xlive.dll fake report virus

Discussion in 'ESET Smart Security' started by Player12, Feb 24, 2011.

Thread Status:
Not open for further replies.
  1. Player12

    Player12 Registered Member

    Joined:
    Feb 24, 2011
    Posts:
    13
    NOD32 is reporting it as a trojan but its not its uses me to lunch the game (Bulletstorm) i need that file to play the game but i cant do Restore and exclude from scanning it wont allow me to click on it everytime i have to turn the anti virus off!!!
     
  2. Cudni

    Cudni Global Moderator

    Joined:
    May 24, 2009
    Posts:
    6,956
    Location:
    Somethingshire
  3. Player12

    Player12 Registered Member

    Joined:
    Feb 24, 2011
    Posts:
    13
    I sent the file to ESET now becouse it aint a virus and this is not the first time that this hepend.
     
  4. agoretsky

    agoretsky Eset Staff Account

    Joined:
    Apr 4, 2006
    Posts:
    4,032
    Location:
    California
    Hello,

    Can you tell me what exactly threat was detected in the XLIVE.DLL file, the complete path to the file on your computer and which virus signature database version is currently installed for your copy of ESET Smart Security?

    Regards,

    Aryeh Goretsky
     
  5. Heit

    Heit Registered Member

    Joined:
    Feb 25, 2011
    Posts:
    1
    Hello,

    C:\Games\Bulletstorm\Binaries\Win32

    It finds WIN32/Packed.VMProtect.AAD

    Base signatures 5887 18 feb. 2011
     
  6. tony_m

    tony_m Eset Staff Account

    Joined:
    Nov 22, 2010
    Posts:
    239
    Hi Heit,

    Thank you for your information and submission. Our virus specialists will analyze the file and respond accordingly.

    In the meantime, as recommended previously by Cudni, you may want to add your file to exclusions in ESS/EAV by following these instructions:

    How do I exclude certain files or folders from Real-time scanning?

    *edited according to Marcos response

    Thank you.
     
    Last edited: Feb 25, 2011
  7. Marcos

    Marcos Eset Staff Account

    Joined:
    Nov 22, 2002
    Posts:
    14,374
    To my best knowledge, packers that are mainly exploited by malware authors to evade analysis and subsequent detection by security software are detected as potentially unwanted applications, ie. the user must have opted for detection.
     
  8. Temp Member

    Temp Member Registered Member

    Joined:
    Mar 28, 2009
    Posts:
    263
    Location:
    Glasgow
    ESET 9/10 detects NO-CD/DVD's as a threat (as most AV's rightly will) and there is no easy way to get ESET to ignore them !

    I have posted about setting files to ignore but as usual no real answer where as in other AV's its 1 click so simple.

    As for the game in question I simply send them in for analysis, the funny thing is some were getting this on the legit files not the NO CD/DVD !

    ESET no longer detects threat since that .DLL was updated on 24th ! ;)
     
Thread Status:
Not open for further replies.