aviator1213

Trojan Virus? [false positive]

Recommended Posts

Windows Defender detected "Trojan:Win32/Azden.A!cl" in "rxpGNS-530-XPL.exe" and quarantined it, saying it is dangerous and executes commands from an attacker.  Defender recommends removal.

Is there a problem with it, or is this a false alarm?

Share this post


Link to post
Share on other sites
Help AVSIM continue to serve you!
Please donate today!

Hi, our files may produce false positives.

Unless our files have got contaminated on your drive by an existing/hidden virus, they are safe otherwise.

Share this post


Link to post
Share on other sites

I also get the same warning with the "rxpGTN-750-XPL.exe.

Sent the file to Virus Total, looks like it's clean.

 

Share this post


Link to post
Share on other sites

Hi, 

You can never be sure it wouldn't be contaminated on your drive, neither would we.

However, our development systems are kept separate from our business systems, and only connect to the internet to limited number of websites, and the only software installed and running is development related from known vendors only.

This is a false positive only because our files are protected/encrypted and this gets flag as 'virus'. Please note our files are being internally tagged with a unique id (this is unrelated to code signing, it is designed for anti-virus software to acknowledge the file source), but some antivirus software just don't bother agreeing to the technologies put in place by antivirus vendors to avoid these false positives.

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now