New Symantec Endpoint Protection RU6 false poz

Discussion in 'ESET NOD32 Antivirus' started by Searinox, May 1, 2010.

Thread Status:
Not open for further replies.
  1. Searinox

    Searinox Registered Member

    Joined:
    Oct 27, 2007
    Posts:
    21
    ~Virus Total results removed per Policy~
    Rtvscan.exe, the main scanner for SEP's latest version released a while ago, shows up as false positive with the latest defs.
     
    Last edited by a moderator: May 1, 2010
    Searinox, May 1, 2010
    #1
  2. Zyrtec

    Zyrtec Registered Member

    Joined:
    Mar 4, 2008
    Posts:
    534
    Location:
    USA
    Hello,

    I did notice the same as well. Upon downloading the installer [ a huge .zip archive about 1GB size ] ESET NOD32 4.2 flags one of its components as a Trojan Horse and the file in question is: Rtvscan.exe, which happens to be the scan engine for the AV in SEP 11.0.6.

    I hope ESET fix this FP soon.


    Regards,


    Carlos
     
    Zyrtec, May 2, 2010
    #2
  3. Searinox

    Searinox Registered Member

    Joined:
    Oct 27, 2007
    Posts:
    21
    Great going on removing my link. Now without the hash check in the link how are you supposed to pinpoint the file itself?

    File: Rtvscan.exe
    CRC-32: b2ae6f44
    MD4: d4f8fdaa0f12358c8e077d7584712e85
    MD5: 05799a82b7a2714ae14ee17c4b660701
    SHA-1: d6459989cfffc667366266abeb1494017d8d6f22
     
    Searinox, May 2, 2010
    #3
Thread Status:
Not open for further replies.
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...