Senzorei
-
Content Count
17 -
Joined
-
Last visited
-
Days Won
1
-
false positive - cannot reach you
Senzorei replied to Viber Reputation team's topic in Malware Finding and Cleaning
The problem is the installer is bundled with a toolbar which is causing a detection. It's not really a false positive, considering this is a PUP - potentially unwanted program. -
I'm not exactly sure, as it happened almost 2 years ago. But that's probably the cause of this case. P.S. found another file linked to this somewhere in ProgramData (that points to the old directory of a Half-Life installation) I think (cleaning up computer =) )
-
Not all anti-virus programs detect the same threat 100% of the time. Ditto to what Marcos said.
-
NOTE: You can skip the wall of text if you want to get to the important part. So, this morning ESET found a virus on my PC (first detection 8/11/2014) Win32/Gleamaster.A . I know how I got this and how it affected me (IDK about anyone else). So I was playing CS 1.6 on international servers and I somehow had this weird thing; several of the game's configuration files were getting replaced (or were in use) constantly. It bugged me since pretty much all the unused buttons were bound to connect you to a*l*e*m*s*e*s.*r* (domain) so I just blocked write access for myself to the affected files. This
-
Hello everyone, haven't been here in a long time and I'm happy to be here again. That aside, my ESET NOD 32 4.0.417.0 signature DB 9040 detects a variant of Win32/HackTool.Crack.BL Potentially unsafe application in the file steam_api.dll (https://www.virustotal.com/en/file/1827e9eb9417bec0d9869ba6a36d62b48f548dbb30c881dbf47ee1cb38304eb2/analysis/1384354621/). This steam_api.dll came from a torrent which included a crack provided with a game (XCOM: Enemy Within). I'm not sure whether this is a false positive (which seems unlikely) or a legitimate virus. Also, someone explain how can I upload s
-
No its ok Its just possible it may be a different variant of sputnik There are many many many versions floating around. Thanks Senz !! You're welcome .
-
Sorry for the late reply, I forget about this .
-
I checked the site on MyWOT (extension that allows you to see comments and ratings for the webpage) and it seems to provide some false information so i wouldn't trust it that much. I will give it a try if the scan doesn't work. Its not about trusting or not. Its in plain view : So check if the files are there or not. If they aren't, its a false website or a different version of the virus If they are, start removal process.Clean registry after the fact. If you need help just ask. I will remote in and clean it for you Or make a batch file based on what needs to be removed.
-
I sent them to samples@eset.com .
-
I checked the site on MyWOT (extension that allows you to see comments and ratings for the webpage) and it seems to provide some false information so i wouldn't trust it that much. I will give it a try if the scan doesn't work.
-
I ran a scan on the files before posting, it did not detect anything. I will try to run a scan now, even though the process GuardMailRu.exe is in memory, it does not detect it.
-
update Future changes to ESET NOD32 Antivirus
Senzorei replied to Aryeh Goretsky's topic in ESET NOD32 Antivirus
I agree with SweX. Even though I am using ESET NOD32 4 I have the orange icon, but a green icon with an exclamation mark isn't really that much spottable IMO. I haven't seen it since I am using NOD32 4 (which is an older version) it still has the orange icon. -
Good day to you Senzorei , nice to meet you, and welcome to the forums ! Your etiquette and vocabulary are surprising to me in regards to your age. I am sure you will excel and accomplish great things in the IT world. Welcome again ! Thanks for the welcome . I'm not going to be on the forums that much but while I am could you please check out this thread? https://forum.eset.com/topic/773-guardmailruexe/ . Thanks in advance .
-
Update: I sent the files through email.
-
The file submission failed for mailrusputnik.exe .
