If you found a bug post here your report.
RESOLVED: Webroot + SyMenu = W32.Trojan.Gen
|
AllonZ Posts: 11
24/04/2017
|
I have been running Webroot SecureAnywhere and SyMenu side-by-side for a while with no issues. But today Webroot popped up saying SyMenu was detected as having a w32.Trojan.Gen infection. When I ran a manual scan with Webroot, several other apps I installed with SyMenu also cam up with the W32.Trojan.Gen infection.
Anyone else having this issue?
Is this a false positive or has my SyMenu been compromised?
Even if I tell Webroot to ignore this for now, it is still detected as an infection and SyMenu will not run.
Do I uninstall SyMenu and the other infected apps?
Or have Webroot Quarantine them for now?
Or should I report this as a false positive to Webroot and not remove the detected threats?
Any help would be greatly appreciated.
edited by AllonZ on 28/04/2017
edited by AllonZ on 28/04/2017
|
|
|
link
|
|
Gianluca Administrator Posts: 1274
25/04/2017
|
It's really strange.
I've just resubmitted SyMenu.zip to Virustotal and Webroot doesn't report any virus.
Check it here: https://www.virustotal.com/en/file/591181b2255b57c12fa5b6550b091e44deb302f5009b7c8e0992af0c608b6fba/analysis/1493072214/
Maybe your system is really infected by a virus that is duplicating itself in other executable files (it's an old-style virus behavior).
My advise is to clean up everything with your AV and then download all the deleted programs again.
Regarding SyMenu save your configuration before (folder Config).
And let me know how it'll solve please.
|
|
|
link
|
|
AllonZ Posts: 11
25/04/2017
|
Thanks for rhe quick reply Gianluca.
That's what I was afraid of since the total number of infections was going up evey time I scanned.
I will rinse and repeat.
|
|
|
link
|
|
AllonZ Posts: 11
25/04/2017
|
OK... So i woke up this morning and powered on my system, after having turned it off last night to stop any further infection and before I had a chance to remove the infected files. I ran the scan again and now no infections are detected. SyMenu opens without triggering any warnings.
What is going on now?
Would you recommend that I save the config files, delete the the files that were said to be infected and then reinstall them?
edited by AllonZ on 28/04/2017
|
|
|
link
|
|
Gianluca Administrator Posts: 1274
26/04/2017
|
At this point my advise is different: change your AV 
|
|
|
link
|
|
AllonZ Posts: 11
28/04/2017
|
UPDATE:
"On April 24, Webroot experienced a technical issue affecting some business and consumer customers.
Webroot incorrectly identified multiple files as malware.
Actual malicious files are being identified and blocked as normal."
Find the official release as well as other pertinent information here.
|
|
|
link
|