Sonic wall detecting Trojan
 

http://software.sonicwall.com/applic...v=v&v_id=11074

We have a customer that has reported that our NSIS created install contains the DownloadAssistant.CPOT Trojan.

I haven't investigated this yet, but I thought I'd post here to see if anyone knows about this one.

If this is a false positive then you should just follow standard procedure:

1. Recommend your customers to stay away from this product.
2. Report the false positive so they can update their database.

You could try starting @ https://support.software.dell.com/productline/sonicwall but there seem to be so many versions of that product I did not really know which to choose. You might just have to search for "false positive" on their support and/or forum pages.

http://www.sonicwall.com/products/so...ed-anti-virus/ implies that they are using McAfee so that is probably why. McAfee have a long history of false positives related to NSIS and they refuse to do anything to really fix the issue so be prepared to submit a false positive report for every release you make.

For extra bonus points you can contact them publicly:

• https://twitter.com/DellSecurity
• https://www.facebook.com/DellSecurity

Thanks for the detailed information Anders. We determined our executable md5 and sha1 hash values matched what was expected on our download site, so it is a false positive. I did go so far as to define a profile with SonicWALL so I could view their forum. Unfortunately, they don't allow you to post when you don't actually own one of their products.