Second opinion on false-positive

Nirvana6 · November 20, 2013

TraySetIcon(@ScriptDir&"\icon.ico")
While 1
    if WinExists("Google Notification") Then
        SoundPlay("C:\R2D2-yeah.wav")
        Sleep(10000)
    EndIf
WEnd

So I wrote this piece of code and saved it and compile it under mail_notification_check.exe.

I ran it for about a day; when I re-run it at a point Spybot S&D identified the compiled the script as Trojan.Bancos.prx.

Saving it under a different name , r2d2mail.exe didn't trigger the Spybot S&D warning; Avast didn't detect it at all, even after deep scanning it.

By the looks of it, it's clearly a false-positive, triggered by the name of the script ( I tried with mail.exe and notmail.exe and they were detected as well); but a second opinion would be very much appreciated.

Regards,

Danp2 · November 20, 2013

'?do=embed' frameborder='0' data-embedContent>>

martin · November 20, 2013

I compiled yor sample script using the name mail_notification_check.exe. When I ran it SpyBot ignored it.

I wouldn't expect any virus checker or malicious code checker to take any notice of the exe name though that doesn't mean they don't.

Nirvana6 · November 20, 2013

I compiled yor sample script using the name mail_notification_check.exe. When I ran it SpyBot ignored it.

I wouldn't expect any virus checker or malicious code checker to take any notice of the exe name though that doesn't mean they don't.

Thank you.

Nirvana6 · November 20, 2013

'?do=embed' frameborder='0' data-embedContent>>

Yep, I was aware of that thread, but my compiled script was reported as a specific trojan, and I needed a second opinion on it.

Cheers !

Sign In

Second opinion on false-positive

Recommended Posts

Nirvana6

Danp2

martin

Nirvana6

Nirvana6

Browse

AutoIt Resources

Release

Beta