Jump to content











Photo

trojan?


  • Please log in to reply
4 replies to this topic

#1 profd

profd
  • Members
  • 3 posts
  •  
    United States

Posted 20 June 2011 - 08:12 PM

What's going on here? I downloaded from official page, and then afterwards I noticed a popup for "sysinternals" with a EULA. I shouldn't have clicked agreed, but I did and after a scan, I found .exe files in my videos folder. I'm not sure if I had these files before.

I did a virus scan on the zip file from the official download link at virustotal and found trojan "dropper".

Full report:
http://www.virustota...63fd-1308599178

Aviria and Ikarus consider it to have dropper trojans.

#2 shamurshamur

shamurshamur

    Frequent Member

  • Developer
  • 322 posts
  •  
    India

Posted 20 June 2011 - 08:29 PM

well, 39 out of 41 Antivirus has cleared this file(including the major antivirus vendors).That means most probably AntiVir and Ikarus are giving false positive.

Anyway risk level reported by antivir is low.
http://www.avira.com.../TR.Dropper.Gen)

It's pretty safe to use.

#3 profd

profd
  • Members
  • 3 posts
  •  
    United States

Posted 20 June 2011 - 09:37 PM

I'm trying to reproduce the files in a VM, i'll report back.

#4 shamurshamur

shamurshamur

    Frequent Member

  • Developer
  • 322 posts
  •  
    India

Posted 20 June 2011 - 10:20 PM

I scanned all the component of "xboot" on www.virustotal.com separately. the only component which is raising flag is "ioniczip.dll" which is a part of the open-source project DotNetZip.

So its definitely a false positive.

#5 profd

profd
  • Members
  • 3 posts
  •  
    United States

Posted 20 June 2011 - 10:36 PM

I scanned all the component of "xboot" on www.virustotal.com separately. the only component which is raising flag is "ioniczip.dll" which is a part of the open-source project DotNetZip.

So its definitely a false positive.


Yea, false positive. I also couldn't reproduce the issue.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users