Bitcoin Forum>Bitcoin>Mining>Mining software (miners)
Author

Topic: Microsoft Security Essentials (Read 2288 times)

zwierzak
newbie
Activity: 24
Merit: 0
Microsoft Security Essentials
September 17, 2011, 09:41:39 AM
#9
This is why most of AV detects miners as threat:
http://img851.imageshack.us/img851/9199/combofixm.jpg
http://img233.imageshack.us/img233/7248/malwaremal.jpg
It is all because creators of viruses are so lazy that they don't take source code of miner and use it in virus but they copy binary files from creator of miner and write only starter (something like GUIMiner). So viruses use original files of miners so AV threat them also as virus!
worldinacoin
hero member
Activity: 756
Merit: 500
Re: Microsoft Security Essentials
September 17, 2011, 05:42:29 AM
#8
I just disable the warning and proceed with the installation, as long as you get the software from a trusted source, I do not see the problem.
Zoomer
hero member
Activity: 658
Merit: 500
Re: Microsoft Security Essentials
September 13, 2011, 09:08:29 PM
#7
Quote from: onesalt on August 25, 2011, 03:47:03 PM
No, its because what I said about 2 months ago about trojans bundling bitcoin clients with their payloads in order to make money. This isn't a false posititive it's a legitimate positive because any bitcoin client is going to look exactly like a trojen one in terms of virus signature.
It is a false positive; they should be trying to detect code wrapping it so it can be controlled.
Exonumia
full member
Activity: 189
Merit: 101
Re: Microsoft Security Essentials
August 26, 2011, 12:42:02 AM
#6
Quote from: joker060 on August 25, 2011, 01:39:51 PM
Is now recognizing bitcoin-miner.exe from th GUIminer file as a threat.

Ikarus (the av engine I use) labels it as "possible-Threat.Win32.BitCoinMiner", they originally labeled it as a Trojan but changed it to "possible threat" after many submitted it for analysis.
They do this to alert people who have no idea what bitcoin is that there is an issue happening on their machines.

http://www.f-secure.com/weblog/archives/00002207.html

onesalt
hero member
Activity: 756
Merit: 500
Re: Microsoft Security Essentials
August 25, 2011, 06:43:48 PM
#5
Quote from: Jezzz on August 25, 2011, 05:38:06 PM
I have noticed several other legitimate apps getting reported also.  FWIW

Becuase they all look like a known botnet/trojan to MSE and other AV programs because they have exactly the same characteristics as a known botnet/trojan.
Jezzz
full member
Activity: 120
Merit: 100
Re: Microsoft Security Essentials
August 25, 2011, 05:38:06 PM
#4
I have noticed several other legitimate apps getting reported also.  FWIW
onesalt
hero member
Activity: 756
Merit: 500
Re: Microsoft Security Essentials
August 25, 2011, 03:47:03 PM
#3
No, its because what I said about 2 months ago about trojans bundling bitcoin clients with their payloads in order to make money. This isn't a false posititive it's a legitimate positive because any bitcoin client is going to look exactly like a trojen one in terms of virus signature.
bitplane
sr. member
Activity: 321
Merit: 250
Firstbits: 1gyzhw
Re: Microsoft Security Essentials
August 25, 2011, 02:11:06 PM
#2
Report it as a false positive.
joker060
newbie
Activity: 37
Merit: 0
Re: Microsoft Security Essentials
August 25, 2011, 01:39:51 PM
#1
Is now recognizing bitcoin-miner.exe from th GUIminer file as a threat.
Bitcoin Forum>Bitcoin>Mining>Mining software (miners)
Jump to: