I noticed that X-scan 3.3 was recommended in a thread in these forums (SlimJim100 gave a video of it), so I downloaded it from xfocus.org to try it out.

BUT, my AVG anti-virus claimed it has a worm, specifically the file "common_pass.dic" in the /dat directory. And of course AVG labeled about 21 other different files as "potentially dangerous" but that's not surprising given what the program is supposed to do. Also, I noticed that Mcafee Siteadvisor found numerous "red" downloads from the xfocus website.

I uploaded the common_pass.dic file to virustotal.com to get more opinions, and most of the virus programs didn't complain about it.

I guess I'm just looking for a little more reassurance at this point. 
Is this program still considered safe to use?

but the download page is not opening I think...can any1 give proper link of downloading xscan

Antivirus/antispyware/antimalware applications do not just scan a single file and deem it to be safe. If the file is part of a larger package and it is scanned the application will make the determination that you may be infected/compromised based on that file and the package it's part of.

For example: SSH brute force scripts may download and use a standard dictionary file and if this is discovered by your AV it will alert you to that fact.

Antivirus apps don't just scan for viruses. They scan for all forms of potentially malicious software. Eg: keyloggers, BHOs, etc.... I always wonder why Symantec flags netcat as do many other AV apps.

If you are intending to run tools such as that you might want to consider disabling or removing whatever host based firewalls, IDS/IPS, AV, antispyware apps you have running. You are going to have to whitelist/exclude so many files anyway that it's going to render the tools pretty ineffective.

Ideally, you would want your regular workstation you use for daily tasks to not to be used for testing tools, reversing malware, pentesting, etc....

dean

Use your tools in a VM. This gives your host protection even without an AV like dean mentioned. Good luck.