Threat Level: green Handler on Duty: Didier Stevens

SANS ISC: AVG detect legit file as virus InfoSec Handlers Diary Blog

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

AVG detect legit file as virus

Published: 2013-03-15
Last Updated: 2013-03-15 12:22:15 UTC
by Mark Baggett (Version: 1)
7 comment(s)

If you have any Windows XP machines running AVG antivirus you may want to check on them and manually update your AV signatures. According to the report below AVG reports that "wintrust.dll" was being flagged as a trojan.

I'd say this is an exception to my "Wipe the Drive" rule, but according to reports it only affects Windows XP.    Maybe this is a case of wipe the drive and load a different OS.   ;)

Thanks to the ISC reader who asked to remain anonymous who gave us the head up on this.


Keywords: malware
7 comment(s)
Diary Archives