ky331
July 20, 2015, 11:24pm
1
Avast definitions 15-07-20-2 is suddenly picking up on an almost 3-year-old document “Sophos_ZeroAccess_Botnet.pdf ” as PDF:Url-Mal [Trj].
It is clean according to 54 other anti-virus engine at VirusTotal
https://www.virustotal.com/en/file/71bf30b5ac3436becb41a73aba35d2e88a0580b8193bcceb2ef91ee73d6e50c1/analysis/1437433852/
system
July 20, 2015, 11:30pm
2
Hi David.
Add it to the virus chest and send it to Avast lab as a F/P.
Regards.
ky331
July 20, 2015, 11:32pm
3
Hernan,
I already did that. But figured it couldn’t hurt to report here as well.
system
July 20, 2015, 11:34pm
4
No harm done really If it is your document, surely it is a F/P.
ky331
July 20, 2015, 11:41pm
5
It’s a copy of a technical paper issued by Sophos Labs, dated Sept. 2012, entitled “The ZeroAccess Botnet – Mining and Fraud for Massive Financial Gain ”. It’s been sitting in my documents folder ever since I downloaded it. Avast never questioned it until today’s scan.
hrdy
July 21, 2015, 12:28pm
6
Hello,
the PDF contains clickable URL “hxtp://google-updaete.com:8344/”.
Milos
ky331
July 21, 2015, 1:13pm
8
Thank you for the explanation.