AS 3.0 (PB75 x86) - Malware warning (AVIRA)

Try the latest development release to test new features and bug fixes even before beta version release. Please use this section to discuss features and problems of this Preview Build version.
Forum rules
Please read forum rules and a few additional rules for this section:
1. Please take into account that Preview Build versions of Salamander and plugins could contain serious bugs. Don't use them in production environments.
2. All problems or comments regarding Preview Build versions please insert into this section of forum.
3. Each new topic mark with PB abbreviation and Preview Build number, for example "PB22: inactive panel below mouse cursor doesn't scroll while mouse wheel tilting".
User avatar
SvA
Posts: 472
Joined: 29 Mar 2006, 02:41
Location: DE

AS 3.0 (PB75 x86) - Malware warning (AVIRA)

Post by SvA »

AVIRA Antivir Personal reports a trojan horse TR.ATRAPS.Gen in the download file as30b1pb75x86.exe and in uninstpl.exe on install.
(Just so you know)
Jan Rysavy
ALTAP Staff
ALTAP Staff
Posts: 5197
Joined: 08 Dec 2005, 06:34
Location: Novy Bor, Czech Republic
Contact:

Re: AS 3.0 (PB75 x86) - Malware warning (AVIRA)

Post by Jan Rysavy »

It is a bug in AVIRA. Please contact AVIRA support or consider another antivirus.
Thank you for the info :)
ku
Posts: 3
Joined: 23 Dec 2005, 10:56

Re: AS 3.0 (PB75 x86) - Malware warning (AVIRA)

Post by ku »

SImilar message in salbreak.exe with the f-secure antivirus during install. Installation is not possible without antivirus switched off.

Regards
Ivan
Jan Rysavy
ALTAP Staff
ALTAP Staff
Posts: 5197
Joined: 08 Dec 2005, 06:34
Location: Novy Bor, Czech Republic
Contact:

Re: AS 3.0 (PB75 x86) - Malware warning (AVIRA)

Post by Jan Rysavy »

Could you please show us the f-secure antivirus message? Is it "TR.ATRAPS.Gen" again?
Jan Rysavy
ALTAP Staff
ALTAP Staff
Posts: 5197
Joined: 08 Dec 2005, 06:34
Location: Novy Bor, Czech Republic
Contact:

Re: AS 3.0 (PB75 x86) - Malware warning (AVIRA)

Post by Jan Rysavy »

Latest ESET NOD32 Antivirus and free Microsoft Security Essentials work fine. No false positives issues.
ku
Posts: 3
Joined: 23 Dec 2005, 10:56

Re: AS 3.0 (PB75 x86) - Malware warning (AVIRA)

Post by ku »

Antivirus message
Antivirus message
Výstřižek.JPG (20.46 KiB) Viewed 12055 times
Jan Rysavy wrote:Could you please show us the f-secure antivirus message? Is it "TR.ATRAPS.Gen" again?
It is "Trojan.Peed.Gen".

Ivan
therube
Posts: 638
Joined: 14 Dec 2006, 06:22

Re: AS 3.0 (PB75 x86) - Malware warning (AVIRA)

Post by therube »

Yes, "Trojan.Peed.Gen".
VirusTotal: salbreak.exe
WinXP Pro SP3 or Win7 x86 | SS 2.54
Jan Rysavy
ALTAP Staff
ALTAP Staff
Posts: 5197
Joined: 08 Dec 2005, 06:34
Location: Novy Bor, Czech Republic
Contact:

Re: AS 3.0 (PB75 x86) - Malware warning (AVIRA)

Post by Jan Rysavy »

I found False Positive web page for F-Secure: http://www.f-secure.com/v-descs/other_w ... tive.shtml

Please submit the salbreak.exe to the mentioned Sample Analysis System (SAS).
Jan Rysavy
ALTAP Staff
ALTAP Staff
Posts: 5197
Joined: 08 Dec 2005, 06:34
Location: Novy Bor, Czech Republic
Contact:

Re: AS 3.0 (PB75 x86) - Malware warning (AVIRA)

Post by Jan Rysavy »

False Positive reporting for Avira: http://analysis.avira.com/samples/index.php
ku
Posts: 3
Joined: 23 Dec 2005, 10:56

Re: AS 3.0 (PB75 x86) - Malware warning (AVIRA)

Post by ku »

Jan Rysavy wrote:I found False Positive web page for F-Secure: http://www.f-secure.com/v-descs/other_w ... tive.shtml

Please submit the salbreak.exe to the mentioned Sample Analysis System (SAS).
I did it. Hopefully they repair it. If you check salbreak.exe wtih virustotal, you will see that 5 out of 40 antivirus detects this program as malware. In my experience even if you submit this problem to all of this antivirus companies, this problem will periodically return.

virustotal results - https://www.virustotal.com/file/37c2c29 ... 334044039/

Best Regards
Ivan
Jan Rysavy
ALTAP Staff
ALTAP Staff
Posts: 5197
Joined: 08 Dec 2005, 06:34
Location: Novy Bor, Czech Republic
Contact:

Re: AS 3.0 (PB75 x86) - Malware warning (AVIRA)

Post by Jan Rysavy »

Thank you! We didn't know about virustotal, it looks great.
User avatar
SelfMan
Posts: 1000
Joined: 05 Apr 2006, 20:51
Contact:

Re: AS 3.0 (PB75 x86) - Malware warning (AVIRA)

Post by SelfMan »

Jan Rysavy wrote:Thank you! We didn't know about virustotal, it looks great.
Then you might also add http://virusscan.jotti.org/en to your bookmarks...
Post Reply