I received an infection alert from my Avast AV software, advising that while contacting the server, BOINC attempted to download a file infected with malware. The connection was blocked and aborted. Here is the advisory that I received:

https://plus.google.com/+PeterCEqualityFrank/posts/DtLHFDLbRMB?pid=6152120900400253026&oid=106600597250549324874

---

Link to the file:
http://boinc2.ssl.berkeley.edu/beta/download/setiathome_7.06_windows_intelx86__opencl_intel_gpu_sah.exe

It is 'False Positive' from Avast - Please send the file or the above URL to Avast and say to them: 'False Positive' (so they can fix the detection/signatures)

Also BitDefender is in fault - all Antiviruses that (Falsely) reported "Gen:Variant.Fosniw" are using the BitDefender engine/signatures:
https://www.virustotal.com/en/file/0e3e5d238a68c92965fe38ad7d881406b4f511455b2327f3964b6646c1d00165/analysis/

(I use ESET-NOD32)


P.S.
I just reported to:

Ad-Aware / Lavasoft
http://lavasoft.com/support/securitycenter/report_false_positives.php

BitDefender
http://www.bitdefender.com/site/Main/automaticSampleUploader/

G DATA
https://su.gdatasoftware.com/us/sample-submission/


The following:

http://boinc2.ssl.berkeley.edu/beta/download/setiathome_7.06_windows_intelx86__opencl_intel_gpu_sah.exe

False Positive - Gen:Variant.Fosniw.1

https://www.virustotal.com/en/file/0e3e5d238a68c92965fe38ad7d881406b4f511455b2327f3964b6646c1d00165/analysis/

BitDefender is in fault - all Antiviruses that (Falsely) reported "Gen:Variant.Fosniw" are using the BitDefender engine/signatures

*** I get the links from this List of links to report to Antivirus vendors:
http://www.techsupportalert.com/content/how-report-malware-or-false-positives-multiple-antivirus-vendors.htm

Use Ctrl+F for Avast and you'll find:
http://www.avast.com/contact-us.php?subject=VIRUS-FILE

---

 


- ALF - "Find out what you don't do well ..... then don't do it!" :)
 

I also reported to Avast
https://support.avast.com/Tickets/Ticket/View/WSJ-428-96444

I will not bother to fix the:
"McAfee - Artemis"
"TrendMicro-HouseCall - TROJ_GEN"
"Symantec reputation - Suspicious.Insight" (on [Additional information] tab)

... as I find them stupid (these show on almost anything)

---

 


- ALF - "Find out what you don't do well ..... then don't do it!" :)
 

Avast fixed it:
https://www.virustotal.com/en/file/0e3e5d238a68c92965fe38ad7d881406b4f511455b2327f3964b6646c1d00165/analysis/

Now to see when BitDefender will.


Submitted also to:

F-Secure
https://analysis.f-secure.com/portal/login.html

MicroWorld-eScan
http://support.mwti.net/support/index.php

---

 


- ALF - "Find out what you don't do well ..... then don't do it!" :)
 

OK, BitDefender is fixed (which fixes also 6-7 Antiviruses depending on it)

If somebody uses one of the remaining (McAfee, Ikarus, Norman, ...) - you already have enough info to know what to do ...

---

 


- ALF - "Find out what you don't do well ..... then don't do it!" :)
 

For reference - here is some history of the scans:
https://www.virustotal.com/en/file/0e3e5d238a68c92965fe38ad7d881406b4f511455b2327f3964b6646c1d00165/analysis/1432470000/
https://www.virustotal.com/en/file/0e3e5d238a68c92965fe38ad7d881406b4f511455b2327f3964b6646c1d00165/analysis/1432500000/
https://www.virustotal.com/en/file/0e3e5d238a68c92965fe38ad7d881406b4f511455b2327f3964b6646c1d00165/analysis/1432600000/

https://www.virustotal.com/en/file/0e3e5d238a68c92965fe38ad7d881406b4f511455b2327f3964b6646c1d00165/analysis/1432900000/
https://www.virustotal.com/en/file/0e3e5d238a68c92965fe38ad7d881406b4f511455b2327f3964b6646c1d00165/analysis/1432970000/

https://www.virustotal.com/en/file/0e3e5d238a68c92965fe38ad7d881406b4f511455b2327f3964b6646c1d00165/analysis/

---

 


- ALF - "Find out what you don't do well ..... then don't do it!" :)