Sunday, September 2, 2007

NRPG RatioMaster 0.37, 0.36, 0.35,... 0.32 is clean!

Trojan-Dropper.Agent.BJL, TR/Drop.Agent.BJL.5, Trojan-Clicker Agent, Trojan pandex and others...
are false positive.
Internals says file looks clean unpacked, it may come from overlay crypt.

Some ExE Packer can produce virus similar signatures after compressing and especially if protectors are used.
Unpacking the Application shows the program analyze it is "clean" conditions to exclude false positive alerts coming from eXe protections and packer.

You may also check out the non public Version 0.50 Beta/Alpha from March/April which use different packing and does not activate alerts from AV.

3 comments:

Anonymous said...

I did read in Gulli Forum about Bundes Trojans and from other sources (Heisse,...) about cooperation between AV companies and Governments to let some kind of Trojans pass without any note. Its not to far if the top AV's does the main cooperative work for unwanted spy's.

Anonymous said...

the scan result is here:
http://av.gomgo.biz/index.html

Eset Nod32 smart security (first was nod32 monitoring till the end of august in latest version, daily updated) wasn't found one single Virus from 269 infections.

The Backup disk on the second Os was monitored by Kaspersky AV, bough are original with genuine Registration key.

See http://av.gomgo.biz/index2.html


someone change a true Bitdefender version 11 (2008) original (no keygen made license) with original NOD32 also for upcomming nod32 smart security working license?

Anonymous said...

Also doing a dump from it and scan, doesn't show any trojan inside.

Post a Comment