denixx

Opened link to virustotal again just now, and seeing only 6 of AVs for now. Looks like Fortinet is not in that list today. What is WD? Looks like it is not in list too.

https://www.virustotal.com/gui/file/8609b4f0effc79fa667cad6ae7b822329abcbce4850bb580ce8d8a8f38736477/detection

But if I launch the scan, mobile ESET says this extracted apk is unwanted.

Also, if I extract the apk to sdcard, and send it to my PC, ESET Smart Security Premium is not seeing apk-file as something bad, it says file is OK.

Hi! I'm here to ask about detected application. It's "EWPE Smart", available in Play Store: https://play.google.com/store/apps/details?id=com.gree.ewpesmart This app is used to control the air conditioners (thru AC WiFi modules), at least my Cooper&Hunter AC may be controlled by this app. ESET Mobile Security detected Android/Packed.Jiagu.D in it (/data/app/com.gree.ewpesmart-blablabla/base.apk) and set it to "potentially unwanted app" category. Should I inform someone (from Cooper&Hunter, maybe) about this issue, or this could be normal for this app? I did some easy search, and found someone posted about another app with this issue: (it's better to look the full thread) He says "it's just a packer". So, if this is kinda "manufacturer recommended app" - what I am supposed to do? Thank you!

https://www.eset.com/int/home/antivirus-linux/download/

Strange thing, if I remove NOD32, all works flawlessly. Currently I'm on Chrome-dev 81.0.4021.2

I'm on Nvidia's GT 730

My bad, I not checked that information. I could see this statement somewhere briefly, that "Chromium is not affected", and made additional conclusion from what Craig posted in Google Chrome Community because they say "we are testing new feature".

🤝

Reporting: "--disable-features=RendererCodeIntegrity" is not working in Chrome @ Arch Linux. But, "--no-sandbox" is working, BUT PEOPLE, DON'T USE IT, THIS IS A BAD PARAMETER! I removed NOD32 again and would check some news from Marcos.

Interesting. Does still work... I would check that now.

Thank you! Yep. They named it "Renderer Code Integrity". I found this via search: https://9to5google.com/2019/10/29/google-chrome-78-aw-snap-crash-windows/ "With Chrome 78, Google introduced a Windows 10 specific feature called “renderer code integrity,” which is designed to prevent unsigned code from taking control of Chrome’s page rendering processes. Generally speaking, this was designed to stop most viruses from being able to change the way Chrome’s pages load." Does it mean that, libesets_pac.so is not signed? Does it mean that simple "signaturing" of this lib will fix a problem? Is that available under linuxes? Should Google turn this feature off for linuxes? I could see libesets_pac.so in stacktraces of chrome crashes in journalctl ( https://www.dropbox.com/s/j6rqlinuik612nq/google_chrome_unstable_flickering_and_crash.txt?dl=0 )

"Chrome was requesting the user to remove ESET on Windows" Huh, thank you, quite interesting info. Could you please guide me somewhere to read about it? I mean to some official places. As I am also using ESET Smart Security Premium on three of my Win10 machines, and wasn't affected, maybe. I want to observe the situation. Is this also posted somewhere in the Google Chrome Community forums? //Sorry for offtopic

Also, please not take my words "wrong browser" as rudeness, I like FOSS. I just meant that you would not find any issues with FOSS Chromium as it's unaffected, the Google did something in it's own product, actually.