Windows Grep is a search utility for Windows that has been around for years. It’s current version, 2.3, has been out for a few years and there has never been an issue. I use it daily.
In the past two days, when WinGrep is run, Avast throws up a warning that I am “opening an application that may be potentially unsafe” and wants to run it in a sandbox. This is a false positive.
The application can be found at http://www.wingrep.com.
Thanks!
Well essentially I don’t believe there are any false positives in the autosandbox as it isn’t saying it is infected (otherwise it would be detected by the file system shield), just that it may be potentially unsafe.
The autosandbox process is controlled in the first instance by the file system shield (FSS), the suspect.exe file is scanned before it is allowed to run. If it were infected, it could/should be detected by the FSS, so one reasonable thing in its favour is it hasn’t had a definitive detection.
However, the FSS checks other things amongst those a) is the file digitally signed, b) its location and what it does (this is done in the emulation check). these can trigger a suspicion and it is this suspicion that results in the recommendation to use the autosandbox.
Now the user can accept this decision and run it in the autosandbox or have it run normally and to Remember the answer for this program. Provided of course you are familiar with the program and that it is clean.
No problem, glad I could help.
Welcome to the forums.