Nod32 V4 too sensitive?

Discussion in 'ESET NOD32 Antivirus' started by softtouch, Mar 29, 2009.

Thread Status:
Not open for further replies.
  1. softtouch

    softtouch Registered Member

    Joined:
    Jan 31, 2006
    Posts:
    415
    I am a programmer, and write a lot of projects where I have to access/gather system information, like info about screen, memory etc., and NOD32 V4 popup all the time that it detected "probably unknown NewHeur_PE virus", that is just plain stupid!
    V3 and V2.7 did not popup anything, just the today installed V4!
    This happen with a lot of my programs now, they are all written in Delphi, if that matter.
    I then tried to send the file to eset, but all I get after filling up the comment "unable to send file".
     
  2. Marcos

    Marcos Eset Staff Account

    Joined:
    Nov 22, 2002
    Posts:
    14,374
    That's what heuristics as well as behavior blockers are supposed to do - to detect suspicious behavior and let the user decide what action to take. If you release your software to the public, email the file in a password protected archive to samples[at]eset.com with "False positive" in the subject and as much information about the software as possible (e.g. its purpose, the url people can download it from, version number, etc.).
    Since advanced heuristics is same for all versions, I assume you must have enabled a new option introduced in v4, such as advanced heuristics on file access or execution.
     
  3. softtouch

    softtouch Registered Member

    Joined:
    Jan 31, 2006
    Posts:
    415
    Where can I submit the file manually, because its a FP!

    I wrote it, I know its not a virus or does any dangerous things, and all scanner report no virus, except NOD32 V4 (V2.7 did not report it).

    Virustotal:
    Result: 1/40 (2.5%)

    and the 1 of 40 was NOD32, which tells me always
    "systemsnap.dll probably unknown NewHeur_PE virus"
     
  4. funkydude

    funkydude Registered Member

    Joined:
    Apr 5, 2004
    Posts:
    6,852
  5. softtouch

    softtouch Registered Member

    Joined:
    Jan 31, 2006
    Posts:
    415
Thread Status:
Not open for further replies.