Avast WEBforum
Other => Viruses and worms => Topic started by: ap on February 02, 2009, 05:16:23 PM
-
Good evening!
Any project (application) that generate Delphi 7, is infected Win32:Trojan-gen {Other}
http://www.virustotal.com/ru/analisis/b7c97cfcd258834b8499c262797a6b64
I do
Create a folder called Suspect in the C:\ drive, e.g. C:\Program Files\Borland\Delphi7\Projects\. Now exclude that folder in the Standard Shield, Customize, Advanced, Add, type (or copy and paste) C:\Program Files\Borland\Delphi7\Projects\*
I think its not correctly.
Can anybody help me please?
PS Sorry a my small English.
-
What do you think isn't correct the detection (which your VT Results show 14/39 others think something might be wrong with it) or the exclusion that you have applied isn't working ?
The avast Win32:Trojan-gen is generic signature (the -gen at the end of the malware name), so that is trying to catch multiple variants of the same type of malware and is a fine balance between detecting a new variant and detecting something valid as infected.
I would also suggest that you limit the wildcard exclusion further C:\Program Files\Borland\Delphi7\Projects\*.xxx where xxx is the file type for the files being detected. Rather than the C:\Program Files\Borland\Delphi7\Projects\*, which could leave a hole in security as everything in that folder would be excluded from scans.
You could send a sample to avast for further analysis.
If still feel it is a false positive, see http://forum.avast.com/index.php?topic=34950.msg293451#msg293451 (http://forum.avast.com/index.php?topic=34950.msg293451#msg293451), how to report it to avast! and what to do to exclude them until the problem is corrected.