[clamav-users] False Positive of IObit product by ClamAV
Joel Esler (jesler)
jesler at cisco.com
Fri Mar 31 13:30:34 UTC 2017
This signature has been dropped.
--
Joel Esler | Talos: Manager | jesler at cisco.com<mailto:jesler at cisco.com>
On Mar 31, 2017, at 3:44 AM, Arnaud Jacques / SecuriteInfo.com<http://SecuriteInfo.com> <webmaster at securiteinfo.com<mailto:webmaster at securiteinfo.com>> wrote:
Received this message :
---------- Message transmis ----------
Objet : False Positive of IObit product by ClamAV
Date : vendredi 31 mars 2017, 14:52:42
De : beta feedback <beta-feedback at iobit.com<mailto:beta-feedback at iobit.com>>
Hi ClamAV,
This is Coco from IObit (www.iobit.com<http://www.iobit.com>).
Please forward this email to the person who may concern. This is Top Urgent.
Your program ClamAV reports the file RegistryDefragBootTime.exe as
Win.Trojan.Agent-5776271-0 which is absolutely clean without any Trojan.
Here are false positive under different condition for your investigation:
1. Here is the link of the false positive on VT:
https://www.virustotal.com/en/file/6838ec1b3326b7864dd483a39037d2372ea0bd116326814424e7b48460200066/analysis/1490873565/
Download link:
*http://wikisend.com/download/473568/RegistryDefragBootTime.exe*
<http://wikisend.com/download/473568/RegistryDefragBootTime.exe>
2. false positive on VT:
https://www.virustotal.com/en/file/31bd10dc750775f6361b35c18e29c4b0f33caec48fa3f933756facb94aed7ba7/analysis/1490927572/
Download link:
http://wikisend.com/download/327082/RegistryDefragBootTime.exe
3. false positive on VT:
*https://www.virustotal.com/en/file/5d293fa4dc6389e94b026c2eb1272324e0cd3dd14879fb77e919f2656fbf6285/analysis/1490873710/*
<https://www.virustotal.com/en/file/5d293fa4dc6389e94b026c2eb1272324e0cd3dd14879fb77e919f2656fbf6285/analysis/1490873710/>
Download link:
*http://wikisend.com/download/870064/RegistryDefragBootTime.exe*
<http://wikisend.com/download/870064/RegistryDefragBootTime.exe>
4.false positive on VT:
https://www.virustotal.com/en/file/2ba5ea1e7779a0d21a327986f0ceca78ef75258ec3ae1d329ef5a6727b0bb8de/analysis/1490873759/
Download link:
http://wikisend.com/download/569572/RegistryDefragBootTime.exe
Please investigate this issue and solve the false positive as soon as
possible.
Any reply will be appreciated.
-----------
Sincerely,
Coco
IObit Support Team
http://www.iobit.com
Own an Android smartphone? We have Advanced Mobile Care to protect your
phone. Please visite here <http://www.iobit.com/advanced-mobile-care.php>
to free download it.
_______________________________________________
clamav-users mailing list
clamav-users at lists.clamav.net
http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users
Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/clamav-faq
http://www.clamav.net/contact.html#ml
More information about the clamav-users
mailing list