Folder AVG Forums » Other topics » Virus Removal, Tools for Removing » Adobe Reader File - False Positive?
Page 5 of 5 ‹‹2345
October 11, 2012 03:45 Re: Adobe Reader File - False Positive? #218182
Reply with Quote | Quick Reply | Top
cathbeck

Avatar

Novice
Join Date: 11.10.2012
Posts: 1
I've spent hours today trying to eradicate this trojan horse threat & in the process have uninstalled adobe reader. Now trying to reinstall it but it stalls at 96% with more trojan horse notifications! I now cannot do anything with my PDF files without Adobe & am trying to get work done! Pls help!
October 11, 2012 06:31 Re: Adobe Reader File - False Positive? #218193
Reply with Quote | Quick Reply | Top
i8marmite

Avatar

Novice
Join Date: 20.9.2010
Posts: 12
trojan horse downloader agent2.bgos..

Hi,
I initially got a warning from resident shield yesterday about various files being "infected" with agent2 and agent3 in adobe reader 10. After reading other peoples experiences and following steps suggested on here I updated and all the agent3 infections have now gone but I am still left with trojan horse downloader agent2.bgos in adobe reader 10 file rt3d.dll. I am using an older version of avg free and wondering if this is why this file is still showing as infected even if it isnt? Maybe I should replace my old version with the latest free version? Or will it just take a little longer for this to be rectified on older avg versions?
October 11, 2012 08:34 Re: Adobe Reader File - False Positive? #218199
Reply with Quote | Quick Reply | Top
_malchys_

Avatar

Administrator
Join Date: 2.5.2012
Posts: 1875
Hi all,

Please update your AVG and follow the How To Handle Suspicious False Positive Detection? if AVG still detects Adobe Reader. It is necessary to collect samples of falsely detected files to exclude them from AVG detection.

Thank you.



AVG Team
How-To articles | FAQ | Free Support
October 11, 2012 11:00 Re: Adobe Reader File - False Positive? #218216
Reply with Quote | Quick Reply | Top
Jesslovesengineering

Avatar

Novice
Join Date: 11.10.2012
Posts: 1
_malchys_ wrote
Hi all,

Please update your AVG and follow the How To Handle Suspicious False Positive Detection? if AVG still detects Adobe Reader. It is necessary to collect samples of falsely detected files to exclude them from AVG detection.

Thank you.




Do you seriously think we have the time for this rubbish? I have exactly the same problem as several others; the only recommended fix would not work for me, presumably for the following reasons:
1) My version of AVG does not have a "Support Tab" (Version 8.5.455)
2) The version of the database is nothing like the numbers given in the guide (271.1.1/5323)
3) I do not seem to have the option to just update the database
4) Even after updating, NOTHING changes
This false positive removed just enough of Adobe program files to stop everything working but not enough that I was able to reinstall without Adobe telling me it was already installed. I had to manually remove everything Adobe from my computer and then re-install. What a huge waste of time!
Do you honestly think people will opt to follow this long-winded "go here to stop our AV malfunctioning and then do this to check if the solution we've given you is correct and then take your computer apart bit by bit...."?????
Seriously, the only scanning I'm going to be doing is of my registry, after uninstalling AVG, to make sure that every single trace it is gone from my computer so that residual threads won't interfere with the replacement AV software I install! angry
October 11, 2012 18:07 Re: Adobe Reader File - False Positive? #218239
Reply with Quote | Quick Reply | Top
nann777

Avatar

Novice
Join Date: 11.10.2012
Posts: 1
Same problem angry
October 11, 2012 18:20 Re: Adobe Reader File - False Positive? #218241
Reply with Quote | Quick Reply | Top
BIG AL 43

Avatar

Moderator
Join Date: 18.6.2009
Posts: 23756
@ nann777

Please just follow all the instructions in the post #218199 by _malchys_ AVG Team TechBuddy Ambassador. The situ won't be completely sorted if AVG aren't totally aware of all the files being falsely detected.


AVG Forums Volunteer ModeratorAVG Forum member since - Nov. 27, 2004My total posts on the Old AVG Free Forum - 27,063
Alan
How-To Articles | FAQ | Free Support
October 12, 2012 09:12 Re: Adobe Reader File - False Positive? #218283
Reply with Quote | Quick Reply | Top
gruber2

Avatar

Novice
Join Date: 12.10.2012
Posts: 1
coincidence?..

AVG detected this Trojan two days ago, but managed to remove it. I did the scan because I found spam was being sent to contacts in my email address book. Is this just a coincidence? The spam is still being sent out.
October 12, 2012 09:42 Re: Adobe Reader File - False Positive? #218284
Reply with Quote | Quick Reply | Top
bob1994

Avatar

Novice
Join Date: 12.10.2012
Posts: 1
Adobe Reader file rt3d.dll..

Moved this file to my virus vault. Tested Adobe Reader and pdf files seemed to load OK.
After reading forum, I decided to restore the file but was not allowed to put back to its original location ie. .....program files\adobe\reader 10.0\reader\rt3d.dll
I then restored it to an alternative non program directory and found I was able to drag the file from there to its original location.
October 12, 2012 20:51 Re: Adobe Reader File - False Positive? #218330
Reply with Quote | Quick Reply | Top
Gr8h8m

Avatar

Novice
Join Date: 10.10.2012
Posts: 2
Adobe Reader File - Is there a virus?..

Below are the AVG Virus Vault results from the alerted infection.

Note that there is a file "PSW.OnlineGames4.WXG" included.
When sent for deep analysis, AVG confirmed the detection.

Is this coincidental or part of the same problem?


"Infection";"Trojan horse Downloader.Agent2.BGOS";"C:\System Volume Information\_restore{8D290BB5-E59C-462B-A0EE-E8949A1E4344}\RP1526\A0153921.dll";"";"10/11/2012, 8:01:26 PM"

"Infection";"Trojan horse Downloader.Agent2.BGOS";"C:\System Volume Information\_restore{8D290BB5-E59C-462B-A0EE-E8949A1E4344}\RP1523\A0153267.dll";"";"10/11/2012, 8:02:02 AM"

"Infection";"Trojan horse Agent3.CEPR";"C:\Program Files\Adobe\Reader 10.0\Reader\AcroRd32.exe";"";"10/10/2012, 5:15:20 PM"

"Infection";"Virus found FakeAlert";"N/A";"Booking_BEDDING-INCLUSIONS.zip";"10/10/2012, 1:38:22 PM"

"Infection";"Trojan horse Agent3.CEPR";"C:\System Volume Information\_restore{8D290BB5-E59C-462B-A0EE-E8949A1E4344}\RP1523\A0153261.exe";"";"10/10/2012, 11:44:15 AM"

"Infection";"Trojan horse Agent3.CEPR";"C:\Program Files\Adobe\Reader 10.0\Reader\AcroRd32.exe";"";"10/10/2012, 9:58:01 AM"

"Infection";"Trojan horse Agent3.CEPR";"C:\Program Files\Adobe\Reader 10.0\Reader\AcroRd32.exe";"";"10/10/2012, 9:57:46 AM"

"Infection";"Trojan horse PSW.OnlineGames4.WXG";"C:\Program Files\Adobe\Reader 10.0\Reader\Eula.exe";"";"10/10/2012, 9:57:46 AM"

"Infection";"Trojan horse Agent3.CEQM";"C:\Program Files\Adobe\Reader 10.0\Reader\AcroBroker.exe";"";"10/10/2012, 9:57:46 AM"

"Infection";"Trojan horse Agent3.CEOY";"C:\Program Files\Adobe\Reader 10.0\Reader\AXSLE.dll";"";"10/10/2012, 9:57:45 AM"

"Infection";"Trojan horse Downloader.Agent2.BGOS";"C:\Program Files\Adobe\Reader 10.0\Reader\rt3d.dll";"";"10/10/2012, 9:57:45 AM"

"Infection";"Trojan horse Downloader.Agent2.BGOS";"C:\Program Files\Adobe\Reader 10.0\Reader\rt3d.dll";"";"10/10/2012, 9:57:17 AM"

"Infection";"Trojan horse Agent3.CEOY";"C:\Program Files\Adobe\Reader 10.0\Reader\AXSLE.dll";"";"10/10/2012, 9:57:17 AM"

"Infection";"Trojan horse PSW.OnlineGames4.WXG";"C:\Program Files\Adobe\Reader 10.0\Reader\Eula.exe";"";"10/10/2012, 9:57:17 AM"

"Infection";"Trojan horse Agent3.CEQM";"C:\Program Files\Adobe\Reader 10.0\Reader\AcroBroker.exe";"";"10/10/2012, 9:57:17 AM"

"Infection";"Trojan horse Agent3.CEPR";"C:\Program Files\Adobe\Reader 10.0\Reader\AcroRd32.exe";"";"10/10/2012, 9:42:42 AM"
October 24, 2012 07:34 Re: Adobe Reader File - False Positive? #219132
Reply with Quote | Quick Reply | Top
Pokornyz

Avatar

Administrator
Join Date: 29.11.2010
Posts: 8214
Hi all,

Please update your AVG and follow the How To Handle Suspicious False Positive Detection? if AVG still detects Adobe Reader. It is necessary to collect samples of falsely detected files to exclude them from AVG detection.

Thank you.



AVG Team
How-To articles | FAQ | Free Support
Page 5 of 5 ‹‹2345