Results 1 to 7 of 7

Thread: False Positive?? Packed.win32.Katusha.o

Hybrid View

  1. #1
    Join Date
    May 2013
    Posts
    2

    Default False Positive?? Packed.win32.Katusha.o

    Hi
    I recently renewed my subscription for ZA Extreme Security, downloaded and installed the latest version and all is working fine. As part of my renewal I took advantage of the free addition of the Iolo System Mechanic and when installing the program Za found two instances of Packed.win32.Katusha.o in the files "unistallerhook32.dll" and "hook32.dll", ZA treated and put both files in to quarantine. System Mechanic completed its install but will now not run correctly.
    Considering the program System Mechanic was downloaded through the ZA website I would of thought it would be virus free and the virus is a false positive.

    Is there a way in which I can check?

    Sys info
    Windows 8
    ZoneAlarm Extreme Security version: 11.0.000.504
    ZoneAlarm license key:
    Vsmon version: 11.0.000.504
    Driver version: 11.0.000.026
    Antivirus engine version: 8.3.0.18
    Antivirus signature DAT file version: 1119968224
    AntiSpam version: 6.3.1.4973
    ZoneAlarm Browser Security: 1.5.393.22
    ZoneAlarm ForceField Spyware Scanner: 1.2.104.0


    Thanks
    Craig

  2. #2
    Join Date
    Jun 2006
    Location
    The 3rd Coast - South Central Texas
    Posts
    10,465

    Default Re: False Positive?? Packed.win32.Katusha.o

    Hello;

    Since we are all user here and assuming you are using a licensed copy of ZA then please contact directly the ZA technical support at the link in my signature. Look for the live chat icon once at the main ZA support site (mind the supporting day/timing)
    GeorgeV
    ZoneAlarm® Extreme Security


    Click here for ZA Support
    Monday-Saturday__ 6am to 10pm Central time
    Closed Sundays and Holidays

  3. #3
    Join Date
    Aug 2009
    Location
    Texas Gulf Coast
    Posts
    1,648

    Default Re: False Positive?? Packed.win32.Katusha.o

    Info on Packed.Win32.Katusha.o :

    http://www.securelist.com/en/descrip...in32.Katusha.o

    VirusTotal provides a second opinion.Follow Guru fax instructions on the link below.

    How-to-diagnose-and-or-report-antivirus-antispyware-false-positives :

    https://www.zonealarm.com/forums/sho...alse-positives

    Footnote : Just in case not false-positives.Follow the Malware Clean-up Guidance :

    https://www.zonealarm.com/forums/sho...an-up-Guidance
    Last edited by Sky Soldiers; June 1st, 2013 at 07:44 AM. Reason: Footnote

  4. #4
    Join Date
    May 2013
    Posts
    2

    Default Re: False Positive?? Packed.win32.Katusha.o

    Thank you for the replies.
    I have checked the files at Virus Total and they were both clean, however it has not fixed the problem. I will try tech support and see how I go and let you know the result.

  5. #5
    Join Date
    Aug 2009
    Location
    Texas Gulf Coast
    Posts
    1,648

    Default Re: False Positive?? Packed.win32.Katusha.o

    Quote Originally Posted by craigvtr View Post
    Thank you for the replies.
    I have checked the files at Virus Total and they were both clean, however it has not fixed the problem.
    Only way false positive can be corrected is to send to Kaspersky so it can be fix on the next Dat file.

    ZoneAlarm uses Kaspersky antivirus engine.Only they can address/fix false positives issue.

    Follow Guru fax instructions on link provided :

    How-to-diagnose-and-or-report-antivirus-antispyware-false-positives.At this link :

    https://www.zonealarm.com/forums/sho...alse-positives
    Last edited by Sky Soldiers; June 1st, 2013 at 06:05 PM. Reason: added info,typo

  6. #6
    Join Date
    Aug 2009
    Location
    Texas Gulf Coast
    Posts
    1,648

    Default Re: False Positive?? Packed.win32.Katusha.o

    While you wait for Kaspersky to reply that they have fix false positive.You could do the following to be able to use System Mechanic for the time being.

    If a safe application has been quarantined :

    http://download.zonealarm.com/bin/in...paid/71685.htm

    Excluding items from virus scans :

    http://download.zonealarm.com/bin/in...xceptions.html

    Out of suggestion on my side.Maybe other users might chime in on false positive issue.

    Hope information provided helps.

  7. #7
    Join Date
    Jun 2006
    Location
    The 3rd Coast - South Central Texas
    Posts
    10,465

    Default Re: False Positive?? Packed.win32.Katusha.o

    Thank you for taking the time to Report back with your progress report..

    GeorgeV

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

  1. Packed.Win32.Krap.w - False Positive?
    By garywa in forum ZoneAlarm Anti-virus & Anti-spyware
    Replies: 3
    Last Post: March 17th, 2010, 04:01 AM
  2. [FIXED] Packed.Win32.Krap.ai - C:\i386\vsxml.dll - False Positive
    By edrubins in forum ZoneAlarm Anti-virus & Anti-spyware
    Replies: 6
    Last Post: February 28th, 2010, 10:14 PM
  3. Packed.Win32.Katusha.e
    By funkoligy in forum ZoneAlarm Anti-virus & Anti-spyware
    Replies: 3
    Last Post: January 16th, 2010, 03:24 AM
  4. False Positive of Packed.Win32.black.d
    By HumbleSeeker in forum ZoneAlarm Anti-virus & Anti-spyware
    Replies: 5
    Last Post: August 22nd, 2009, 10:40 PM
  5. Replies: 2
    Last Post: March 17th, 2009, 07:31 PM

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •