any info relating to this? i have installed the optimized Wolf miner on several clean installs of Windows 8. Windows defender is quarantining the miner with the following info:
It's a rather nasty trojan. Any insights or thoughts whether this is valid or a false positive? I downloaded the miner following the links on page 1 in the op.
It is definitely a false positive and there is no malware in that miner. Windows Defender has simply found a certain code sequence that matches something in its database, but that does not mean that the code is malicious. False positives are the biggest single problem for all AV products and very few of them take any real steps to reduce the problem. Here is the Virustotal report for that file:-
https://www.virustotal.com/en/file/46eda99bb459b8c72afb1a718baefedd75ee41d9e7faef5ee5948ca810f8630f/analysis/AV software and mining software always make very poor bedfellows, but Windows Defender is a very poor AV indeed and you might as well just switch it off and reduce your system overheads. The only AV that I recommend these days is Emsisoft AntiMalware. In any event, it is best to add a folder exception to whatever AV solution you may be using so that it ignores the mining software. If you are truly paranoid, then run the mining software with Avast AV installed (with Deepscan enabled) - that will run the software in a sandbox and then declare that it is clean, since it will not exhibit any untoward behavior.
The bigger problem is that miner is out of date and slower than my miners for Windows. Look for the links to my miners in the OP or use Sweet Spot, which incorporates my miners.
Here is the Virustotal report for my 64 bit generic Windows miner:-
https://www.virustotal.com/en/file/8db6976a5834ca99f554a4c215ab9142985594efa1d8e7779a9377ad682f5901/analysis/Hope this helps.
Edit: For anybody not convinced about just how bad some AV products are, try this exercise:-
1. Install MalwareBytes AntiMalware (Free edition or Pro if you have it)
2. Create a folder C:\Users\<your username>\Appdata\Local\Temp\ztmp (Windows Vista,7,8 - differs for XP)
3. Create a simple blank text file in that folder called t25116.txt or t25117.txt
4. Scan that file with MalwareBytes Antimalware via a right-click context menu scan
5. See what it finds - looks very alarming indeed I think you will agree
6. Rename that same blank text file to t25116.dummy and scan it again
7. Comes up clean, as you would expect for a blank text file
8. Copy that file to your Desktop then rename it back to t25116.txt and rescan
9. Comes up clean
Now is that piss-poor or what?
