Avast WEBforum

Consumer Products => Avast Free Antivirus / Premium Security (legacy Pro Antivirus, Internet Security, Premier) => Topic started by: zm3hz6poy@gmail.com on September 29, 2015, 10:11:15 PM

Title: Is this false positive or legit trojan?
Post by: zm3hz6poy@gmail.com on September 29, 2015, 10:11:15 PM
Avast says that my zbrush "tool" file with file type .ZTL (created by me, not downloaded from anywhere) is trojan "Win32:GenMalicious-LIA[Trj]", but it says all other such files of same filetype are clean. No other malware findings in avast scan or any other virus scans I have tried.

Which is more likely? This particular file is targeted and corrupted by some virus, or this is false positive? False positive sounds weird since it doesnt have any issues with other similar files and on the other hand, sounds ridicilous that virus would target such file instead of system files etc.
Title: Re: Is this false positive or legit trojan?
Post by: Pondus on September 29, 2015, 10:16:46 PM
Quote
Is this false positive or legit trojan?
a legit trojan ... have not heard that before!

upload and test the file here  www.virustotal.com  if tested before, click rescan for a fresh result

post link to scan result here

Title: Re: Is this false positive or legit trojan?
Post by: zm3hz6poy@gmail.com on September 29, 2015, 11:01:19 PM
https://www.virustotal.com/en/file/e4393525197ab4f3036433f29f134bbe87fdb998ce5efe33f68e3e6c16f928b9/analysis/1443560420/
Title: Re: Is this false positive or legit trojan?
Post by: Pondus on September 29, 2015, 11:08:40 PM
Report False Positive here   https://support.avast.com   ->  avast virus lab

Title: Re: Is this false positive or legit trojan?
Post by: zm3hz6poy@gmail.com on September 29, 2015, 11:09:59 PM
Report False Positive here   https://support.avast.com   ->  avast virus lab
But is there way to make sure if its false positive or malware infected?
Title: Re: Is this false positive or legit trojan?
Post by: Pondus on September 29, 2015, 11:33:13 PM
Report False Positive here   https://support.avast.com   ->  avast virus lab
But is there way to make sure if its false positive or malware infected?
You just tested the file at virustotal, 1 out of 56 virus engines detected, what do you think?

And avast lab may give you a reply with info if you report it