24 réponses à ce sujet

[sycophanticchallenger]

Anyone have any theories? The following was "blocked" by my antivirus when I began pre-downloading DAI with origin. Does this mean anything to you???

akamai.cdn.ea.com/eamaster/s/shift/da_i/da_i_pc_patch__ww_beta_2__build856038.zip?sauth=1416090392_8dac8269668af3c2fc955ec66a30451a

Details

Type: INCOMING
Virus name: Gen:Heur.Krypt.19
Domain: ****-**
Time: 2014/11/15 16:19:38

Actions

Block: Succeeded

 

Infected object: akamai.cdn.ea.com/eamaster/s/shift/da_i/da_i_pc_patch__ww_beta_2__build856038.zip?sauth=1416090392_8dac8269668af3c2fc955ec66a30451a

Malware: Gen:Heur.Krypt.19
Infected process: [5276] C:\Program Files (x86)\Origin\Origin.exe

 

This was off a fresh installation of Origin (as this is the first origin game I have purchased).

[Birdy]

It's possible it is a virus, they can piggyback on anything. I would run a few scanners and delete your preload.

[archav3n]

Probably a false positive but it could be that your Operating System has been previously infected with the malware. What Antivirus are you using? You could submit the sample file to your Antivirus support and have them verify if it's a false positive or genuine. You could also use a web scan from the internet to submit the file to verify it.

[sycophanticchallenger]

I use bullguard antivirus. One of the best rated paid antivirus programs out there. I generally trust it to keep me safe. I use no-script, adblock, better privacy and ghostery while browsing to keep me safe and am knowledgeable enough to not be downloading illegitemate BS. It's unlikely my system was previously infected. I'll check the possibility of a false positive. As you can see, the antivirus is flagging my origin file, which i had JUST downloaded from ea servers to install the copy of DA:I i had just purchased.

[SilentCid]

Never received any message about my download being infected when I was downloading the preload.

 

Virustotal states that it didn't see anything either

 

https://www.virustot...sis/1416120790/

[TheExtreamH]

what you expect when you download of the internet. Its is full of 'Bio-Ware' 

[Milan92]

Let me guess, you use AVG?

[wildannie]

Same thing with me, using Bullguard too

[Fredward]

Let me guess, you use AVG?

 

Reading is for losers huh?

[Milan92]

Reading is for losers huh?

 

No, I saw it after I posted it, but decided not to edit my post.

[Kantr]

False positive.

[sycophanticchallenger]

 

No, I saw it after I posted it, but decided not to edit my post.

 

So, you'd rather just come off as snarky and ill informed. GJ.

[BackdoorPaco]

   

So, you'd rather just come off as snarky and ill informed. GJ.

Confirmed AVG user.

[sycophanticchallenger]

Confirmed AVG user.

funny.

[janddran]

Does your AV product have a support forum where it can be reported or questioned, like Anti-Malware Bytes does?

 

False positives are notoriously high but to err on the side of caution it would be best to seek confirmation there (with product support) rather then here.

[Grieving Natashina]

I run Ad-Aware and AVG and the pre-load didn't set either of them off.  <shrug>

[Kantr]

Zone Alarm hasnt picked up anything. Nor has windows (which always catches keygens). Malwarebytes says nothing

[Patriciachr34]

I use Bitdefender. It's pretty darn good.  I put both Origins and steam in my antivirus exceptions list awhile back.  So, I never get a virus block for Origin's downloads. Do you have this option with your antivirus software? I did the same with the DA:I executable once the download was complete. I also had "Game Mode" running while downloading the game (allows for gaming servers to communicate with my computer).  If you cannot manually create exceptions try contacting customer support.  maybe they can help you.  A more risky option is to turn off your antivirus while you download.  I'd talk with customer support first.  Also, don't let them tell you, "It must be your firewall."  This answerwas the final straw that made me abandon Symantec a few years back.  That and the fact that you could not configure your software to allow for exceptions.

[sycophanticchallenger]

Does your AV product have a support forum where it can be reported or questioned, like Anti-Malware Bytes does?

 

False positives are notoriously high but to err on the side of caution it would be best to seek confirmation there (with product support) rather then here.

 

I've made a post on the bullguard forums which can be viewed --> http://www.bullguard...is-f_97857.html

 

The thing about false positives is, it's really impossible to realize. Because different AV products use different heuristic algorithms and have different virus signatures/incomplete or "outdated" information (because honestly, it takes time to catch 0-day exploits) it's possible that though "no one else" is catching this, it could be a thing. Just figured I'd ask the community here and see if anyone else's AV solutions catch anything.

[sycophanticchallenger]

I use Bitdefender. It's pretty darn good.  I put both Origins and steam in my antivirus exceptions list awhile back.  So, I never get a virus block for Origin's downloads. Do you have this option with your antivirus software? I did the same with the DA:I executable once the download was complete. I also had "Game Mode" running while downloading the game (allows for gaming servers to communicate with my computer).  If you cannot manually create exceptions try contacting customer support.  maybe they can help you.  A more risky option is to turn off your antivirus while you download.  I'd talk with customer support first.  Also, don't let them tell you, "It must be your firewall."  This answerwas the final straw that made me abandon Symantec a few years back.  That and the fact that you could not configure your software to allow for exceptions.

 

 

I was torn between bitdefender and bullguard when I purchased my current solution as both are equally strong solutions. That said, I don't seem to have that "game mode" functionality that you do. They can't give me the "must be your firewall" excuse as the firewall is built in with the AV suite.

[Patriciachr34]

I was torn between bitdefender and bullguard when I purchased my current solution as both are equally strong solutions. That said, I don't seem to have that "game mode" functionality that you do. They can't give me the "must be your firewall" excuse as the firewall is built in with the AV suite.

Good to know.  Hopefully your customer support can help you then.  There might be a manual way to allow for exceptions to "False positives", but for security reasons they don't want to advertise it.

[Frocharocha]

i use three anti-virus just to guarantee my sistem is safe.

 

Norton, BitDefender and Malware Bits. I hate to pay for those but i had loads of problems with viruses in the past and it's pretyt common for them to catch different threats.

 

I'm not that good at programming, but i believe your anti-virus is not that good or your sistem is already infected.

[Birdy]

i use three anti-virus just to guarantee my sistem is safe.

 

Norton, BitDefender and Malware Bits. I hate to pay for those but i had loads of problems with viruses in the past and it's pretyt common for them to catch different threats.

 

I'm not that good at programming, but i believe your anti-virus is not that good or your sistem is already infected.

OH, Ew, why the hell would you use Norton?  That bogs down your computer so much.

[Frocharocha]

OH, Ew, why the hell would you use Norton?  That bogs down your computer so much.

My brother's suggestion but i leave it off sometimes.

[Birdy]

My brother's suggestion but i leave it off sometimes.

Criminy, your poor systems.