Trend Micro is quarantining OpenMcdf.dll

Question

Closed this issue 8 months ago · 5 comments

Has anyone else had there dll deleted by antivirus? We started getting tagged for this dll because it was used by a malware product, evilclippy (https://kalilinuxtutorials.com/evilclippy-malicious-ms-office-documents/).

Guilt by association I suppose!

Answer 1 · 2019-05-17T07:01:38.000Z

Answer 2 · 2019-05-17T22:43:03.000Z

I've sent a note to Trend Micro using their re-classification form at https://www.trendmicro.com/en_us/about/legal/detection-reevaluation.html
If you think it can be useful, please send a note you too.
This misclassification is really annoying imho...
Thank you, Federico

Answer 3 · 2019-05-20T18:59:52.000Z

Same problem here. I've also sent a re-evaluation request to Trend Micro.

Answer 4 · 2019-05-20T20:30:34.000Z

Thank you! And many thanks to all people asking Trend Micro for re-classification: I hope that they'll recognize this mistake.

Answer 5 · 2024-02-25T22:24:13.000Z

Closing with the hope that this type of false-positive virus responses will not present again in the future.