False positive - PEV.exe

Hi
Just noticed it only recently so it must be one of your recent updates.
aswMBR reports Combofix file as:
19:12:08.546 File: C:\WINDOWS\PEV.exe INFECTED Win32:Rootkit-gen [Rtk]

Long time user of your products here.
I hope you’ll fix this issue shortly.

Regards :slight_smile:

Yes i know…i was using aswmbr after combofix run on some of my clients machines and i noticed the FP…I hope this will be fixed…

Hello,
did you send the file to virus@avast.com?

Milos

I don’t have that file on my computer.

It’d be as simple for you guys as to run Combofix on any of your computers and then run aswMBR to see.