hmm I see, so the only way to bypass it is to add it to the exclusions list?
I downloaded iroffer from
http://iroffer.org/ just now and got this result
Antivirus Version Last Update Result
AhnLab-V3 2007.9.11.0 2007.09.10 Win-AppCare/Iroffer.250600
AntiVir 7.6.0.5 2007.09.10 BDS/Iroffer.AB.14
Authentium 4.93.8 2007.09.09 W32/Backdoor.QHH
Avast 4.7.1043.0 2007.09.10 Win32:Iroffer-072
AVG 7.5.0.485 2007.09.10 BackDoor.Generic2.CUF
BitDefender 7.2 2007.09.10 Backdoor.Iroffer.AB
CAT-QuickHeal 9.00 2007.09.10 Backdoor.Iroffer.ab
ClamAV 0.91.2 2007.09.10 Trojan.Ioffer
DrWeb 4.33 2007.09.10 BackDoor.Iroffer.1235
eSafe 7.0.15.0 2007.09.04 Win32.Iroffer.ab
eTrust-Vet 31.1.5124 2007.09.10 -
Ewido 4.0 2007.09.10 Backdoor.Iroffer.ab
FileAdvisor 1 2007.09.10 High threat detected
Fortinet 3.11.0.0 2007.09.10 Iroffer
F-Prot 4.3.2.48 2007.09.09 W32/Backdoor.QHH
F-Secure 6.70.13030.0 2007.09.10 Backdoor.Win32.Iroffer.ab
Ikarus T3.1.1.12 2007.09.10 Backdoor.Win32.Iroffer.AB
Kaspersky 4.0.2.24 2007.09.10 Backdoor.Win32.Iroffer.ab
McAfee 5116 2007.09.10 potentially unwanted program Iroffer
Microsoft 1.2803 2007.09.10 -
NOD32v2 2519 2007.09.10 a variant of Win32/Iroffer
Norman 5.80.02 2007.09.10 W32/Iroffer.PP
Panda 9.0.0.4 2007.09.09 Application/Iroffer.BQ
Prevx1 V2 2007.09.10 -
Rising 19.40.02.00 2007.09.10 Backdoor.Iroffer.ab
Sophos 4.21.0 2007.09.10 Iroffer
Sunbelt 2.2.907.0 2007.09.07 Backdoor.Win32.Iroffer.ab
Symantec 10 2007.09.10 -
TheHacker 6.1.10.183 2007.09.10 Backdoor/Iroffer.ab
VBA32 3.12.2.4 2007.09.09 Backdoor.Win32.Iroffer.ab
VirusBuster 4.3.26:9 2007.09.10 Backdoor.Iroffer.BA
Webwasher-Gateway 6.0.1 2007.09.10 Trojan.Iroffer.AB.14
They say it's a virus, but it's a fresh file.