Yes, please submit that software with all required informations. If you are developer of the application, you may send more versions of the...
How to submit potential false positive samples to ESET's labs http://kb.eset.com/esetkb/index?page=content&id=SOLN141
This is how the software behaves on the clean computer: [ATTACH]
Some note from the competition about the subject: http://www.avertlabs.com/research/blog/index.php/2009/05/28/who-digs-the-elephant-trap/
Indeed there is a record in the registry referring to the malware: Important Registry Entries - Standard Autostart --"Key" =...
Perhaps you would like to create a SysInspector log and send it for exemple to Marcos?
It could be an infection of an Autoit malware. Older variants were located here: c:\Win\lsass.exe When you find it submit it if it is undetected.
You asked for the explanation and solution. You received the explanation. I know my answers did not satisfy you but you asked. You received the...
I can answer the details later if you will not loose the interest to know them. However now I am interested to know the other examples of the AH...
NOD32 is able to extract the files inside when the AH is enabled. Please do not make false statements.
But did you read what I wrote? How did you discover there are only 2 files inside? Did you unpacked the executable? Maybe you will want to edit...
The google toolbar installer is a compressed file and inside there are embedded files. Some of the embedded files have embedded files as well....
Re: false positive - AGAIN I donwnloaded it without problems, it is not detected. md5sum emailaya.exe 356d595459ca402d5fa6301d2c10588f...
It is not detected as virus. It is detected as potentially unwanted application if you enable this option in the setup. If you didn't enable the...
Opera is trying to connect via IPv6 when it resolves v6 address via DNS but if you don't have the IPv6 properly configured (native or tuneling),...
Here is a typo in the URL BTW.
Did you discovered something suspicious after running the SysInspector ?
The NOD32 version 4 (currently in public beta stage) is already dealing with the PUA in different way. Notification alert is changed and the color...
Not a problem. Yes, some email server can delete it if you send it unencrypted. Yes, it depends on individual settings on email servers....
Please tell us something more about your application "Spam & Macro Bot." It seems like an automation tool but what relation it has with spam?...
I disagree with this statement. Themida is not detected as default, only when users chose to turn on the p.unwanted applications. The...
Is it the same file as the file discussed in the http://www.wilderssecurity.com/showthread.php?t=231865 ?
Well, it was already answered. Normal autoit programs are not detected. You use the same code obfuscator as the malware writers and some NOD32...
It was already answered but I can summarize it: The file is not detected by default. User have to change detection settings in order to be...
Yes, the SpywareCease is known to trigger severe false positives, I don't recommend it.
Separate names with a comma.
