False Virus alert?
Most antivirus programs depend almost exclusively on a database of known patterns or 'signatures' of malicious code in order to provide 'heuristic' protection. Unfortunately, these signatures usually include patterns of file-packing, which in itself is not harmful in any way. As such, it would be possible to encounter a false-positive when a totally harmless file uses the same method of packing as a known virus.
However, it wouldn't be prudent to simply trust an executable for this reason alone. A good point to consider would be the reliability and reputation of the group and, more importantly, the poster releasing such an executable. Also, feedback of other users is an excellent indication of whether the executable is truly malware. If the executable fails to deliver the results it was designed for, or if too many reports of malware come in, then chances are it is.
In the latter situation, consider running the executable in a 'sandbox' environment such as Virtual PC. In the former situation, simply let your antivirus program quarantine the file and/or dispose of it. (Mar 12, 2011 - LY)G & a
- Services and Contests