Is there an easy way...?

[DrTeeth 5]

Please see the attached screenshot. Is there a way to send the file to ESET from this dialogue box? Under the 'show advanced options' the option to send the file is ticked, but there is no indication that any file is sent.

 

This is very confusing so can somebody clarify if anything is sent or not from this box?

 

TIA,

 

DrT

[Marcos 4,709]

The file won't be submitted if it has already been submitted by somebody else. Basically there's no need to submit us any files detected as "a variant of..." unless you suspect them to be false positives.

[DrTeeth 5]

Do you have a screen shot of what the screen should look like to send something to the labs? I'd expect something on that box. I have tried to submit files to you, but I di what I can but am never sure if anythiung has been sent as I get no gonfirmation. If I do not have an easy way to send files or get confirmations...I might as well give up trying to help and I do NOT want to At ALL.

 

DrT

[SweX 871]

In the GUI under Tools -> "submit sample for analysis"

 

Or you can right-click on a file and under advanced options chose "submit files for analysis..."

 

But the recommended and most effective way is this: hxxp://kb.eset.com/esetkb/index?page=content&id=SOLN141

 

One reason why the last option is the recommended one is because ESET see a lot of garbage (non malicious files) being submitted via the "submit sample for analysis" method. Afaik. 

[DrTeeth 5]

I am not clear why there is an option for submitting a sample for analysis in the dialogue box I sent a 'shot of.

 

If they are geting lots of non-malicious files being sent in, it sounds like they need to tweak their detection algorithm .

 

The recommended way is more trouble than it is worth - especially if the AV is going to detect it every time I manipulate it.

Edited November 15, 2013 by DrTeeth

[SweX 871]

If they are geting lots of non-malicious files being sent in, it sounds like they need to tweak their detection algorithm .

No it's not about being detected or not, it when people think "oh this might be a bad file" and they use the right-click menu to submit it to ESET and it's through this method they get some garbage i.e non malicious files.

 

Wich is why the other method is the recommended one as they add detection or fixes fp's faster that way. Afaik.

[Marcos 4,709]

SweX is right. Moreover, there's no need to submit this particular file or you'd get a reply that the file is already detected as PUA and that it's not FP.

[toxinon12345 32]

The file won't be submitted if it has already been submitted by somebody else.

 

Because the software has mechanisms to avoid uploading files you already submitted or submitted by somebody else (ThreatSense,net cache) For example checksums,,,,etc

I cannot say the same for files manually submitted through context-menu,,,, as I dont know if these are cached or not

 

Anyway files will be submitted after update I think

Edited November 17, 2013 by toxinon12345

[DrTeeth 5]

Okay peeps, thanks a lot.

 

DrT