Is java packager.exe infected by Trojan horse. ClamWin Version 0.97 reported that package.exe has Trojan.Generic.FakeJava. Is this a false alarm?

Best regards

Ken

The only way to tell for sure is to upload the file to Jotti or Virus Total. Either web site will scan it with multiple AVs, including our Clam AV engine. If several other AVs see an infection, it is probably not a false positive. I like to see a couple of these AVs spot something before I believe it: Avast, Bitdefender, NOD32, and Sophos. And if at least 10 AVs spot something, that is a pretty good sign also. Virus Total has a downloadable script that speeds up the process of uploading to them.

If it is a false positive, upload it to Clam AV for correction. You can access Clam AV through the ClamWin ico: Open, Help, About, Clam AV. Select Submit A File at the Clam site. When you get to the upload page, be sure to indicate either False Positive or Virus and tell the name in the Comments section.

Regards,

I have several jre/jdk's strewn across my system and a lot of them have triggered the FakeJava Trojan. Some of them were installers and since I have a working java install I have deleted them. The packager is part of my JDK and I am reluctant to delete it, even though I could use a JDK upgrade. Anyway here is the Virus Total report.

https://www.virustotal.com/file-scan/report.html?id=612b6c5ae3ebeea3bdcdd451f8983d527ff6504f8a60737786f3d72337910660-1298104772

I am uploading the file as a false alarm.

Cheers,

whatnick.