false positive ? openports.dll

Discussion in 'ewido anti-spyware forum' started by Wake2, Jan 10, 2008.

Thread Status:
Not open for further replies.
  1. Wake2

    Wake2 Registered Member

    Joined:
    Apr 30, 2005
    Posts:
    205
    Hello,

    I updated Avg AntiSpyware today and ran a scan,
    and it shows a trojan detected.

    ---------------------------------------------------------
    AVG Anti-Spyware - Scan Report
    ---------------------------------------------------------

    + Created at: 8:05:11 AM 1/10/2008

    + Scan result:


    C:\Windows\System32\openports.dll -> Trojan.Agent : No action taken.

    The file in question I uploaded to Jotti's says it was scanned before and
    came back as clean with nothing detected.

    This is on a Vista computer and in using google some reference
    is made to this openports.dll as belonging to Windows Defender.

    Regards,

    Wake









    ::Report end
     
  2. karl.ewido

    karl.ewido former ewido team

    Joined:
    Dec 9, 2005
    Posts:
    236
    Location:
    Germany
    Please ignore the current detection of this file (means: do not delete or move it to quarantine), but send us a copy of this detected openports.dll:
    http://www.ewido.net/en/malware/
    We will check this file and if it is really a false-positive, it will be fixed with the next Signature Update.
     
  3. Wake2

    Wake2 Registered Member

    Joined:
    Apr 30, 2005
    Posts:
    205
    Hi Karl,

    Thanks for your quick response, I submitted the dll in question
    to the link you provided.

    Regards,

    Wake
     
  4. karl.ewido

    karl.ewido former ewido team

    Joined:
    Dec 9, 2005
    Posts:
    236
    Location:
    Germany
    It was a false positive, but we have fixed with the last Signature Update.
    So please update your AVG Anti-Spyware.
     
  5. Wake2

    Wake2 Registered Member

    Joined:
    Apr 30, 2005
    Posts:
    205
    Hi Karl,

    Thank you again for your quick response problem solved.

    Regards,

    Wake
     
Thread Status:
Not open for further replies.