This is our old Q&A Site. Please post any new questions and answers at ask.wireshark.org.

Why does this download come with a trojan dropper that AVG found?

asked 31 Dec '12, 01:02

NetworkInformer's gravatar image

NetworkInformer
1111
accept rate: 0%


as you did not mention what you downloaded and where, it is hard to say why your AV product believes to have found something. Can you please add more details?

BTW: The current release 1.8.4 is not detected as malware by anyone of the 45 AV scanners of virustotal.com.

https://www.virustotal.com/file/46673635bbd8a5e579f90fbb850fb5c7b2a8be7f5f689a77b8e60cd8f54825b6/analysis/1356945013/

Regards
Kurt

permanent link

answered 31 Dec '12, 01:12

Kurt%20Knochner's gravatar image

Kurt Knochner ♦
24.8k1039237
accept rate: 15%

edited 31 Dec '12, 01:13

Can you provide a few more details? What version of AVG's scanning engine and virus database are you using? Did AVG provide a more specific description of what it found? "Trojan Dropper" isn't very specific.

Which Wireshark package did you download? Where did you get it? Can you provide a SHA1, RIPEMD160, or MD5 hash of the file?

Note that we've had a number of false positives in the past. It would be helpful if you could provide any more information so that we can verify if this is a false positive as well.

permanent link

answered 31 Dec '12, 07:37

Gerald%20Combs's gravatar image

Gerald Combs ♦♦
3.3k92258
accept rate: 24%

Your answer
toggle preview

Follow this question

By Email:

Once you sign in you will be able to subscribe for any updates here

By RSS:

Answers

Answers and Comments

Markdown Basics

  • *italic* or _italic_
  • **bold** or __bold__
  • link:[text](http://url.com/ "title")
  • image?![alt text](/path/img.jpg "title")
  • numbered list: 1. Foo 2. Bar
  • to add a line break simply add two spaces to where you would like the new line to be.
  • basic HTML tags are also supported

Question tags:

×13
×6
×1

question asked: 31 Dec '12, 01:02

question was seen: 1,860 times

last updated: 31 Dec '12, 07:37

p​o​w​e​r​e​d by O​S​Q​A