Avira detecting cerberusinstall.exe as virus

Red Squirrel

No Lifer
May 24, 2003
70,166
13,573
126
www.anyf.ca
Has anyone ever noticed this? Cerberus is a free FTP server program, and Avira seems to detect it as a virus. Just wondering if anyone else has ever seen this, maybe it just thinks it's a trojan as it listens on a port and technically you could install it on a PC without the person knowing and browse their files.

I'm hoping it's just a false positive and that it's not a virus that somehow infected the installer because I'm running that on a live windows server lol so I hope it's not been tampered with..
 

n0cmonkey

Elite Member
Jun 10, 2001
42,936
1
0
It's probably been popular with the black hat hosters. Serv-U used to be the server of choice, but maybe it's Cerverus.
 

Bradtechonline

Senior member
Jul 20, 2006
480
0
0
Do you have some sort of potential unsafe applications option selected in avira? I've had avira get a lot of false positives on print drivers on a network share, and other in house applications.
 

Red Squirrel

No Lifer
May 24, 2003
70,166
13,573
126
www.anyf.ca
I do have heuristics enabled, which might be it. It might be finding that the app listens on a port + gives access to files, then sees it as a trojan.
 

chemwiz

Senior member
Mar 8, 2000
848
1
81
You can go to Avira and submit it with the file type "Suspected False Positive (Not Malware)". I've submitted a couple already, it took about a week before they fixed it. It's a great AV for a freebie, but it does give a lot of false positives.
 

Red Squirrel

No Lifer
May 24, 2003
70,166
13,573
126
www.anyf.ca
Guess a false positive is better then a false negative! I'll go submit it but first I should probably see if I can find another copy of it to be extra sure mine is not actually infected somehow, though I highly doubt it.
 

lxskllr

No Lifer
Nov 30, 2004
59,425
9,944
126
Check it at Virutotal.com. and see what the consensus is. Antivir has the occasional FP (18 in my case :^D), but if you download software from reputable sources, you can generally ignore them. System tools are the most likely culprit to give a FP.