Ran a full scan on one of our machines and had 3 files from Drake (professional tax preparer software) pop as infected.
Checked out Drake’s site and while they mention that some false positives are possible due to e-filing support, they don’t get into specifics. I can call their support tomorrow (too late today) but one of the first bullet points was pretty much ‘we don’t recommend/work with free AV’ (we’re on the business free since this is an approx 10 person company). Google wasn’t much help either. So I’m hoping perhaps someone has insight here.
Oh, and MalwareBytes ran concurrently came back clean.
Is there any way to go about double checking that these are actually FPs? I mean it would be very targeted malware (tax offices beware) but still possible, and we do deal in sensitive info so I’d rather not just ignore if there’s a chance.
Edit: Just finished reporting the potential FP and saw that they do reply. Not sure what the turnaround is usually like. I’d still be interested in anything I can do to double check on my end. Just letting (potential) malware sit on a machine dealing with SSNs, bank accounts, etc is not a recipe for sleeping well, even if it’s a pretty outside chance!
Sorry for not prettifying links, it’s quite late here and I’m rather tired.
Seems like most of the ‘big hitters’ that I find trustworthy are ok with it, but it still bothers me that so many others - even if sub quality - seem to disagree I guess?
I submitted all 3 to Avast so perhaps we just wait and see… I’d uninstall Drake '10 and Drake '06 but I don’t want to back up the files elsewhere if anything is infected. Catch 22 I suppose.
Edit: Heard back from Avast, they are escalating the files (to hand review I believe) so we’ll see. Hopefully all good /fingers crossed.