Killbill.exe found in FIRST USB

Before installing the update in our classmate we ran a scan over the USB drive with Microsoft Security Essentials and it actually reported a virus.

Details below

Does anyone have a similar issue?

what year classmate do you have? was this the image for the 2010 classmate or for the 2011 classmate?

2010

We are currently Scanning ours, will get back to you in a bit.

Edit: Nothing found using AVG Free.

Usually if something edits another program, virus scanners see it as a trojan even if it isn’t. An image could easily be considered a trojan because it edits the code of other programs. That may be what the issue is. Unless you have plugged the flashdrive into something you aren’t supposed to, the flashdrive should be completely safe. I have seen plenty of clean files pop up as ‘trojans’ to virus scanners.

That might be the executable file that modifies the registries and whatnot to allow for that driver station to work. They have to remove all the menus and deny running other programs in driver mode.

Because Windows Essentials picked it up and AVG did not, I can adduce that my statement is true. The Essentials are looking for files that will modify the OS in anyway and call it a trojan.

well then why would it be called killbill.exe? i don’t think it’s a FIRST easter egg…

Some digging on Google suggests that this is a false positive and that the file is related to Webcam drivers. I’m not sure why the file is named the way it is, but it does not appear to be an actual trojan or virus.

I just finished installing AVG free (not the trial version that comes with the update after re-imaging the 2010 classmate) and it detected and quarantined this exact file somewhere on the classmate itself after a scan.

For a false positive, why the menacing name?

Hey, so im just wondering why it says 1/4/1980, jw.

You should scan with Malwarebytes. Tends to be more effective than AVG Free in scanning files at times.