I really believe that this is a false positive. Disk Investigator is a program that is used to recover data on a hard drive. The main program file di.exe seems to be detected as a trojan. This program has even been featured on Lifehacker https://lifehacker.com/5128973/disk-investigator-examines-raw-hard-drive-data https://lifehacker.com/5128973/disk-investigator-examines-raw-hard-drive-data I have uploaded the file that is being detected as a trojan here: https://drop.io/Falsepositiveclam https://drop.io/Falsepositiveclam

You can also download the application from its main website here: https://www.theabsolute.net/sware/dskinv.html https://www.theabsolute.net/sware/dskinv.html

Here is what Clam says about this file:

C:\Program Files\Disk Investigator\di.exe: Trojan.Banker-140 FOUND


I could be wrong but I am pretty sure this is a false positive.
I have also uploaded it to virustotal and here are the results https://www.virustotal.com/analisis/0b879dab6df971fd594101a5d53e37da https://www.virustotal.com/analisis/0b879dab6df971fd594101a5d53e37da

Please upload false positives to Clam AV at https://www.clamav.net/sendvirus/ on the web. ClamWin uses the Clam AV engine and signature database. This is the place where you can submit both false positives and files containing undetected viruses. Be sure to fill out the form and indicate whether it is a false positive or an undetected virus, and tell the name of the malware invovled.

Regards,