SrikanthL

False positive with zip4j

Recommended Posts

I am the author of a Java based project called zip4j, a library to work with zip files in Java. 

Since a recent change in zip4j, VirusTotal reports of an issue with zip4j  -> Java.Trojan.GenericGBA.27895, and one of the engines which reports it is AdAware. One of the users of zip4j has reported this issue, and after some investigation, I have written my findings in the post here. Basically, changing one cast of class to another is being reported as critical. This is definitely a false positive. Can you please let me know how I can get around this? This false red flag might impact the usage of my library for which I have put a lot of effort into.

Thank you.

Share this post


Link to post
Share on other sites

Hi SrikanthL,

Bitdefender seems to be the source of the detection. Please report the file to them: https://www.bitdefender.com/submit/

Bitdefender will then send new signatures without the false positive to Adaware.

Share this post


Link to post
Share on other sites

Thanks CeciliaB. That seems to have actually helped, and the issue seems to be fixed. I am pleasantly surprised at the reaction time from Bitdefender. Although only one Poland based tool called Acrabit still reports this on VirusTotal, but I guess they probably cache some definitions and over time that disappears as well. Thanks anyway for your hint. 

Share this post


Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.