Author

Topic: VirusTotal has one false positive for the Bitcoin Client (Read 2615 times)

newbie
Activity: 54
Merit: 0
Wouldn't it be a good idea to contact Ahnlab Antivirus to verify and remove the false positive?

Once again, it just makes a very bad and unprofessional impression if the official Bitcoin Client does not look 100% clean when potential users are throwing it at Virustotal.  Roll Eyes

Ahnlab is the market leader in AV-technology in South Korea,
so this is should really be an issue for asian Bitcoin users.  Undecided
legendary
Activity: 1512
Merit: 1049
Death to enemies!
This is why the signature based antivirus protection is a thing of past.
hero member
Activity: 602
Merit: 500
Yeah, it shouldn't be too big of a deal, nearly always there is 1+ false positive for these things. I'm pretty confident if it's the actual Bitcoin client it'll be clean.


That's true. Whenever I scan something with this it shows 1 or 2 false positives. I mean very well known software too.
hero member
Activity: 742
Merit: 502
Circa 2010
Yeah, it shouldn't be too big of a deal, nearly always there is 1+ false positive for these things. I'm pretty confident if it's the actual Bitcoin client it'll be clean.
full member
Activity: 168
Merit: 100
Usually one out of the 42 clients picks up something even when its clean. 5 or more alerts and you should steer clear.
sr. member
Activity: 320
Merit: 250
Have you tried white listing them? Norton lists cgminer as a virus so I just whitelisted it.
legendary
Activity: 1540
Merit: 1002
its because the code for both bitcoin client and miner have been found on compromised computers such as botnets.. only select lines of code but because its been installed on computers without the users permission those lines of code get selected as a virus most likely a trojan. there not actually viruses or trojans aslong as you get them from trusted download sites.
and because those lines of code have been in viruses to do remote mining for the botnet operators some Antivirus firms label them as viruses

sr. member
Activity: 532
Merit: 250
It is often the case with custome software, and you can't really do much against it
member
Activity: 70
Merit: 10
Avast also sees the Minerd mining client as a virus. I have to disable my virus scanner when I mine. I also keep my mining client on a flash drive otherwise when I activate Avast It will automatically put Minerd.exe in the vault.
newbie
Activity: 54
Merit: 0
I just checked the current Bitcoin Client v. 0.8.5 for viruses and got a hit:

VirusTotal Report for bitcoin-0.8.5-win32-setup.exe

https://www.virustotal.com/de/file/6f6b8fd68f56a8e700090267c53aa592b9c9e5c993f44c7be11ba9b87e1f92bb/analysis/1382185873/

AhnLab-V3 Trojan/Win32.BitCoinMiner

So even if this is a false positive, it is probably a good idea to contact the vendor for them to remove it, as this makes a bad impression for anyone checking the official Bitcoin Client.

[Sorry this is my first posting and I had to post something useful in the newbie section.]
Jump to: