|
|||
Hi,
My BT NetProtect Plus (McAfee) seems to think the latest Vaz 2010 installer contains a trojan called 'Artemis!824F3E929C66'? Is anybody else having issues? |
|||
| ^ | Joined: 25 Aug 2002 Member: #3682 Location: Leeds | ||
|
|||
I had the same thing happen when installing the demos for Vaz 2010 and Vaz Plus. The trojan was detected by McAfee in the standalone .exe file. |
|||
| ^ | Joined: 07 Oct 2005 Member: #83600 | ||
|
|||
Same here, with the latest full version of VAZ2010 exe file (detected in my case by BitDefender). Going back to the beta version(v210b4) for now, which seemed to be OK and for which, luckily, I hadn't yet got around to deleting the installer.
Any news/views on this, MadGav? Could it be a false positive if three different AV checkers picked up on it? |
|||
| ^ | Joined: 26 Jun 2003 Member: #7790 Location: UK | ||
|
|||
I'm investigating this, the McAfee match I believe is "heuristic" which I take to mean that the exe smells bad. Now it's got no more than a few lines of code which isn't Delphi base libraries... worst case I'll have to abandon the stub + dll approach.
Martin |
|||
| ^ | Joined: 08 Nov 2000 Member: #55 | ||
|
|||
A little more investigation... I've discovered that Delphi produces unique exe files every time you compile. The released 2.10 Vaz2010.exe file sets off a load of A/V as reported, a straight rebuild which differs in a few bytes (which I believe are a repeated timestamp) triggers much much less. I think this demonstrates that the exe released is *not* malware. But *head* *desk*, still a question of *how* to avoid this kind of problem 
Martin |
|||
| ^ | Joined: 08 Nov 2000 Member: #55 | ||
|
|||
Every good AV will let you add an exception for anything that it reports... |
|||
| ^ | Joined: 06 Jan 2009 Member: #197719 Location: Croatia | ||
|
|||
So it looks like a false alarm, thanks for looking into this - don't give yourself too much of a headache  |
|||
| ^ | Joined: 26 Jun 2003 Member: #7790 Location: UK | ||
|
|||
The trojan problem seems to be solved and replaced with rare software problem "We are blocking your sofware cause it is rare." Both Norton 360 and avast! had this problem. (makes me real mad -- Lazy SOB's).I couldn't find a way for norton 360 to let it pass. Avast! let me let it pass. |
|||
| ^ | Joined: 29 Mar 2012 Member: #277782 | ||
|
|||
mikusan wrote: Same here, with the latest full version of VAZ2010 exe file (detected in my case by BitDefender). Going back to the beta version(v210b4) for now, which seemed to be OK and for which, luckily, I hadn't yet got around to deleting the installer.
Any news/views on this, MadGav? Could it be a false positive if three different AV checkers picked up on it? FYI VAZ 2010 v2.1.3a scanned clear with BitDefender yesterday. I've had some false positive reports accepted by Symantec and Avira over the last few days, going to throw one at BitDefender now. Martin |
|||
| ^ | Joined: 08 Nov 2000 Member: #55 |
| KVR Forum Index » VAZ Synths | All times are GMT - 8 Hours |
|
Printable version |
Disclaimer: All communications made available as part of this forum and any opinions, advice, statements, views or other information expressed in this forum are solely provided by, and the responsibility of, the person posting such communication and not of kvraudio.com (unless kvraudio.com is specifically identified as the author of the communication).
Powered by phpBB © phpBB Group
