well01 0 Posted June 23, 2018 Share Posted June 23, 2018 Good afternoon. The antivirus detects the following in the maisbot program:controller / VersionUpdaterClient.class - a variant of Java / Agent.HV Trojan updater / VersionUpdaterClient.class - a variant of Java / Agent.HV Troyan Is it a real virus or not? I would like to know if there is a real danger when executing it in order to use the program or not, and it really isn't malware or virus only mistake should I upload the files here? Thank you Link to comment Share on other sites More sharing options...
Administrators Marcos 5,238 Posted June 23, 2018 Administrators Share Posted June 23, 2018 Please submit the whole zip file to ESET as per the instructions at https://support.eset.com/kb141. Link to comment Share on other sites More sharing options...
well01 0 Posted June 29, 2018 Author Share Posted June 29, 2018 On 23/6/2018 at 6:40 PM, Marcos said: Please submit the whole zip file to ESET as per the instructions at https://support.eset.com/kb141. I have followed the instructions of the link indicated in this thread but I haven't answer. On June 23 send an email to samples@eset.com attaching the requested image and file using the subject indicated "Suspected infection" and the requested pass in the body of the email. I had no more response or information about it after that. On June 28 send an email as follow-up email message as indicated by the instructions of the previous link, the same subject, the date and time of the previous email and the email address used previously. I still have no response or information about it since then. What do I do now? Link to comment Share on other sites More sharing options...
itman 1,743 Posted June 29, 2018 Share Posted June 29, 2018 (edited) Although not explicitly stated in the KB article, I believe it's standard Eset procedure not to respond by e-mail unless the sample is indeed malicious and a prior detection method does not exist? Edited June 29, 2018 by itman Link to comment Share on other sites More sharing options...
well01 0 Posted June 29, 2018 Author Share Posted June 29, 2018 Then it means that I can run the file without danger? Link to comment Share on other sites More sharing options...
itman 1,743 Posted June 29, 2018 Share Posted June 29, 2018 My take is if the detection was a FP, Eset would have whitelisted it by now. If you unzip the archive again and Eset detects with the same sig., the file is indeed malicious. If the file is still in quarantine, do not remove it and try to run it. Link to comment Share on other sites More sharing options...
Recommended Posts