New Symantec Endpoint Protection RU6 false poz

Discussion in 'ESET NOD32 Antivirus' started by Searinox, May 1, 2010.

Thread Status:
Not open for further replies.
  1. Searinox

    Searinox Registered Member

    Joined:
    Oct 27, 2007
    Posts:
    21
    ~Virus Total results removed per Policy~
    Rtvscan.exe, the main scanner for SEP's latest version released a while ago, shows up as false positive with the latest defs.
     
    Last edited by a moderator: May 1, 2010
  2. Zyrtec

    Zyrtec Registered Member

    Joined:
    Mar 4, 2008
    Posts:
    534
    Location:
    USA
    Hello,

    I did notice the same as well. Upon downloading the installer [ a huge .zip archive about 1GB size ] ESET NOD32 4.2 flags one of its components as a Trojan Horse and the file in question is: Rtvscan.exe, which happens to be the scan engine for the AV in SEP 11.0.6.

    I hope ESET fix this FP soon.


    Regards,


    Carlos
     
  3. Searinox

    Searinox Registered Member

    Joined:
    Oct 27, 2007
    Posts:
    21
    Great going on removing my link. Now without the hash check in the link how are you supposed to pinpoint the file itself?

    File: Rtvscan.exe
    CRC-32: b2ae6f44
    MD4: d4f8fdaa0f12358c8e077d7584712e85
    MD5: 05799a82b7a2714ae14ee17c4b660701
    SHA-1: d6459989cfffc667366266abeb1494017d8d6f22
     
Thread Status:
Not open for further replies.