Adam Brock Posted November 28, 2009 ID:163203 Share Posted November 28, 2009 This program is detected as Trojan.Generic, but it's actually a legitimate component of a utility from Symantec (Cleanwipe) designed to remove traces of Symantec Endpoit Protection when uninstalls fail.The tool can only be obtained from tech support, but I can provide you a copy if it would help in further analysing the file.Virustotal actually reports 12/41, but I'm confident this file isn't a trojan.http://www.virustotal.com/analisis/4e66e8d...f35e-1259374379Please let me know if I can provide more info.\\ACB Link to post Share on other sites More sharing options...
Adam Brock Posted November 28, 2009 Author ID:163204 Share Posted November 28, 2009 Sorry, looks like the attachment didn't upload... Link to post Share on other sites More sharing options...
nosirrah Posted November 28, 2009 ID:163209 Share Posted November 28, 2009 The hits on VT are caused by the same things we detect , this file is constructed just like multiple trojans . Since this file could be used in an attack and the only people that will ever be using this are experts and this is a tool that is not designed to be a resident application setting it to ignore is the right way to deal with detection .In short simply fixing this will only help a handful of experts while delisting thousands of trojans . Link to post Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now