Is my downloaded prevxcsifree.exe a malware?

Discussion in 'Prevx Releases' started by rebelscum0000, Oct 23, 2011.

Thread Status:
Not open for further replies.
  1. rebelscum0000

    rebelscum0000 Registered Member

    Joined:
    Oct 29, 2006
    Posts:
    70
    Location:
    Mexico City
    I submit to VT the file prevxcsifree.exe, the same I install in this machine
    Here are the results

    ~ VirusTotal Results Removed per Policy ~

    MD5: 7abdd3b73fcf01b0ea0057547a853cef
    Date first seen: 2010-11-25 16:18:49 (UTC)
    Date last seen: 2011-10-19 20:03:24 (UTC)
    Detection ratio: 1/43

    Please Prevx Team be honest with the users o_O
     
    Last edited by a moderator: Oct 23, 2011
  2. Dermot7

    Dermot7 Registered Member

    Joined:
    Dec 20, 2009
    Posts:
    3,196
    Location:
    Surrey, England.
  3. fax

    fax Registered Member

    Joined:
    May 30, 2005
    Posts:
    3,724
    Location:
    localhost
    So what? 1 or 2 false positives over 43 engines... just report the false positive to the respective antivirus companies not here. :)
     
  4. Ranget

    Ranget Registered Member

    Joined:
    Mar 24, 2011
    Posts:
    846
    Location:
    Not Really Sure :/
    it's signed don't worry ;)
     
  5. PrevxHelp

    PrevxHelp Former Prevx Moderator

    Joined:
    Sep 14, 2008
    Posts:
    8,242
    Location:
    USA/UK
    It is definitely not malware :)
     
  6. TonyW

    TonyW Registered Member

    Joined:
    Oct 12, 2005
    Posts:
    2,633
    Location:
    UK
    The false positive detection of this file should be reported to the two Chinese AV companies that detect it i.e. Jiangmin & Rising.
     
  7. rebelscum0000

    rebelscum0000 Registered Member

    Joined:
    Oct 29, 2006
    Posts:
    70
    Location:
    Mexico City
    SO WHAT?
    1.- I did not know they are FP
    2.- I love Wilders, and this is the Official Prevx Support Forum, Am I wrong?
    3.- I love Prevx, and I got in shock when a friend of mine told me abou this issue.
    4.- I do not have to report them as FP, I think Prevx should reports the FP to these companies, in order to inexpert users as I am, do not get in panic or stop installing this wonderful AV.

    There are no stupid questions, just stupid answers :)
     
    Last edited: Oct 24, 2011
  8. rebelscum0000

    rebelscum0000 Registered Member

    Joined:
    Oct 29, 2006
    Posts:
    70
    Location:
    Mexico City
    Thank you, PrevxHelp
     
  9. tipo

    tipo Registered Member

    Joined:
    Dec 29, 2008
    Posts:
    408
    Location:
    romania
    so is stuxnet and/or duqu...
    i`m 100% sure it`s not malware but being a signed .exe is not that trustworthy nowadays.
     
  10. fax

    fax Registered Member

    Joined:
    May 30, 2005
    Posts:
    3,724
    Location:
    localhost
    Well, then you should be careful in using tools like virustotal if you do not know how to interpret the results. Also you seemed to have already concluded from those bad detection(s) that PREVX was at fault. Unless you are not native, the sentence below seems quite strong.
    Next time you will know that if you get 1 detection out of 43 engines (even if you get 5) from an official file coming from a reputable security company servers (moreover digitally signed) its the detection at fault not the security company o_O

    Finally its common practise for the user that found the issue to report it directly to the originator of the problem. If you are really paranoid for a file determination then the only way to get a confirmation of that detection is to contact the originator to confirm its valid or mistaken.

    Of course here its PREVX support forum and in fact you got your answer. Would you expect otherwise? :thumb: :rolleyes:

    It happens very often that security related files are flagged wrongly, it happen for Prevx and for many others security tools. Its the nature of the file and its content that can cause this.... You will not make the news with this type of issues....

    Peace, love and music forever:D
     
Thread Status:
Not open for further replies.