@ detected that Sourceforge shows a warning for the OpenPetra installer. You cannot just download it:
- "Warning! Malware detected. Download at your own risk."
- "This file may contain malware and the automatic download has been disabled."
See also this link: https://sourceforge.net/projects/openpetraorg/malware
I did upload the file in question to VirusTotal, and this is the result: https://www.virustotal.com/de/file/1e73d234964033b35c9bc8ece2f058106a6c04f2e22691fcc1005623e9a14922/analysis/1467007276/
What should we do?
- We could talk to each antivirus company, similar to https://community.mcafee.com/thread/88061?start=0&tstart=0, and ask to remove the false positive
- I am working on a new release anyway, still merging the stuff from ICT up until their May release. Hopefully the new installer might not contain the signatures that lead to the false alarms?
- or should we investigate our code, where do we behave like a trojan horse? but we don't download from anywhere else. Just wondering if we install the standalone installer to the users directory or to C:\Program Files? perhaps that makes it suspicious?