Bitcoin Forum
June 24, 2019, 02:54:47 PM *
News: Latest Bitcoin Core release: 0.18.0 [Torrent] (New!)
 
   Home   Help Search Login Register More  
Pages: [1]
  Print  
Author Topic: false positives in latest wallet!?  (Read 170 times)
E20
Newbie
*
Offline Offline

Activity: 4
Merit: 0


View Profile
March 13, 2018, 11:48:00 AM
 #1

electrum-3.1.0.exe https://www.virustotal.com/de/file/6a5133fc1a7d2c1b32f0afb23d03ee701b03f8fc8463e9607e93c214ad9faa82/analysis/

i knew its possible harmless
but is there no way to make this look more clean

i test a lot of executables on virus total
and never get results that bad
Advertised sites are not endorsed by the Bitcoin Forum. They may be unsafe, untrustworthy, or illegal in your jurisdiction. Advertise here.
1561388087
Hero Member
*
Offline Offline

Posts: 1561388087

View Profile Personal Message (Offline)

Ignore
1561388087
Reply with quote  #2

1561388087
Report to moderator
1561388087
Hero Member
*
Offline Offline

Posts: 1561388087

View Profile Personal Message (Offline)

Ignore
1561388087
Reply with quote  #2

1561388087
Report to moderator
TryNinja
Legendary
*
Offline Offline

Activity: 1050
Merit: 1319


CS <3


View Profile
March 13, 2018, 12:49:28 PM
 #2

Yes. They are false positives. The only "good" anti virus in that list is Kaspersky and they are tagging the file with the virus "not-a-virus:NetTool.Win32.TorJok.afe".

If you really want to be safe, verify the integrity of the files by following this guide: https://steemit.com/bitcoin/@jklepatch/how-to-verify-the-integrity-of-electrum-wallet-executable-on-windows

P.s: The version 3.1.1 is available.

Ayanamirs
Member
**
Offline Offline

Activity: 140
Merit: 10


View Profile
March 13, 2018, 01:07:04 PM
 #3

Linux please
Xynerise
Sr. Member
****
Offline Offline

Activity: 322
Merit: 295

39twH4PSYgDSzU7sLnRoDfthR6gWYrrPoD


View Profile
March 13, 2018, 08:40:26 PM
 #4

It's impossible for antivirus softwares to know ALL the viruses so sometimes they use heuristics to "guess" if a file or executable is a virus or not, so if they see a behaviour by a software which they deem suspicious then it will be flagged.
For example, the antivirus sees that a software has code to check for a "wallet.dat" file or so and assumes it's a malware that steals bitcoins, whereas wallets HAVE to do that.
Suspicious_GEN.F47V0305 is also known as Heur.Corrupt.PE, W32/Behav-Heuristic-CorruptFile-EP.
So it's a false positive most likely.

To be 100% sure, verify the integrity by checking the signature.
Check TryNinja's post above.
BitMaxz
Legendary
*
Offline Offline

Activity: 1470
Merit: 1194


Beware on fake trezor website from google ads.


View Profile WWW
March 13, 2018, 08:57:57 PM
Last edit: March 22, 2018, 05:09:02 PM by BitMaxz
Merited by Lucius (1)
 #5

This is common and it's always false positive even my programming tools here they are legit, but they scanned as a virus.

Beware of fake electrum there are many newbies came here and found that they are using fake electrum wallet and downloaded to the site, which is fake.

Make sure you download Electrum directly from https://electrum.org/#download

I found a new fake site just sharing it here, just to aware other users.


As you can see the fake site use the google ads just to be the first in google rankings...

Don't click them or don't attempt to download electrum wallet from any fake site you can be hack and steal your bitcoin.

Linux please
You can directly download linux version here https://download.electrum.org/3.1.1/Electrum-3.1.1.tar.gz

Ayanamirs
Member
**
Offline Offline

Activity: 140
Merit: 10


View Profile
March 14, 2018, 12:53:39 AM
 #6

Quote
You can directly download linux version here https://download.electrum.org/3.1.1/Electrum-3.1.1.tar.gz

No, what I trying to say is for him use Linux instead of Windows for cryptocurrencies.
E20
Newbie
*
Offline Offline

Activity: 4
Merit: 0


View Profile
March 14, 2018, 07:47:06 AM
 #7

If you really want to be safe, verify the integrity of the files by following this guide: https[Suspicious link removed]cutable-on-windows

P.s: The version 3.1.1 is available.

if yo think i do not have the right version
just test what you think the right version is
https://www.virustotal.com/#/file/7cc303dca2f520562bb68ea31d51f20d32baf50124ee024e6d1f0b938222ba18/detection

but
it is already an issue on github
https://github.com/spesmilo/electrum/issues/3198
Xynerise
Sr. Member
****
Offline Offline

Activity: 322
Merit: 295

39twH4PSYgDSzU7sLnRoDfthR6gWYrrPoD


View Profile
March 14, 2018, 08:46:58 AM
 #8


if yo think i do not have the right version
just test what you think the right version is
https://www.virustotal.com/#/file/7cc303dca2f520562bb68ea31d51f20d32baf50124ee024e6d1f0b938222ba18/detection
He didn't say it wasn't the right version, he said there's a later version (3.1.1) than your version (3.0.5)
However regardless of your version and where you downloaded it from (you should always use the official site), you should verify the signature.
Quote
but
it is already an issue on github
https://github.com/spesmilo/electrum/issues/3198
Same thing I said.
False positive.
Lucius
Legendary
*
Offline Offline

Activity: 1456
Merit: 1222


Fortis Fortuna Adiuvat


View Profile WWW
March 14, 2018, 10:27:59 AM
 #9

This is common and it's always false positive even my programming tools here they are legit, but they scanned as a virus.

Beware of fake electrum there are many newbies came here and found that they are using fake electrum wallet and downloaded to the site, which is fake.

Make sure you download Electrum directly from https://electrum.org/#download

I found a new fake site just sharing this just to be aware other users.


As you can see the fake site use the google ads just to be first in google rankings...

Don't click them or don't attempt to download electrum wallet from any fake site you can be hack and steal your bitcoin.

Linux please
You can directly download linux version here https://download.electrum.org/3.1.1/Electrum-3.1.1.tar.gz

I just search with Google for "Electrum" and get same page at the top of search results,but when I click on that link it just redirect me to legit Electrum site after some time.Regardless of that I use Report Phishing Page and report that to Google,I hope thay will remove the page as soon as possible.

Anitivirus software is almost always report files such as cryptocurrency wallets as threat,but if user is 100% sure that files are downloaded from legit source then there is no reason to not use them.

Abdussamad
Legendary
*
Offline Offline

Activity: 2142
Merit: 1148



View Profile WWW
March 14, 2018, 11:11:37 AM
 #10

Google is banning cryptocurrency ads from June onwards so this won't be a problem for much longer.

E20
Newbie
*
Offline Offline

Activity: 4
Merit: 0


View Profile
March 14, 2018, 01:53:52 PM
 #11

the moment wen google starts telling you
witch wallet you should use
is not the moment anything gets better
bob123
Hero Member
*****
Offline Offline

Activity: 938
Merit: 1138



View Profile WWW
March 18, 2018, 07:04:41 PM
 #12

No, what I trying to say is for him use Linux instead of Windows for cryptocurrencies.

While its true that linux is generally less targeted from malware, its wrong to assume its 'completely' safe.
Non-windows systems are not better secured against targeted attacks.
In fact, user damaging their system is much more probable when they are using an environment they are not used to.

Devices which are connected to the internet should never store a 'big' amount of coins, regardless of the OS.

pooya87
Legendary
*
Offline Offline

Activity: 1680
Merit: 1709



View Profile
March 19, 2018, 06:08:50 AM
 #13

No, what I trying to say is for him use Linux instead of Windows for cryptocurrencies.

While its true that linux is generally less targeted from malware, its wrong to assume its 'completely' safe.
Non-windows systems are not better secured against targeted attacks.
In fact, user damaging their system is much more probable when they are using an environment they are not used to.

Devices which are connected to the internet should never store a 'big' amount of coins, regardless of the OS.

very good point.
every operating system, or generally speaking any computer program can have bugs, backdoors, exploits,... which malicious people can take advantage of. but the big difference between a "closed" source program and an "open" source program is that all those bugs, backdoors, exploits,... will be found and fixed right away when it is open source and the update will be pushed for free and easily to the users because millions of people can technically work on it and see the code to find them. but in a closed source program (windows for instance) you have to wait for their programming team to hear about the bug, find the reason for it, fix it and then push an update. and that takes a lot of time and most of the times they don't fix the security hole ever!

BitMaxz
Legendary
*
Offline Offline

Activity: 1470
Merit: 1194


Beware on fake trezor website from google ads.


View Profile WWW
March 19, 2018, 07:08:14 PM
 #14

No, what I trying to say is for him use Linux instead of Windows for cryptocurrencies.

While its true that linux is generally less targeted from malware, its wrong to assume its 'completely' safe.
Non-windows systems are not better secured against targeted attacks.
In fact, user damaging their system is much more probable when they are using an environment they are not used to.

Devices which are connected to the internet should never store a 'big' amount of coins, regardless of the OS.
Not only Linux is better OS and safe from any malware and viruses. Linux is not 100% that your machine is safe.

I heard that there is a way that they can hack your Linux remotely so for me Linux is not 100% safe.

The best OS for me and I know your machine is secured is Mac or Apple OS. never heard that they made antivirus to protect from any malware and viruses but i never heard their phone or macbook are infected.

I believe that this OS will be 99% safe for any malware and viruses. So if you wanted to save your bitcoin for a long time Mac OS or iPhone is a place where you can feel safe.

However, you can be still safe in linux or windows just always make sure that you add a password and change them every week or month to keep your wallet safe. Just like what I'm doing with my electrum wallet,

ranochigo
Legendary
*
Offline Offline

Activity: 1708
Merit: 1141

Somewhat inactive.


View Profile WWW
March 20, 2018, 12:27:21 PM
Last edit: March 20, 2018, 12:58:47 PM by ranochigo
 #15

Not only Linux is better OS and safe from any malware and viruses. Linux is not 100% that your machine is safe.

I heard that there is a way that they can hack your Linux remotely so for me Linux is not 100% safe.

The best OS for me and I know your machine is secured is Mac or Apple OS. never heard that they made antivirus to protect from any malware and viruses but i never heard their phone or macbook are infected.
That's quite a bit of a stretch. MacOS is somewhat similar to Linux but there's a stark difference. MacOSx is closed sourced and you simply can't know what Apple is putting into the OS. Malwares and vulnerability on IOS and MacOSX are definitely not uncommon. MacOSX has been much more vulnerable than Linux in terms of the bugs and exploits. The way Linux is designed limits the effectiveness of most malwares.

MacOSX has many antiviruses software out there.
I believe that this OS will be 99% safe for any malware and viruses. So if you wanted to save your bitcoin for a long time Mac OS or iPhone is a place where you can feel safe.
Doubt: https://nakedsecurity.sophos.com/2017/06/15/more-mac-ransomware-666-and-7-days-to-pay/
However, you can be still safe in linux or windows just always make sure that you add a password and change them every week or month to keep your wallet safe. Just like what I'm doing with my electrum wallet,
You can have a 64 character password but you would still get your wallet drained if you have a malware.

HCP
Legendary
*
Offline Offline

Activity: 1008
Merit: 1631

<insert witty quote here>


View Profile
March 24, 2018, 02:23:02 AM
 #16

The best OS for me and I know your machine is secured is Mac or Apple OS. never heard that they made antivirus to protect from any malware and viruses but i never heard their phone or macbook are infected.
ORLY?

https://www.google.com/search?q=Mac+osx+malware
https://www.google.com/search?q=Mac+osx+virus


Quote
I believe that this OS will be 99% safe for any malware and viruses. So if you wanted to save your bitcoin for a long time Mac OS or iPhone is a place where you can feel safe.
Thinking like this will lead to potentially risky behaviour.

NO OS is 100% safe... users must be ever vigilant regardless of OS used, Windows, Mac or Linux.

Romance70
Newbie
*
Offline Offline

Activity: 13
Merit: 0


View Profile
March 24, 2018, 10:53:21 AM
 #17

I think the 2fa version on mac is already a good thing,
is a portable 2fa version available for mac?
HCP
Legendary
*
Offline Offline

Activity: 1008
Merit: 1631

<insert witty quote here>


View Profile
March 24, 2018, 11:00:51 AM
 #18

As far as I know, the portable version is only available for Windows. None of the other OSes have a portable version.

Given that the Mac and Linux versions both create data folders in a users "home" directory, I doubt that they can be run in a portable mode.

Pages: [1]
  Print  
 
Jump to:  

Sponsored by , a Bitcoin-accepting VPN.
Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!