The files contain a lot of names for malware. They are probably signature files for an AV program.
Both files contain this string: Eicar-Test-Signature
According to VirusTotal, only 2 AV programs use this signature for the EICAR test file: Avira and ClamAV.
Have you used one of them recently?
Remark that ClamAV can be bundled with other security software.
Update: most likely it's Avira. There's another string in there (PDFanit.a) that is used by Avira.
Edited by Didier Stevens, 12 October 2015 - 01:57 PM.
SANS ISC Senior Handler
Microsoft MVP 2011-2016 Consumer Security, Windows Insider MVP 2016-2019
If you send me messages, per Bleeping Computer's Forum policy, I will not engage in a conversation, but try to answer your question in the relevant forum post. If you don't want this, don't send me messages.
Stevens' law: "As an online security discussion grows longer, the probability of a reference to BadUSB approaches 1.0"