Hi, > I just compiled openssl-1.0.0g on a Win7 box using MingW. All went well, > except I got a virus alert from Avira for 'TR/Graftor.10418.101' found > in the file .../openssl-1.0.0g/test/asn1test.exe. That virus was added > to the Avira VDF file on 2012-01-18. > Avira denies access to it, so that file is unusable, and I quarantained > it (to get rid of the alerts). Is this a real threat ? Has anyone else > experienced it ? Or is it a hoax (cause to me it seems a bit weird to > have a virus after just compiling a package like openssl) ?
pattern/heuristical match issue? try uploading it to one of the multi-vendor test suite systems and see what pops out? eg http://www.threatexpert.com/ https://www.virustotal.com/ upload it to Avira with 'false positive' marking....http://analysis.avira.com/samples/ alan ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager majord...@openssl.org