Re: WinDefend

Gruselle,

You're mowst welcome. Have you opted in to SpyNet ? When enough data on the file in question comes in then WD will not detect it as a questionable item.
Remember, Win Def is still in BETA. Detected objects should be checked out via Google or another search engine to see if info on it is already published.
In your situation, the info is not very helpful. That's why I asked you to submit it to VirusTotal. ;)

MowGreen [MVP 2003-2006]
===============
*-343-* FDNY
Never Forgotten
===============


Gruselle wrote:
Now checked through TotalVirus - nothing found. Many thanks. How do we get WinDefender to stop considering it as possible Malware?

"MowGreen [MVP]" wrote:


Gruselle,

Here's a thread from April concerning winios.sys :
http://www.windowsbbs.com/showthread.php?t=53271

Locate the file in C:\WINDOWS, right click it and choose Properties.
Click the Version tab.
Check for information next to Description and Copyright.
Also, check the info under Item name.

It may be a legit file that hasn't been classified by SpyNet; it may be a malicious file suspected, but not yet detected as a specific malware.

You can try scanning the file here:
http://www.virustotal.com/flash/index_en.html

Unfortunately, that site has been seeing very heavy traffic lately and you may be asked to submit the file via email. The scan results will be emailed back to you.

Please us posted on just what this copy of winio.sys *is*.


MowGreen [MVP 2003-2006]
===============
*-343-* FDNY
Never Forgotten
===============


Gruselle wrote:


I frequently get this Warning in Event Viwer immediately after connecting to BT Broadband: Event 3004
"Windows Defender Real-Time Protection agent has detected spyware or other potentially unwanted software.
For more information please see the following:
http://www.microsoft.com
Scan ID: {ECDF5B2E-5D1A-41F7-B7A0-0887FBE0907C}
User: MARTIN\Martin G
Name: Unknown
ID: Severity ID: Category ID: Path Found: driver:WINIO;file:C:\WINDOWS\winio.sys
Alert Type: Unknown Detection Type: The Microsoft link says:
We're sorry There is no additional information about this issue in the Error and Event Log Messages or Knowledge Base databases at this time. You can use the links in the Support area to determine whether any additional information might be available elsewhere. Does anyone know the answer!


.