Infected? (was:4.0.34.16)

2008-10-20 Thread MAU
Hello Maxim, The Bat! 4.0.34.16 (ALPHA) is available at http://www.ritlabs.com/download/files3/the_bat/beta/tb403416.rar When downloading completes I get a warning from NOD32 antivirus saying that it is probably a modified variant of Win32/Packed.Themida. Any ideas or suggestions? -- Best

Re: Infected? (was:4.0.34.16)

2008-10-20 Thread Alain de Gevigney
Hello MAU, On Mon, 20 Oct 2008 at 12:25:34 [GMT +0200] (which was 12:25 where I live) you wrote: The Bat! 4.0.34.16 (ALPHA) is available at When downloading completes I get a warning from NOD32 antivirus saying that it is probably a modified variant of Win32/Packed.Themida. Same here, I

Re: Infected? (was:4.0.34.16)

2008-10-20 Thread Mackley
I've scan it with Agnitum Outpost Security Suite Pro 2009 (with integrated antivirus/antimalware): no reports. I've uploaded thebat.exe on VirusTotal and I get: Win32.Malware.gen!92 (suspicious) by SecureWeb-Gateway Sus/ComPack by Sophos W32/Behav-Heuristic-064 by TheHacker NOD32 with 3537

Re: Infected? (was:4.0.34.16)

2008-10-20 Thread MAU
Hello Alain, Any ideas or suggestions? Ignore it ? I think I will not ignore it, at least for the moment. -- Best regards, Miguel A. Urech (El Escorial - Spain) Using The Bat! v4.0.34.15 (ALPHA) on Windows XP 5.1 Service Pack 3

Re: Re[2]: Infected? (was:4.0.34.16)

2008-10-20 Thread Mackley
I've tested it with NOD32 2.70.39 with virus database 3537 (dated 20/10/2008): no warning. Maybe was a false positive in previous virus database of NOD32... -- M. Current beta is 4.0.34.16 | 'Using TBBETA' information:

Re: Infected? (was:4.0.34.16)

2008-10-20 Thread Marek Mikus
Hello all, Monday, October 20, 2008, MAU wrote: I think I will not ignore it, at least for the moment. thebat.exe is protected against cracking and seems NOD32 detects this, even I have ESET Smart Security virusbase 3537 and have no warning about exe. -- Bye Marek Mikus Czech support of The

Re[2]: Infected? (was:4.0.34.16)

2008-10-20 Thread Marcus Jaeger
Hello, Monday, October 20, 2008, 1:18:15 PM, you wrote: Hello all, Monday, October 20, 2008, MAU wrote: I think I will not ignore it, at least for the moment. thebat.exe is protected against cracking and seems NOD32 detects this, even I have ESET Smart Security virusbase 3537 and have no

Re: Infected? (was:4.0.34.16)

2008-10-20 Thread MAU
Hello Mackley, Maybe it's only an anti-crack protection with encryption, so I think it's a false positive. It probably is but, since it is the first time I get such (or similar) warning), I'd like to hear what RIT guys have to say about it. -- Best regards, Miguel A. Urech (El Escorial -

Re: Infected? (was:4.0.34.16)

2008-10-20 Thread MAU
Hello MAU, When downloading completes I get a warning from NOD32 antivirus saying that it is probably a modified variant of Win32/Packed.Themida. This thread may be of interest: http://www.wilderssecurity.com/showthread.php?t=184840 -- Best regards, Miguel A. Urech (El Escorial - Spain)

Re: Infected? (was:4.0.34.16)

2008-10-20 Thread MAU
Hello Marek, I think I will not ignore it, at least for the moment. thebat.exe is protected against cracking and seems NOD32 detects this, even I have ESET Smart Security virusbase 3537 and have no warning about exe. In my first message I said when downloading completes. So, what NOD32 is