Bitcoin Forum
March 26, 2017, 01:46:31 AM *
News: Latest stable version of Bitcoin Core: 0.14.0  [Torrent]. (New!)
 
   Home   Help Search Donate Login Register  
Pages: [1]
  Print  
Author Topic: Microsoft Security Essentials  (Read 2053 times)
joker060
Jr. Member
*
Offline Offline

Activity: 37


View Profile
August 25, 2011, 05:39:51 PM
 #1

Is now recognizing bitcoin-miner.exe from th GUIminer file as a threat.

Advertised sites are not endorsed by the Bitcoin Forum. They may be unsafe, untrustworthy, or illegal in your jurisdiction. Advertise here.
1490492791
Hero Member
*
Offline Offline

Posts: 1490492791

View Profile Personal Message (Offline)

Ignore
1490492791
Reply with quote  #2

1490492791
Report to moderator
1490492791
Hero Member
*
Offline Offline

Posts: 1490492791

View Profile Personal Message (Offline)

Ignore
1490492791
Reply with quote  #2

1490492791
Report to moderator
1490492791
Hero Member
*
Offline Offline

Posts: 1490492791

View Profile Personal Message (Offline)

Ignore
1490492791
Reply with quote  #2

1490492791
Report to moderator
bitplane
Sr. Member
****
Offline Offline

Activity: 321

Firstbits: 1gyzhw


View Profile WWW
August 25, 2011, 06:11:06 PM
 #2

Report it as a false positive.
onesalt
Sr. Member
****
Offline Offline

Activity: 308


View Profile
August 25, 2011, 07:47:03 PM
 #3

No, its because what I said about 2 months ago about trojans bundling bitcoin clients with their payloads in order to make money. This isn't a false posititive it's a legitimate positive because any bitcoin client is going to look exactly like a trojen one in terms of virus signature.
Jezzz
Full Member
***
Offline Offline

Activity: 120


View Profile
August 25, 2011, 09:38:06 PM
 #4

I have noticed several other legitimate apps getting reported also.  FWIW
onesalt
Sr. Member
****
Offline Offline

Activity: 308


View Profile
August 25, 2011, 10:43:48 PM
 #5

I have noticed several other legitimate apps getting reported also.  FWIW

Becuase they all look like a known botnet/trojan to MSE and other AV programs because they have exactly the same characteristics as a known botnet/trojan.
Exonumia
Full Member
***
Offline Offline

Activity: 190



View Profile
August 26, 2011, 04:42:02 AM
 #6

Is now recognizing bitcoin-miner.exe from th GUIminer file as a threat.

Ikarus (the av engine I use) labels it as "possible-Threat.Win32.BitCoinMiner", they originally labeled it as a Trojan but changed it to "possible threat" after many submitted it for analysis.
They do this to alert people who have no idea what bitcoin is that there is an issue happening on their machines.

http://www.f-secure.com/weblog/archives/00002207.html

Zoomer
Hero Member
*****
Offline Offline

Activity: 658



View Profile
September 14, 2011, 01:08:29 AM
 #7

No, its because what I said about 2 months ago about trojans bundling bitcoin clients with their payloads in order to make money. This isn't a false posititive it's a legitimate positive because any bitcoin client is going to look exactly like a trojen one in terms of virus signature.
It is a false positive; they should be trying to detect code wrapping it so it can be controlled.
worldinacoin
Hero Member
*****
Offline Offline

Activity: 672



View Profile WWW
September 17, 2011, 09:42:29 AM
 #8

I just disable the warning and proceed with the installation, as long as you get the software from a trusted source, I do not see the problem.
zwierzak
Newbie
*
Offline Offline

Activity: 24



View Profile WWW
September 17, 2011, 01:41:39 PM
 #9

This is why most of AV detects miners as threat:
http://img851.imageshack.us/img851/9199/combofixm.jpg
http://img233.imageshack.us/img233/7248/malwaremal.jpg
It is all because creators of viruses are so lazy that they don't take source code of miner and use it in virus but they copy binary files from creator of miner and write only starter (something like GUIMiner). So viruses use original files of miners so AV threat them also as virus!
Pages: [1]
  Print  
 
Jump to:  

Sponsored by , a Bitcoin-accepting VPN.
Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!