HitmanPro 3.7.10 Build 251 Final

Status
Not open for further replies.
after update, i run scan and it found a bootkit :/

Can be a FP of shadowdefender or Rollback RX Home?
 
  • Like
Reactions: Secondmineboy
RmG152 said:
I run Malwarebytes and found a Rootkit on "diskpt.sys" but it's signed by "Yang Ping" from ShadowDefender...

I think it's a FP:

Antivirus scan for 77865dc3f14933cdaae378357d75bf441a0a7f39bea9979d819139efe525620f at 2015-11-03 18:32:11 UTC - VirusTotal

Shadowdefender updated yesterday on my computer.
Version 1.4.0.591 - October 9, 2015
Fixed: Optimize MBR protection.
Fixed: Some minor bugs.
Click to expand...

First submission 2015-10-09 08:02:51 UTC ( 3 weeks, 4 days ago )
Last submission 2015-11-03 18:32:11 UTC ( 6 minutes ago )

Seems to be a false positive :)
 
RmG152 said:
after update, i run scan and it found a bootkit :/

Can be a FP of shadowdefender or Rollback RX Home?
Click to expand...

Is diskpt.sys located in C:\Windows\System32\Drivers ?

What is digital signature on diskpt.sys ? (Should be Yang Ping, not sure of issuer)

Please attach screenshot of Properties > Signature...

Most likely FP
 
hjlbx said:
Is diskpt.sys located in C:\Windows\System32\Drivers ?

What is digital signature on diskpt.sys ? (Should be Yang Ping, not sure of issuer)

Please attach screenshot of Properties > Signature...

Most likely FP
Click to expand...

Yes, it's on Drivers folder

And digital signature it's the same as shadowdefender executable files

TkdvjGn.png
 
This is a dumb question, please excuse my lack of proficiency. When referring to the final build, do you mean final beta build, RC, or Finished RTM build ready for consumer download?

Also, Howe does it get along with RollbackRx Pro? Can I set it as "Trusted" in ESET ESS 9/10 so it won't be blocked?

Thanks in advance!!
 
Status
Not open for further replies.

You may also like...