[false positive] my own personal site.

Hello,

One of my end users reported that my entire site is blacklisted for "potentially dangerous" content.

I am wondering how do I see regarding this evident false positive? Is it on the blacklist because I encrypt my content from being pirated?

I am willing to give source code to ESET developers so they can see themselves that *every* application I made is virus free.

Site in question is: mudlord.emuxhaven.net

Thankyou in advance for the prompt response.

 

Hmm..... not only ESET.
6/23 Detected.
-http://www.urlvoid.com/scan/mudlord.emuxhaven.net

 

Damn....
Could the reason be that I encrypt my executable content?

I am curious as to the rationale behind such blacklisting.

 

Post the MD5 the executable please.

 

MD5 : 830c35861da851789b8bd936a57dc4f5
SHA1 : d9f5a40e0006f6da6c816d6da87a261f0d2047c0
SHA256: 5d1f024b9dad127b94cf50cf9f5c6d411900e127917f6ae643bc4785188d9836

*virustotal*

Seems the reason is due to ASPack being used on one of the driver components.

 

May be the encryption yes.

BTW VirusTotal results isn't allowed to be posted unfortunately, if you don't delete the link a Mod will.

 

Fair enough,

Might just change the encryption to something less aggressive again.
Or none at all. >_>

 

I think you should wait for ESET's official response before you change anything.

 

Similar situation with another user with a blacklisted site.
https://www.wilderssecurity.com/showthread.php?t=297572
Follow the instructions as posted in the above reply.

Thank you.

 

Thanks very much.
Will do.

 

You're welcome, I visited your site, it is blacklisted as SweX posted in this thread @ -www.urlvoid.com/scan/mudlord.emuxhaven.net
While I do not rely on reputation based sites, the blacklist by ESET will not be removed until you take further action.

 

Posted a report as well as links to the now packer free content.
The only content now in the installer that is packed is the BASS libraries, which I cannot unpack since the code in those libraries is the content of a 3rd party middleware developer. And those BASS libraries are packed with Petite (the developer's own proprietary copy protection).

 

Allow ESET sufficient time to examine your submission, you may be advised via email, private message or a statement from an ESET Representative to this thread.