This is a static archive of our old Q&A Site. Please post any new questions and answers at ask.wireshark.org.

Your Download contained a Trojan Dropper!

0

Why does this download come with a trojan dropper that AVG found?

asked 31 Dec '12, 01:02

NetworkInformer's gravatar image

NetworkInformer
1111
accept rate: 0%


2 Answers:

2

as you did not mention what you downloaded and where, it is hard to say why your AV product believes to have found something. Can you please add more details?

BTW: The current release 1.8.4 is not detected as malware by anyone of the 45 AV scanners of virustotal.com.

https://www.virustotal.com/file/46673635bbd8a5e579f90fbb850fb5c7b2a8be7f5f689a77b8e60cd8f54825b6/analysis/1356945013/

Regards
Kurt

answered 31 Dec '12, 01:12

Kurt%20Knochner's gravatar image

Kurt Knochner ♦
24.8k1039237
accept rate: 15%

edited 31 Dec '12, 01:13

0

Can you provide a few more details? What version of AVG's scanning engine and virus database are you using? Did AVG provide a more specific description of what it found? "Trojan Dropper" isn't very specific.

Which Wireshark package did you download? Where did you get it? Can you provide a SHA1, RIPEMD160, or MD5 hash of the file?

Note that we've had a number of false positives in the past. It would be helpful if you could provide any more information so that we can verify if this is a false positive as well.

answered 31 Dec '12, 07:37

Gerald%20Combs's gravatar image

Gerald Combs ♦♦
3.3k92258
accept rate: 24%