Solved

Win32.Trojan.Downloader: What is it?

Posted on 2006-07-18
1
174 Views
Last Modified: 2013-12-04
Hi there,

I ran Ad-aware, and it detected and removed:
WIN32.TROJAN.DOWNLOADER

It claims the infected file was:
C:\lcc\bin\zlib.dll
(LCC is a small Win32 C compiler)

I can't find information about this malware. Can someone explain what it does and what risks I might be under? Does it keylog passwords, etc?
0
Comment
Question by:the_cyman
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
1 Comment
 
LVL 2

Accepted Solution

by:
ch0wn earned 250 total points
ID: 17132601
The detection of zlib.dll from AdAware as a WIN32.TROJAN.DOWNLOADER infection is a false-positive.  According to Steve from LavaSoft, the maker of AdAware, zlib.dll was supposed to be removed from detection as of May 3 2006.
Of coarse there is always a chance that the zlib.dll could be infected, so I would suggest running another malware scanner for a second opinion.  

http://www.lavasoftsupport.com/index.php?showtopic=339

Ch0wn
0

Featured Post

Simplifying Server Workload Migrations

This use case outlines the migration challenges that organizations face and how the Acronis AnyData Engine supports physical-to-physical (P2P), physical-to-virtual (P2V), virtual to physical (V2P), and cross-virtual (V2V) migration scenarios to address these challenges.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Recently, a new law in my state forced us to get a top-to-bottom analysis of all of our contract client's networks. While we have documentation, it was spotty at best for some - and in any event it needed to be checked against reality. That was m…
As I write this article, I am finishing cleanup from the Qakbot virus variant found in the wild on April 18, 2011.  It was a messy beast that had varying levels of infection, speculated as being dependent on how long it resided on the infected syste…
Monitoring a network: why having a policy is the best policy? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the enormous benefits of having a policy-based approach when monitoring medium and large networks. Software utilized in this v…
Michael from AdRem Software outlines event notifications and Automatic Corrective Actions in network monitoring. Automatic Corrective Actions are scripts, which can automatically run upon discovery of a certain undesirable condition in your network.…
Suggested Courses

636 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question