Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

AVG reported trojan horse FakeAV.AuQD


  • Please log in to reply
5 replies to this topic

#1 siliconglen

siliconglen

  • Members
  • 3 posts
  • OFFLINE
  •  

Posted 15 July 2017 - 12:38 PM

Tried to respond to https://www.bleepingcomputer.com/forums/t/651570/avg-reported-trojan-horse-fakeavauqd/ but got an error

 

 

I think this might be a false positive. I'm seeing the same thing

 

 

"";"Trojan horse FakeAV.AUQD, c:\Windows\System32\notepad.exe";"Unresolved"

 
The problem seems to be specific to AVG Cloud Antivirus. Have ensured I have the latest version installed and the latest signatures.
 
On another computer which reports as clean I have AVG Internet security, latest version of software and latest signatures.
 
I take the clean notepad.exe from that computer, put it in a USB drive and transfer to the other computer. The other computer with AVG cloud reports that the notepad.exe reported as clean by AVG Internet Security has Trojan horse FakeAV.AUQD problem.
 
 
To me this is looking like an AVG cloudcare antivirus false positive. It doesn't help that the same problem in the same file is reported as "secured" once then as "infected" 28 times.
 
Anyone else care to comment?

Edited by hamluis, 15 July 2017 - 01:27 PM.
Moved from MRL to AV/AM Software - Hamluis.


BC AdBot (Login to Remove)

 


#2 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,399 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:05:10 PM

Posted 15 July 2017 - 03:12 PM

Anytime you suspect a possible false positive or you want a second opinion, submit it to one of the online services that analyzes suspicious files.--In the "File to Scan" (Upload or Submit) box, click the "browse" button, navigate to the location of the suspicious file(s) and submit it for analysis. If you get a message saying "File has already been analyzed", click Reanalyze or Scan again.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#3 siliconglen

siliconglen
  • Topic Starter

  • Members
  • 3 posts
  • OFFLINE
  •  

Posted 15 July 2017 - 03:50 PM

Results:

 

Lavasoft Ad-Aware  15 Jul 2017 Found nothing   
Avast! Antivirus  15 Jul 2017 Found nothing   
AVG  15 Jul 2017 FakeAV.AUQD BitDefender 
Antivirus  15 Jul 2017 Found nothing   
ClamAV  15 Jul 2017 Found nothing   
Dr. Web  15 Jul 2017 Found nothing 
MicroWorld eScan  15 Jul 2017 Found nothing   
ESET  15 Jul 2017 Found nothing   
Fortinet  15 Jul 2017 Found nothing 
F-PROT Antivirus  15 Jul 2017 Found nothing   
F-Secure Anti-Virus  15 Jul 2017 Found nothing   
G DATA  15 Jul 2017 Found nothing Ikarus  
15 Jul 2017 Found nothing   
K7 AV  14 Jul 2017 Found nothing   
Kaspersky Anti-Virus  15 Jul 2017 Found nothing 
Sophos  15 Jul 2017 Found nothing   
Trend Micro Antivirus  14 Jul 2017 Found nothing   
VBA32  13 Jul 2017 Found nothing


#4 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,399 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:05:10 PM

Posted 15 July 2017 - 04:18 PM

If you think AVG wrongly detected a file, URL or Tracking as harmfulor if you have a virus sample that AVG failed to detectplease submit it to us for analysis. Please note that we do not answer back with results as the files are being checked automatically.

AVG Report a false detection: Send us a sample

Once a file is received, a technician can examine it in more detail and provide a report letting you know the results.

You can also report such issues at the AVG Support Community Forums.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#5 gavman

gavman

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Australia
  • Local time:07:10 AM

Posted 16 July 2017 - 10:43 PM

I'm getting the same report on Cloudcare and as far as I can tell I am on the latest version. Have had one client of mine report the same error (also on Cloudcare).

 

Seems its also happening on paid AVG 2016, recommending people upgrade to 2017 here: https://support.avg.com/answers?id=906b0000000DsyFAAS

 

But that doesnt help cloudcare users??


Edited by gavman, 16 July 2017 - 10:44 PM.


#6 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,399 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:05:10 PM

Posted 17 July 2017 - 05:28 AM

All affected users should report the issue to AVG.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users