Re: Lua x antivirus

lua-l archive

[Date Prev][Date Next][Thread Prev][Thread Next] [Date Index] [Thread Index]

Subject: Re: Lua x antivirus
From: Enrico Colombini <erix@...>
Date: Thu, 12 Jul 2012 23:43:09 +0200

On 12/07/2012 23.13, Florian Weimer wrote:

Uploading false positives to Virustotal is not a good idea because it
triggers all kinds of automated actions, most of them geared towards
branding the file as malware.

I didn't know that; are you sure it works that way? I've often used itto check files and I often got a negative result. Sometimes it was afalse positive by a single antivirus only.

If virustotal has such an impact, I guess it should be possible tocontact them and have it marked as "good", but contacting McAfee andSymantec is probably more important. Especially because it's not asignature-based alert, but a heuristic one (which seems to go againstthe Flame theory).


An important question is why heuristic engines do flag that executable.

--
  Enrico

Follow-Ups:
- Re: Lua x antivirus, Oliver Schneider
- Re: Lua x antivirus, Florian Weimer

References:
- Lua x antivirus, Roberto Ierusalimschy
- Re: Lua x antivirus, Enrico Colombini
- Re: Lua x antivirus, Florian Weimer

Prev by Date: Re: Lua x antivirus
Next by Date: Request for good statistics about Lua
Previous by thread: Re: Lua x antivirus
Next by thread: Re: Lua x antivirus
Index(es):
- Date
- Thread