Possible Security Issues from an Installed Application.
-
- KVRAF
- 6078 posts since 27 Jul, 2001 from Tarpon Springs, Florida, USA
Hello,
I just installed Chameleon, a music app in my Windows 10 machine. I then went twice to www.Virustotal.com and 6 of 133 sites found six different viruses in the files. Yes, I should have checked before I installed!
CMC: backdoor.Win32!O
MaxSecure: Trojan-Ransom.Win32.Crymod.zfq
Cylance: Unsafe
Cybereason: malicious.501ae8
eGambit: unsafe.AI_score_98%
Qihoo360: HEUR/QVM05.1.7A33
I then had Vipre Advanced Security check my C drive and found nothing.
What would you do?
I just installed Chameleon, a music app in my Windows 10 machine. I then went twice to www.Virustotal.com and 6 of 133 sites found six different viruses in the files. Yes, I should have checked before I installed!
CMC: backdoor.Win32!O
MaxSecure: Trojan-Ransom.Win32.Crymod.zfq
Cylance: Unsafe
Cybereason: malicious.501ae8
eGambit: unsafe.AI_score_98%
Qihoo360: HEUR/QVM05.1.7A33
I then had Vipre Advanced Security check my C drive and found nothing.
What would you do?
My Studio: viewtopic.php?f=4&t=7760&p=7777146#p7777146
- KVRAF
- 16839 posts since 8 Mar, 2005 from Utrecht, Holland
It's quite possible you got false positive readings.
Contact the developer of the app maybe?
Contact the developer of the app maybe?
We are the KVR collective. Resistance is futile. You will be assimilated. 
My MusicCalc is served over https!!
My MusicCalc is served over https!!
-
- KVRAF
- Topic Starter
- 6078 posts since 27 Jul, 2001 from Tarpon Springs, Florida, USA
^^^
Thanks for for your reply.
I had other applications for the same developer and they were clean.
Yes it could be a false positive reading.
This is what the developer will likely say.
I will wait for others to chime in and then possibly contact the developer.
Thanks for for your reply.
I had other applications for the same developer and they were clean.
Yes it could be a false positive reading.
This is what the developer will likely say.
I will wait for others to chime in and then possibly contact the developer.
My Studio: viewtopic.php?f=4&t=7760&p=7777146#p7777146
-
- KVRAF
- Topic Starter
- 6078 posts since 27 Jul, 2001 from Tarpon Springs, Florida, USA
Why I am suspecting is that I have checked ten other installation files and they are clean.
Could it be that this particular plugin does something special with Windows making it look like it has a virus?
Could it be that this particular plugin does something special with Windows making it look like it has a virus?
My Studio: viewtopic.php?f=4&t=7760&p=7777146#p7777146
- KVRAF
- 16839 posts since 8 Mar, 2005 from Utrecht, Holland
How should we know?
Ask the developer or the scanner...
Nb I tried to find your Chameleon app, but it's pretty obscure. Not found. No idea what it does.
Ask the developer or the scanner...
Nb I tried to find your Chameleon app, but it's pretty obscure. Not found. No idea what it does.
We are the KVR collective. Resistance is futile. You will be assimilated. 
My MusicCalc is served over https!!
My MusicCalc is served over https!!
-
- KVRAF
- Topic Starter
- 6078 posts since 27 Jul, 2001 from Tarpon Springs, Florida, USA
My Studio: viewtopic.php?f=4&t=7760&p=7777146#p7777146
- KVRAF
- 16839 posts since 8 Mar, 2005 from Utrecht, Holland
Software pretending to be a USB device. That's a recipe for a key logger. I'm not surprised heuristical scanners see it as potentially malicious.
We are the KVR collective. Resistance is futile. You will be assimilated. 
My MusicCalc is served over https!!
My MusicCalc is served over https!!
- KVRian
- 1186 posts since 21 Aug, 2017 from Brasil
This!BertKoor wrote: Sat Jun 01, 2019 9:55 am Software pretending to be a USB device. That's a recipe for a key logger. I'm not surprised heuristical scanners see it as potentially malicious.
-
- KVRAF
- 35679 posts since 11 Apr, 2010 from Germany
99,99% a false positive. The scanners which have been positive are not really the crème de la crème either. But, as BertKoor suggested, best to ask the developer. I'd say it's pretty safe to say that it isn't malicious though.
-
- KVRAF
- Topic Starter
- 6078 posts since 27 Jul, 2001 from Tarpon Springs, Florida, USA