|
sivaguru
| Joined: 13 May 2014 |
| Posts: 0 |
| Location: India |
|
|
 Posted: Tue May 13, 2014 10:16 am |
|
 |
 |
|
|
Hi Support,
We are third party control developers, one of our customers reported that the clamwin antivirus software has detected some of our exe files as threats. We have checked in our side by checking with our source and we ensured that no issues from our side . Also we checked with latest version clam win Antivirus software, we are able to reproduce the reported issue.
Can you check this and update us the reason for detecting the below mentioned exe files as threats ?
[url=https://postimg.org/image/knizstkdf/][img]https://s21.postimg.org/knizstkdf/Virus_scan.jpg[/img][/url]
|
|
|
|
GuitarBob
| Joined: 09 Jul 2006 |
| Posts: 9 |
| Location: USA |
|
|
| Posted: Tue May 13, 2014 1:59 pm |
|
|
|
|
|
ClamWin uses the scanning engine and virus signature database provided by the Clam AV project (now owned by Cisco). If any files are detected falsely as infected by ClamWin (false positives), you should report them to Clam AV so they can correct their signature. The Clam AV web page is at https://www.clamav.net/lang/en/ on the world wide web. From the menu options, select to report a file. Then be sure to select to report a false positive--do not select to submit a malware sample. Clam AV will correct their false positive signature manually, so it can take a few days. To speed things up, I suggest you also upload the file to Virus Total, and I think they will also submit the file to Clam AV, so there will be more people reporting the false positive. Until the false positive is corrected, you can whitelist the file(s) in ClamWin's configuration menu--Tools, Preferences, Filters, Exclude Matching Filenames.
Thank you for using ClamWin.
Regards,
|
|
|
|
sivaguru
| Joined: 13 May 2014 |
| Posts: 0 |
| Location: India |
|
|
| Posted: Thu Dec 11, 2014 3:10 am |
|
|
|
|
|
Hi Support,
Latest ClamWin Antivirus trial version reports some of our exe as threat while scanning. We have checked this in our end and we ensured that no issues from our side.
Shared those exe as zip file in below link.
https://www.filetolink.com/9908a89421
Can you check this and update us the reason for detecting the below mentioned exe files as threats ?
Thanks,
Sivaguru
|
|
|
|
GuitarBob
| Joined: 09 Jul 2006 |
| Posts: 9 |
| Location: USA |
|
|
| Posted: Thu Dec 11, 2014 4:37 am |
|
|
|
|
|
Did you not read this entire thread?
Earlier posts mention that ClamWin uses the scan engine and virus signatures provided by the Clam AV project. It says that you should contact Clam AV about false positive detections. It says that you should send Clam AV a copy of the false positive file via their normal false positive submission process. Also upload a copy of the file to Virus Total and scan it there.
If a file is detected as a Potentially Unwanted Program (PUP), Clam AV has a policy of not correcting false positive detections on PUPs because the PUP detection is an optional detection selected by the user.
Regards,
|
|
|
