Bo Clean caught it. Nothing from nod. I even shut down Bo Clean and ran it just to see if nod would catch it. Sygate caugt it trying to phone home. No problem to get rid of thanx to Shadow Surfer.

The sooner you submit it the better.

Using the F-port find as an example(W32/Downloader.gen)....that leads me to believe it was a WMF exploit type file :-\

If so and if you have your Nod settings proper....Nod should have alerted you that the file was a variant of Win32/TrojanDownloader.Small.AOD :-\

I have nod set up as per Blackspears settings.

{QUOTE-> Using the F-port find as an example(W32/Downloader.gen)....that leads me to believe it was a WMF exploit type file :-\

If so and if you have your Nod settings proper....Nod should have alerted you that the file was a variant of Win32/TrojanDownloader.Small.AOD :-\ <-QUOTE}
I know my settings are proper (as per Blackspear) and I had a variant that was picked up by Spybot on an on demand scan. I submitted it. If in doubt submit.

I sent it to eset. I will hang on to it to see if it is added in the near future.

{QUOTE-> If in doubt submit. <-QUOTE}sure can't argue with that now can eye :o

Off topic comment removed.

Wow! I submitted it yesterday came home today and scanned the file again and nod nabbed it. Good work nod. Must have been a good one.

{QUOTE-> Wow! I submitted it yesterday came home today and scanned the file again and nod nabbed it. Good work nod. Must have been a good one. <-QUOTE}That's odd since it found it as Win32/TrojanDownloader.Small.AOD which was already in their database :-\

Maybe a variant that it couldn’t find or something? I don’t know, but I haven’t changed any nod settings between yesterday and today.

I am trying to re submit to virus total to see if the results changed since yesterday. Their server is too busy to get a reply. Same at Jotti. Is that normal for those services or is there an outbreak?

Just try again or click refresh on Jotti scan, and try on Virus total again,
and show us the results again here pls...

as of today

It would seem avg and nod added it in the last day.