I've now gotten notifications, twice, about files being infected with PHP.Kryptik.BF. I'm pretty sure this latest detection is a false positive, and after I ran a scan of the directory containing the allegedly-infected file, it found nothing.
More to the point, there is no description of PHP.Kryptik.BF on your website - at least, there wasn't a few days ago.
ESET: Can you please remove this alleged "trojan" from the list of exploits you scan for? I am not convinced it even exists.