{"id":134,"date":"2009-01-05T21:50:00","date_gmt":"2009-01-05T21:50:00","guid":{"rendered":"https:\/\/defragged.org\/ossec\/?p=134"},"modified":"2020-07-02T21:50:48","modified_gmt":"2020-07-02T21:50:48","slug":"ossec-being-detected-as-a-malware","status":"publish","type":"post","link":"https:\/\/defragged.org\/ossec\/2009\/01\/ossec-being-detected-as-a-malware\/","title":{"rendered":"OSSEC being detected as a malware"},"content":{"rendered":"\n<p>Some anti-virus products (BitDefender, F-Secure, etc) are&nbsp;<a href=\"http:\/\/www.virustotal.com\/analisis\/e1faf42be76cf372b60de79a500d7142\">detecting<\/a>&nbsp;the version 1.6.1 of the&nbsp;<a href=\"http:\/\/www.ossec.net\/\">OSSEC<\/a>&nbsp;Windows Agent as a malware (more specifically Generic.Qhost).<\/p>\n\n\n\n<p>We tried contacting some of them without much success. If you get any warning like that, it is a&nbsp;<strong>FALSE POSITIVE<\/strong>&nbsp;and let your anti-virus company know about it.<\/p>\n\n\n\n<p>Link to the virustotal scan:&nbsp;<a href=\"http:\/\/www.virustotal.com\/analisis\/e1faf42be76cf372b60de79a500d7142\">http:\/\/www.virustotal.com\/analisis\/e1faf42be76cf372b60de79a500d7142<\/a><\/p>\n\n\n\n<p>Thanks,<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Some anti-virus products (BitDefender, F-Secure, etc) are&nbsp;detecting&nbsp;the version 1.6.1 of the&nbsp;OSSEC&nbsp;Windows Agent as a malware (more specifically Generic.Qhost). We tried contacting some of them without much success. If you get any warning like that, it is a&nbsp;FALSE POSITIVE&nbsp;and let your anti-virus company know about it. Link to the virustotal scan:&nbsp;http:\/\/www.virustotal.com\/analisis\/e1faf42be76cf372b60de79a500d7142 Thanks,<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[4],"tags":[],"_links":{"self":[{"href":"https:\/\/defragged.org\/ossec\/wp-json\/wp\/v2\/posts\/134"}],"collection":[{"href":"https:\/\/defragged.org\/ossec\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/defragged.org\/ossec\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/defragged.org\/ossec\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/defragged.org\/ossec\/wp-json\/wp\/v2\/comments?post=134"}],"version-history":[{"count":1,"href":"https:\/\/defragged.org\/ossec\/wp-json\/wp\/v2\/posts\/134\/revisions"}],"predecessor-version":[{"id":135,"href":"https:\/\/defragged.org\/ossec\/wp-json\/wp\/v2\/posts\/134\/revisions\/135"}],"wp:attachment":[{"href":"https:\/\/defragged.org\/ossec\/wp-json\/wp\/v2\/media?parent=134"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/defragged.org\/ossec\/wp-json\/wp\/v2\/categories?post=134"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/defragged.org\/ossec\/wp-json\/wp\/v2\/tags?post=134"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}