Adam Brock Posted November 28, 2009 ID:163203 Share Posted November 28, 2009 This program is detected as Trojan.Generic, but it's actually a legitimate component of a utility from Symantec (Cleanwipe) designed to remove traces of Symantec Endpoit Protection when uninstalls fail.The tool can only be obtained from tech support, but I can provide you a copy if it would help in further analysing the file.Virustotal actually reports 12/41, but I'm confident this file isn't a trojan.http://www.virustotal.com/analisis/4e66e8d...f35e-1259374379Please let me know if I can provide more info.\\ACB Link to post Share on other sites More sharing options...
Adam Brock Posted November 28, 2009 Author ID:163204 Share Posted November 28, 2009 Sorry, looks like the attachment didn't upload... Link to post Share on other sites More sharing options...
Staff nosirrah Posted November 28, 2009 Staff ID:163209 Share Posted November 28, 2009 The hits on VT are caused by the same things we detect , this file is constructed just like multiple trojans . Since this file could be used in an attack and the only people that will ever be using this are experts and this is a tool that is not designed to be a resident application setting it to ignore is the right way to deal with detection .In short simply fixing this will only help a handful of experts while delisting thousands of trojans . Link to post Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now