One of executables in popular Slovenian-Foreign dictionary software package is now detected as rootkit-gen.
The Software in question is DZS ASP32, produced by Amebis and DZS as publisher. The website of developer is http://amebis.si
The file is an exe that displays bookshelf and is at least 3 years old and is completely harmless. As of about a month ago it’s detected as virus by many on access scanners, including Avast.
The file in question can be downloaded from here:
hxxp://upload.hattix.co.uk/files/Polica.exe
Please clear this.
The situation with false positives and virus scanners has gotten worse in the past 6 months, McAfee now deletes vncviewer.
It isn’t recommended to post active links to suspect files (avoids accidental exposure), apart from that when trying to pre-scan the link I get an error with DrWeb link scanner.
to de activate the link change the http to hXXp, e.g. hXXp://upload.hattix.co.uk/files/Polica.exe
You could also check the offending/suspect file at: VirusTotal - Multi engine on-line virus scanner and report the findings here. You can’t do this with the file securely in the chest, you need to extract it to a temporary (not original) location first, see below.
Create a folder called Suspect in the C:\ drive, e.g. C:\Suspect. Now exclude that folder in the Standard Shield, Customize, Advanced, Add, type (or copy and paste) C:\Suspect* That will stop the standard shield scanning any file you put in that folder. You should now be able to export any file in the chest to this folder and upload it to VirusTotal without avast alerting.