I’m using CIS and I think I may have a false positive. The problem is that it’s an addon for a commercial piece of software, so I’m not sure if I should be submitting it to 3rd party in the first place (it requires a registration code to work though).
I’ve been in touch with the retailer (www.simmarket.com), who claim that they scan all of their downloadable products and that I can rest assured that it’s a false positive.
The COMODO alert states that it’s TrojWare.Win32.TrojanDropper.Agent.~TL798872
I have other products from the same developer, downloaded from the same retailer which does not present a warning. The only difference between the two types of installers, is that the ones I suspect of having false positives have a feature where they will read the clipboard to see if I have copied the (rather long) registration key there. Could this set off a false positive?
I’ve submitted the files to COMODO in the past, but never got around to see if there was any follow-ups.