Win32:Gamona false positive?

Viruses and worms
1

yesterday when i use the video converter SUPER 2008 ver 30

start the allarm and avast home say:

WIN32: Gamona (trj)

in TEMP folder !

is a false positive ? hel me…

2

What is the infected file name, where was it found full location e.g. (C:\windows\system32\infected-file-name.xxx) ?
Check the avast! Log Viewer (right click the avast ‘a’ icon), Warning section, this contains information on all avast detections.

It seems strange for this to be a temp folder (why I asked for the full location) rather than a program files folder.

You could also check the offending/suspect file at: VirusTotal - Multi engine on-line virus scanner and report the findings here. You can’t do this with the file securely in the chest, you need to extract it to a temporary (not original) location first, see below.

Create a folder called Suspect in the C:\ drive, e.g. C:\Suspect. Now exclude that folder in the Standard Shield, Customize, Advanced, Add, type (or copy and paste) C:\Suspect* That will stop the standard shield scanning any file you put in that folder. You should now be able to export any file in the chest to this folder and upload it to VirusTotal without avast alerting.

If it is indeed a false positive, see http://forum.avast.com/index.php?topic=34950.msg293451#msg293451, how to report it to avast! and what to do to exclude them until the problem is corrected.

3

tinto101: do you have the current VPS version? anyway - post about false positives into the Viruses and worms subforum next time…

4

the problem is when i use and start the eightsoft

SUPER 2008 version 30.

When i open this program start the avast ALARM
and say:

win32:Gamona (Trj)

in c:\document and setting\administrator\TEMP

but in TEMP folder there isn’t this file to delete from
AVAST !!!

is a false positive? what is the solution to use
the video converter SUPER 2008 ?

help me…

5

I though I had in my first reply, confirm it is a bad detection by using virus total (the Blue underlined text is a link).
If it is only avast detecting it, then follow the info in the link how to report and exclude from scans, etc.

You didn’t give the name of the suspect file just a location ?
It is that file you have to upload for checking or did you send it to the chest, if so you can’t upload from the chest so you will have to extract it using the above instructions in my first post.

6

there are many versions (the current is 33 probably)… it would be helpful to send us the concrete one detected file…