On September 5, I published the first Too Many Trojan’s post about TrendMicro reporting windows files and program files as Trojan’s and quarantining them.
Well, it happened again! Today!
I sent my analysis files to TrendMicro via our PartnerNet but I think I have the culprit found! I wanted to put this out there so you know and I did alert Trend to this possibility.
I believe the running of TeaTimer from Spybot Search and Destroy is the problem. I just tested my theory and so far the problem seems resolved.
1. Turn off TeaTimer.
2. Delete the files under C:\Program Files\Trend Micro (and then your software - mine was under Internet Security) named: lpt$vpn. There will be at least one if not more. Any file starting with that name delete.
3. Reboot your computer.
4. Update Trend again.
5. It will require you to reboot one more time.
6. Re-scan and you should find that it does not quarantine any other files.
If you cannot reboot in normal windows mode, Trend has the directions to reboot in safe mode here:
http://esupport.trendmicro.com/support/viewxml.do?ContentID=EN-1038089&id=EN-1038089
And if this does become the reason for the problem, remember it was posted here first! We always keep you ahead of security!
Do you enjoy this blog? Then buy me a coffee or send me a tip! May I suggest $3 for a Venti (extra-large) cup of Starbucks Carmel Macchiato? You can also choose any amount you wish.
Recent Comments