10 replies to this topic

[Coronagold]

Anyone else with Revo get any warnings from AVG that it found Trojan horse Downloader.Agent.AFIS in Revo? I've seen AVG make false alarms before, not often though. I notice AVG doesn't scream bloody murder at Rootkit Revealer anymore. They must've updated that info.

I like Revo a lot. I dunna want to lose it.

[Andavari]

If the main .exe is UPX compressed that will cause some antivirus programs to trigger a false positive, it happens all the time, and is the reason why I decompress all UPX compressed files!

I don't know if Revo Uninstaller (I think that's what you're taling about) is packed with UPX or not, however there's a quick and easy way to find out:

• Download UPX Win32 console version.
  
• Disable AVG's resident shield.
  
• Copy the main Revo .exe file that launches the program into the folder where UPX is located.
  
• Use this via a command prompt to decompress the Revo .exe (use the quotes around the filename):
  upx -d "revo's exe file name.exe"
  
• If UPX states it decompressed the file you can then move the Revo .exe file into it's program files folder.
  
• Re-enable AVG's resident shield.

If that isn't it you should redownload and reinstall Revo Uninstaller. And if AVG still gives the warning you can upload the file in question to a multi-virus scanner like VirusTotal or Jotti, and perhaps notify the people at Revo about it.

[Coronagold]

...................................my cats' breath smells like cat food.

You're delving in pooter thingies that I don't comprehend. Command prompt? I may be smarter than I seem, or look, or as our best testing indicates but I'm not that smart.

AVG took 4 similarly named virii out of Revo, and made it....get this.....uninstallable. So I re-installed Revo again and now it's okay.

And I set AVG to not heal automatically but to ask what to do. I'm not sure if there's an Ignore feature in AVG. I haven't found one.

[DennisD]

I've used Revo Uninstaller for a long time now, and it's never been flagged by Avast, or popped anything up in Spyware/AntiVirus scans, but I've stuck it through Virus Total and Jotti.

The exe came up as "suspicious only"on 3/32 on Virus Total, and 0/20 on Jotti.

I'm happy with that.

[Anthony A]

I use Revo uninstaller and AVG AV and have not had it detect anything with Revo.

[Coronagold]

I put Virus Total and Jotti. in my bookmarks. Neat services.

[hazelnut]

AVG at the moment is flagging several spyware programs with false positives including Online Armor and Malwarebites.

AVG fixed the Online Armor one, then another FP appeared a couple of days later.

Best thing to do is report it to AVG. When enough people report FP's then they have to fix it.

[davey]

hazelnut, on Apr 17 2008, 01:54 AM, said:

AVG at the moment is flagging several spyware programs with false positives including Online Armor and Malwarebites.

AVG fixed the Online Armor one, then another FP appeared a couple of days later.

Best thing to do is report it to AVG. When enough people report FP's then they have to fix it.

Updated AVG approx. 10 min ago and scanned Revo . Nothing found.
davey

[davey]

hazelnut, on Apr 17 2008, 01:54 AM, said:

AVG at the moment is flagging several spyware programs with false positives including Online Armor and Malwarebites.

AVG fixed the Online Armor one, then another FP appeared a couple of days later.

Best thing to do is report it to AVG. When enough people report FP's then they have to fix it.

Updated AVG approx. 10 min ago and scanned Revo . Nothing found.
My Revo installed 04/08/2008 ver 1.5.0.0 Revo website said AVG would fix in next update.I guess they did.
AVG has always been quick to respond in my experience.
davey

Edited by davey, 17 April 2008 - 09:12 AM.

[Coronagold]

AVG updates daily for me. It hasn't flagged Revo again since I first posted. Cool.

[DennisD]

Confirmation on "false positive".

Quote

It's a false positive alarm from AVG!

The false positive is fixed in the latest update of AVG!

Link: