Ansicon.exe 32-bit detected as malware by Sophos

Question

Ansicon.exe 32-bit detected as malware by Sophos

comanche opened this issue 12 years ago · comments

comanche commented 12 years ago

Sophos Endpoint Security and Control detects ansicon.exe 32-bit as Mal/Generic-L.

Luis Lavena · Answer 1 · Tue May 08 2012 01:37:01 GMT+0800 (China Standard Time)

Looks to me a false positive:

https://www.virustotal.com/file/f1d2ae8fb5d06671c19148a1932a2881313e2f528c2d253daa64dbe91d5d1de4/analysis/1336412105/

Jason Hood · Answer 2 · Thu May 10 2012 20:17:22 GMT+0800 (China Standard Time)

I'm afraid there's not really much that can be done - by its very nature, ANSICON does some virus-like things, so generic/heuristic warnings should be safely ignored.

Rintze M. Zelle, PhD · Answer 3 · Sat Sep 15 2012 07:35:28 GMT+0800 (China Standard Time)

AVG 2012 just identified ANSI-LLW.exe from ansi153 (x64) on my computer (Windows XP) as a threat, identifying it as containing "Trojan horse Agent3.BYND".

Jason Hood · Answer 4 · Mon Sep 17 2012 20:43:14 GMT+0800 (China Standard Time)

Well that's just mind-boggling - it's a one-line program. And there's still nothing I can do about it.

jm52 · Answer 5 · Sun Nov 25 2012 05:34:32 GMT+0800 (China Standard Time)

same issue as rmzelle with AVG2013. while the issue can be "safely ignored", the functionality of ansicon is not available. reported the issues to avg as a false positive.

turning off avg results in application crash after typing "cucumber".

so, the result is glare: avg <==> adoxa (both saying "there's nothing i can do")

Jason Hood · Answer 6 · Tue Dec 04 2012 21:12:32 GMT+0800 (China Standard Time)

Released 1.60, and now I don't think there's any more I can do. Virustotal still has two detections (Kaspersky & TrendMicro-HouseCall), but AVG is fine.