BTW, it’s not just CGMiner either. BFMiner, other miners are all linked to this sort of false positive. Even when I compile it myself after having gone through the code.

I think the issue is that since there are snippets of open source code being used that IS used in some trojans, its falsely flagging it. It even flags the uncompiled code, which is not even executable.

https://github.com/ckolivas/cgminer/blob/master/diablo130302.cl as an example which is reported as such: https://www.virustotal.com/en/file/0b014f0ca49ca92e3c4bd6fff0d718fdb5a96f7699aa4dd1c67f09d562221fda/analysis/

This same program has been continously submitted as a false positive but it is never taken care of.