False Positives

Every once in a while, an antivirus program pops up and says that Wireshark (and Ethereal before it) contains some sort of malware. This is a list of the reports we've received in reverse chronological order. So far, every single report has been a false positive.

The Wireshark Windows installer uses NSIS, who maintain their own list.

A couple of Wireshark University training DVDs contain trace files with virus signatures. These pose no risk but can trigger false alarms.

FalsePositives (last edited 2016-03-31 15:39:45 by GeraldCombs)