4831 gives Win32/Packed.Armadillo application hits

Discussion in 'NOD32 version 2 Forum' started by vanman, Feb 3, 2010.

Thread Status:
Not open for further replies.
  1. vanman

    vanman Registered Member

    Joined:
    Feb 3, 2010
    Posts:
    2
    Hello,

    Just got the update 4830 and 4831 today.
    Now get Win32/Packed.Armadillo application hits on:

    C:\Program Files\HyperSnap-DX 5\HprSnap5.exe
    C:\Program Files\CoCreate\MEls\MEls32.exe

    True or false !!!

    Vanman
     
    Last edited: Feb 3, 2010
  2. cbdudley

    cbdudley Registered Member

    Joined:
    Feb 3, 2010
    Posts:
    1
    I'm seeing the same warning on C:\Program Files\MessagePal\MessagePal.exe.
    This is an LAN-only instant messaging application. About 10 of my NOD32 users reported it this morning. I'm assuming it is a false positive and adding it to the exclusions list.
     
  3. agoretsky

    agoretsky Eset Staff Account

    Joined:
    Apr 4, 2006
    Posts:
    4,032
    Location:
    California
    Hello,

    I just downloaded and scanned the following applications:


    • Grenox Software's MessagePal v1.8.0
    • Parametric Technology Corporation's CoCreate Modeling Personal Edition v2.0
    • Hyperionics Technology's HyperSnap-DX v6.70.01

    with ESET Smart Security v4.2 and threat signature database 4832 and did not receive any reports of malware. Can you please confirm whether you are still receiving reports of this malware with the 4832 database?

    Regards,

    Aryeh Goretsky
     
  4. Dofoar

    Dofoar Registered Member

    Joined:
    Feb 3, 2010
    Posts:
    1
    I'm desperate...

    4832 has been drowning me under those armadillos for the whole evening now and I don't know if there's a real reason to make such a fuss.I can't remove it,it only says that I can "leave" it (duhh) and no matter what kind of crazy stuff I've already tried out it just doesn't work.

    Please tell me that I musn't fret cause it's false alarm...
     
  5. agoretsky

    agoretsky Eset Staff Account

    Joined:
    Apr 4, 2006
    Posts:
    4,032
    Location:
    California
    Hello,

    In order to investigate this, it would be helpful to have the following information:
    • Name of software developer
    • Name and version of application
    • Name and version of ESET software
    • Version of threat signature database being used by ESET's software
    For more information on how to report a false positive alarm, please see ESET knowledgebase article #141, "How to submit virus or potential false positive samples to ESET's labs." ESET treats false positive alarm reports with high priority, so following the instructions in that article is the best way to ensure speedy verification and issue resolution.

    Regards,

    Aryeh Goretsky
     
  6. vanman

    vanman Registered Member

    Joined:
    Feb 3, 2010
    Posts:
    2
    Hello,

    No hit anymore with database 4037
    Hmmmm??!

    Vanman
     
Thread Status:
Not open for further replies.