1.10.7 and Virustotal

Everything related to MakeMKV
Post Reply
Message
Author
Woodstock
Posts: 10323
Joined: Sun Jul 24, 2011 11:21 pm

Re: 1.10.7 and Virustotal

#1 Post by Woodstock » Wed Sep 06, 2017 3:43 pm

It seems they're figuring it out - I just ran the same test on VirusTotal, and both Dr. Web and Rising are currently green.

I manually scanned the download with AVG after you mentioned it (it was auto-scanned on download). I gave up on McAfee and Trend years ago, so I can't scan with them.

FrostBitten
Posts: 13
Joined: Fri Oct 17, 2014 5:09 pm

1.10.7 and Virustotal

#2 Post by FrostBitten » Wed Sep 06, 2017 6:48 pm

I regularly scan every program I install from the net. Ever since the release of 1.10.7, I have checked virustotal.com's analysis of the 1.10.7 package and it keeps giving me back positives. Right now, it's up to four engines that see this as a backdoor trojan. After a few days I would think the number would go down due to false positives, not up from two to four.

Currently the following anti-virus engines see this as bad:
DrWeb: BackDoor.PsClient.origin
McAfee: Artemis!3981B03A5640
Rising: Trojan.PSW.Win32.OnlineGame.bny (cloud:wSususiVHpE)
TrendMicro-HouseCall: Suspicious_GEN.F47V0905

What's going on with this package?

mike admin
Posts: 4075
Joined: Wed Nov 26, 2008 2:26 am
Contact:

Re: 1.10.7 and Virustotal

#3 Post by mike admin » Fri Sep 08, 2017 10:32 am

Do you use some private VirusTotal? This one says all clean: https://www.virustotal.com/#/url/93f793 ... /detection

Starhawk
Posts: 10
Joined: Thu Mar 31, 2011 12:28 am

Re: 1.10.7 and Virustotal

#4 Post by Starhawk » Fri Sep 08, 2017 2:02 pm

I'm not an expert at this by any means, but here's what Virustotal is showing me after directly uploading the package downloaded from MakeMKV.com:

Image

Woodstock
Posts: 10323
Joined: Sun Jul 24, 2011 11:21 pm

Re: 1.10.7 and Virustotal

#5 Post by Woodstock » Fri Sep 08, 2017 3:04 pm

I'm getting the same result that Mike is, when submitting the URL itself to let virustotal.com do the download.

"0/62" for SHA-256 hash of d8daae74553b4e6abd9209f1287c01b03dd1933894e74eae16e4e3cbb4ff19f9, which looks like it matches what you have in your screenshot.

TheTerrorBeyond
Posts: 81
Joined: Thu Jul 14, 2016 3:08 am

Re: 1.10.7 and Virustotal

#6 Post by TheTerrorBeyond » Fri Sep 08, 2017 4:43 pm

VirusTotal found viruses in 1.10.6 as well, but there were no problems with the application. Windows Defender doesn't find any issues with either.
Media Server: i7-6800k (6-core processor), 32GB RAM, MSI Carbon Pro board, SAS RAID, liquid cooling, NVIDIA 1080SC, (6) 10TB Barracuda Pro, (4)8TB Barracuda Pro, (1) 6TB Barracuda, (1) 4TB Barracuda, (1) Toshiba 512GB SSD, (1) Intel 256GB Intel M.2 SSD.

Post Reply