Our Registry Cleaner application (PC SpeedScan Pro) is being detected as Win32:Malware-gen by avast online scanner and as well on virustotal too.
Below are the details of the application: Source of software:http://www.ascentive.com/products/pcspeedscan/ Name of developer: Ascentive LLC. Name and version of application: SpeedScan.setup.exe (7.9.8)
This application is not malware. Therefore, we request you to remove our software from your malware detection database.
Please find attached the snapshot of your online scanner results.
Let me know incase you need anything else.
Looking forward to a prompt reply/action from your side.
You can use mail
send to virus@avast.com in a password protected zip file
mail subject: False Positive / undetected sample (select subject according to your case)
zip password: infected
So you want Avast to leave the users open to all sorts of browser hijackers and nuisance programmes like scorpion, delta etc… If the user installs it deliberately then they can add an exception otherwise this tends to come bundled with other software
We just want our software to be removed from this detection. Our software is a registry cleaner application. We have provided you with our setup. You can analyse the same. Our intention was never to leave the users open to all sorts of browser hijackers and nuisance programmes.
That has me worried right now. Reg Cleaners are not usually safe for use. Nor trustworthy, and usually come packed with "Bloat"ware. Aka (Toolbars, Adware, or as Avast! calls it. PUP.
Edit: This is what Avast! is detecting. “Create a Desktop Icon for a recommended download” and “Yes Install the Ascentive Performance Center”. Other wise known as PUP. They don’t know what it is, and even though it belongs to you, it is considered Potentially unwanted Software. The user probably does not want 2 Icons, a Quick Launch Icon and more programs.
Your website is connecting to many bad websites. Including. A RBN IP (Which I can’t find now? Removed?)
malvertising (facebaoock.com)
And what is the file; libraryfiles.exe. What’s it’s purpose?
2014-03-28 17:46:09 1 64.62.158.147 urlQuery Client ET POLICY PE EXE or DLL Windows file download
2014-03-28 17:46:09 3 64.62.158.147 urlQuery Client FILEMAGIC PE32 for MS
A lot of what I found last night appears to be missing. Was your site hacked?