User forums > General (but related to Code::Blocks)

Possible Trojan Discovered in \CodeBlocks\MinGW\bin\zip.exe

<< < (3/3)

Jenna:

--- Quote from: thomas on August 28, 2012, 08:02:50 pm ---
--- Quote from: MortenMacFly on August 28, 2012, 10:14:56 am ---
--- Quote from: jens on August 28, 2012, 09:43:17 am ---Or his PC is really infected.

--- End quote ---
Indeed - that's another option. ::)

--- End quote ---
No, in this case the cryptographic checksums would differ. That's what they're for.

--- End quote ---
That should be correct in general, until a virus is good "enough" to make the av software show a fake md5-hash.
I don't know if any viruses or rootkits can do this, but I think it might be possible, at least with poorly designed av-software.

Nevertheless, it's  always problematic to check a running (possibly infected) system from inside the system.

John44:
If anyone is wondering, I removed the two posts that existed earlier at the bottom.

I now realize that posting this topic was a mistake (I mean it as a constructive self-criticism).

Once again, thank you everyone for your help and your time! :)

Update: It is a false positive.

Navigation

[0] Message Index

[*] Previous page