| View previous topic :: View next topic |
| Author |
Message |
BigFelix
Warnings : 2
Captain
Premium Member
Joined: Mar 19, 2008
Posts: 506
Location: San Diego
|
 Posted: Sun Apr 13, 2008 10:25 am Post subject: Online Armor Download Came With Trojan Horse |
|
|
Earlier today, my daily AVG scan found two threats--both SHeur.BEKO and both infecting OA's oaui.exe. Healing left the firewall disabled. I downloaded anew, and during the installation AVG found the same Trojan Horse infecting the program. I'm now using Comodo.
_________________
The whole problem with the world is that fools and fanatics are always so certain of themselves, but wiser people so full of doubts.
Bertrand Russell
|
|
| Back to top |
|
 |
lordpake
Sergeant
Premium Member
Joined: Aug 17, 2005
Posts: 137
Location: Helsinki ~ European Union
|
| Posted: Sun Apr 13, 2008 11:00 am Post subject: |
|
|
That sounds to me like a heuristic false positive. Did you report this to Grisoft?
_________________
Kitten: small homicidal muffin on legs: affects human sensibilities to the point of endowing the most wanton and ruthless acts of destruction with near mythical overtones of cuteness. Not recommended for beginners, get at least two. [Fafnir]
|
|
| Back to top |
|
|
BigFelix
Warnings : 2
Captain
Premium Member
Joined: Mar 19, 2008
Posts: 506
Location: San Diego
|
| Posted: Sun Apr 13, 2008 11:14 am Post subject: |
|
|
No. Why today not yesterday. I had my doubts but don't want to take any chances.
_________________
The whole problem with the world is that fools and fanatics are always so certain of themselves, but wiser people so full of doubts.
Bertrand Russell
|
|
| Back to top |
|
|
lordpake
Sergeant
Premium Member
Joined: Aug 17, 2005
Posts: 137
Location: Helsinki ~ European Union
|
| Posted: Sun Apr 13, 2008 12:33 pm Post subject: |
|
|
| BigFelix wrote: | | No. Why today not yesterday. I had my doubts but don't want to take any chances. |
Obviously there has been a change in definitions that caused this false positive.
Online Armor is trusted, reputable software. And this has all the hallmarks of false positive. It happens to every AV vendor every now and then.
If you have doubts (and in this case you really should have!), submit the detected file to Virustotal and to Grisoft (especially to latter).
Never have blind faith in your AV, they can make mistakes especially when it comes to other security software, as they may employ self-defence and other methods to protect themselves/detect malware.
_________________
Kitten: small homicidal muffin on legs: affects human sensibilities to the point of endowing the most wanton and ruthless acts of destruction with near mythical overtones of cuteness. Not recommended for beginners, get at least two. [Fafnir]
|
|
| Back to top |
|
|
BigFelix
Warnings : 2
Captain
Premium Member
Joined: Mar 19, 2008
Posts: 506
Location: San Diego
|
| Posted: Sun Apr 13, 2008 2:52 pm Post subject: |
|
|
I ran "scared"' because I'm in the midst of Trend Micro HijackThis testing to cure me of existing problems. But I accept your advice and will contact Grisoft.
_________________
The whole problem with the world is that fools and fanatics are always so certain of themselves, but wiser people so full of doubts.
Bertrand Russell
|
|
| Back to top |
|
|
|
|
Forum FAQ
Search
Usergroups
Profile
Login to check your private messages
Login
