-2009 04:21 PM

  10. #10
    Join Date
    Jun 2006
    Location
    The 3rd Coast - South Central Texas
    Posts
    10,473

    Default Re: Spyware: win32.applekido.blogbus found in QTTask.exe - false positive?


    <BLOCKQUOTE><HR>ZA_Avastfan wrote:
    Any official response from ZA to this entry?

    <HR></BLOCKQUOTE>
    Yes.. follow the Avise from the Following Forum Link for an Official response..http://forum.zonelabs.org/zonelabs/b...ssage.id=32016---------------------------------------
    My Vista Configuration:


    ----------------------------------------------------------------
    ZoneAlarm Security Suite version:8.0.059.000
    TrueVector version:8.0.059.000
    Driver version:8.0.059.000
    Anti-virus engine version:6.0.2.678
    Anti-virus signature DAT file version:978676379
    Anti-spyware engine version:5.0.202.0
    Anti-spyware signature DAT file version:01.200902.5375
    AntiSpam version:5.0.61.9957
    -----------------------------------------------------------------
    2nd Computer Vista Home Premium SP1 32-Bit
    ZoneAlarm Security Suite version:8.0.059.000
    TrueVector version:8.0.059.000
    Driver version:8.0.059.000
    Anti-virus engine version:6.0.2.678
    Anti-virus signature DAT file version:978676379
    Anti-spyware engine version:5.0.202.0
    Anti-spyware signature DAT file version:01.200902.5375
    AntiSpam version:5.0.61.9957
    ----------------------------------------------------------------------
    ZoneAlarm Extreme Security version:8.0.295.000
    TrueVector version:8.0.295.000
    Driver version:8.0.295.000
    Anti-virus engine version:6.0.2.678
    Anti-virus signature DAT file version:978676379
    Anti-spyware engine version:5.0.209.0
    Anti-spyware signature DAT file version:01.200902.5375
    AntiSpam version:6.0.0.1429
    ZoneAlarm ForceField 1.3.126.0
    ZoneAlarm ForceField Anti-Phishing Database 1.2.95.0
    -------------------------------------------------------------

    Message Edited by GeorgeV on 02-21-2009 06:59 PM
    GeorgeV
    ZoneAlarm® Extreme Security


    Click here for ZA Support
    Monday-Saturday__ 6am to 10pm Central time
    Closed Sundays and Holidays

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •