The latest Avast update now finds Win32:Agent-RO [Trj] in the http://windowsupdate.62nds.com/ plug-in. Any details on this?
At VirusTotal, avast! is the only AV to make this identification. (Fortinet says ‘suspicious’.)
It may be a false positive.
The file is npupd62.dll and was sent to Avast.
Also C:\Program Files\Mozilla Firefox\plugins\upd62int.dll detected (also a windiz update plugin file) as Win32:Aent-RN sent to avast.
These false positive detections have now been corrected with the 0618-3 VPS update.
Hey thanks Avast. All normal again.