Stocker360 Posted February 16, 2009 Share Posted February 16, 2009 Today when i was scanning with Avast about 5 hours ago it detected [Drive]:\pagefile.sys as a Trojan. However, i am sure it was a false positive detection because I had just freshly-installed vista on my PC 1 week ago. So later on i googled it and found many similar result: 1. http://forum.avast.com/index.php?topic=40978.0 2. http://forum.avast.com/index.php?topic=35083.0 *Any suggestion is welcome Link to comment Share on other sites More sharing options...
YoKenny Posted February 16, 2009 Share Posted February 16, 2009 Stocker360, I run avast! as well and the pagefile.sys is locked file by Windows and thus can not be scanned: http://forum.avast.com/index.php?topic=36028.0 Any file would be detected before it was able to get into pagefile.sys and either deleted or sent to the quarantine Chest depending on your choice. If you have the Hibernate function active then the hiberfile.sys file would also not be able to be scanned. "Education is what remains after one has forgotten everything he learned in school." - Albert Einstein IE7Pro user Link to comment Share on other sites More sharing options...
Moderators Andavari Posted February 16, 2009 Moderators Share Posted February 16, 2009 Most AV programs just ignore that file for the reasons detailed by YoKenny, you can however also configure them to ignore/exlude it giving the actual full path to it so as to not let an actual malware file slip into the system trying to impersonate it elsewhere. Link to comment Share on other sites More sharing options...
Omid Farhang Posted March 6, 2009 Share Posted March 6, 2009 Stocker360, I run avast! as well and the pagefile.sys is locked file by Windows and thus can not be scanned:http://forum.avast.com/index.php?topic=36028.0 Any file would be detected before it was able to get into pagefile.sys and either deleted or sent to the quarantine Chest depending on your choice. If you have the Hibernate function active then the hiberfile.sys file would also not be able to be scanned. Hello YoKenny! @Asker: first I must say, yes, other friends are right, pagefile.sys is not possible to scan, but it's like your memory, if it's detected it must be because a malware is running in your computer and it's loaded to memory... Most People Respect the Badge. Everyone Respects the Gun. Software: Windows 7 Ultimate x86, AVIRA Premium Security Suite 9, Google Chrome 5 Beta (WOT, Xmarks, Chrome Flags), Sandboxie, Malwarebytes Antimalware, Hitman Pro, HostsMan, Roboform, UPEK PSQL. Virtual Machine(s): Sun VirtualBox, Windows XP Pro SP3, AVIRA Premium Security Suite Beta 2010. Link to comment Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now