Hi,
Eset got all excited about about a file on my system when moving some old data around yesterday. Which, if it is a trojan threat, means I need to let a few others who will have downloaded the same file know. But... I rather suspect it's a false positive. Can anyone help please?
The file in question is one that I downloaded from a private forum (which I run, although I wasn't the one to create the file or upload it to the forum) and is an PDF document with rules of our organisation.
It's been on my system (and the forum - and presumably a sizeable subset of the forum's member's computers) for the last 18 months without any issue until yesterday.
Detection only gave me the option of deleting the file, so I cannot submit for analysis, but the malware allegedly found was PDF/Phishing.A.Gen trojan (see screenshot snippet attached below of the error message - this one from checking the forum where the original was held - forum webaddy obfuscated for reasons of confidentiality).
Now given the amount of time involved since the file was downloaded, and the fact that neither ESS9 nor malwarebytes finds anything else on my computer - nor has anyone else reported any issues - and the nature of the content of the file, it seems very unlikely that this is a real positive.
Before I start to worry all others who may be affected by this into wasting as much time as I have myself on something that I suspect isn't an issue, is there any way of confirming a) what a PDF/Phishing.A.Gen trojan is (it doesn't have a definition in the ESET threat database info - as far as I can see...) and b) if it really is an issue, or as I now suspect, just a false positive.
Many thanks in advance for your help.