Symantec again false positive

Everything else that doesn't fall into one of the other PB categories.
Post Reply
User avatar
NicTheQuick
Addict
Addict
Posts: 1226
Joined: Sun Jun 22, 2003 7:43 pm
Location: Germany, Saarbrücken
Contact:
Contact NicTheQuick

Re: Symantec again false positive

Post by NicTheQuick »

skywalk wrote:Another approach is compile your PB code to dll, and build app with approved compilers.
I don't think that solves the issue. DLLs are still binaries and heurstics will scan them. But maybe it is worth a try. :wink: If it works we just found a new approach to send viruses and start them using rundll.exe :P
The english grammar is freeware, you can use it freely - But it's not Open Source, i.e. you can not change it or publish it in altered way.
Top
User avatar
skywalk
Addict
Addict
Posts: 3996
Joined: Wed Dec 23, 2009 10:14 pm
Location: Boston, MA

Re: Symantec again false positive

Post by skywalk »

Haha, yes, my implication is that an approved/elevated installer will instantiate the approved exe and its supporting dll, img, db's, etc.
The nice thing about standards is there are so many to choose from. ~ Andrew Tanenbaum
Top
User avatar
Kwai chang caine
Always Here
Always Here
Posts: 5353
Joined: Sun Nov 05, 2006 11:42 pm
Location: Lyon - France

Re: Symantec again false positive

Post by Kwai chang caine »

I saw that without debugger, there are most less notifications :shock:
So for the moment, for test all your codes....no "cockroach" button :mrgreen:

Justly my administrator called me, there is just a little moment :oops:
Image

And i believe he have understand my problem...so i hope :|
Fortunately, i have keep the 4 mails of SYMANTEC for proof my good faith and a ScreenShot of VirusTotal site with only the great SYMANTEC (and some little AV) who see my exe is a virus
Perhaps with that i can have a VM or a SandBox.....
Image
ImageThe happiness is a road...
Not a destination
Top
Post Reply

Return to “General Discussion”