Subject:Stylus Studio Does Not Install Trojan Horse - False Detect Author:McKyle Adams Date:19 Jun 2006 06:32 AM
I received a communication from Grisoft AVG regarding the false detection of the Zip32.dll file as a trojan horse. Their email is found below, including the original email question I sent to them. I am sorry to have been the one to report a false detection, but I'd rather investigate it than propagate a trojan horse outbreak.
Response From Grisoft:
Thank you for your email.
We are very sorry, but false alarm happens from time to time. It is the issue of all antivirus companies. With all of these programs it is very difficult to distinguish what is a virus and what is not. There is a thin line between these two worlds, and there are many things that are the same.
Virus is a program too. It has only one difference it does harm. You can find some parts of source code in both (harmless program and the virus). We are working very hard not to let these things happen (All of our updates are very deeply tested before we publish them, however it is not in our possibilities to test all of the programs on the market). When after all is some program false detected we are solving this as soon as possible.
Please update your AVG Antivirus program, this false detection has been removed. (Right click the AVG Control Center icon, located at the bottom right hand corner of the screen and choose option "Check for updates"
Thank you for your cooperation.
AVG Technical Support
On Sun, 18 Jun 2006 21:27:19 -0600 you wrote:
>My AVG virus scan has flagged a well-known utility as having a Trojan
>horse virus. The utility is the Zip32.dll utility. The DLL was
>downloaded during the installation of a popular XML software
>application named Stylus Studio - see link:
>The technical forum where I presented this discovery is:
>If you click in the link: Stylus
>> Studio Installs Trojan Horse , you'll be able to see my presentation
>and their disagreement, and their suggestion that I contact you about
>this utility being flagged as a Trojan horse.
>Here is a link they gave me to the zip utility:
>Below is a jpg screenshot of the report from your software running on
>XP SP2. If your software has wrongly identified their software as
>installing this virus, I hope you will join me in offering a public
>apology to them in their technical forum. Please advise.
>I also attached the zip file - it should be named Zip32.dll file for
>Thank you for looking into this issue. I do not want to wrongly accuse
>these people, but I trust your software to correctly analyze these
>files on a daily basis and, as they mention, neither Norton nor McAfee
>pick up this file as a Trojan. Feel free to call me to discuss this problem.
>[Attached File: Zip32.dll]