• 01.08.2025, 00:04
  • Registrieren
  • Anmelden

  • Sie sind nicht angemeldet.

 

aquasuite + bitdefender, Virus: Gen:Variant.MSILHeracles

facboy@gmail.com

Newbie

aquasuite + bitdefender, Virus: Gen:Variant.MSILHeracles

Montag, 16. September 2024, 12:13

the latest version of aquasuite (x.80?) is being flagged by Bitdefender as a virus (aqausuite service specifically)...if it helps if detects it as Gen:Variant.MSILHeracles.176069.

sebastian

Administrator

Montag, 16. September 2024, 12:24

facboy@gmail.com

Newbie

Montag, 16. September 2024, 12:34

do they normally fix it themselves, or do u report it to them? atm i have to add an exception to it for 'embedded scripts'.

sebastian

Administrator

Montag, 16. September 2024, 12:48

which file in particular is marked as a virus?
We don't normally do anything. BitDefender updates its signatures at some point and then it should work again.

facboy@gmail.com

Newbie

Montag, 16. September 2024, 13:08

it's annoying, it doesn't mark any particular file. what happens is when you try to start Aquacomputer Service you get pop ups saying it (BitDefender) has blocked suspicious activity (with the signature i said) and then the ac service obviously crashes. there must be some embedded script or bytecode that the ac service runs that bd doesn't like (heuristically). it doesn't show up in a static scan, it's only at the point the ac service is actually executed. so i'm not surprised the online scans didn't show up anything, because they're just looking for static signatures, this is an 'observed behaviour' block.

sebastian

Administrator

Montag, 16. September 2024, 15:08

Viruses are quite well optimized software.
If the compiler generates similar sequences to the virus, an over-sensitive scanner will issue a false positive.
It usually takes a few days for this to be updated.
Avira, Bitdefender and Gdata are always the scanners we notice negatively with a lot of false positives.

wlvrn

Newbie

Montag, 16. September 2024, 16:34

Yup, tripped my AVS (BitDefender) as well.

sebastian

Administrator

Dienstag, 17. September 2024, 09:42

Update:
GDATA has already confirmed it as a false positive and is updating its signatures.

Kyle XY

Full Member

Mittwoch, 18. September 2024, 20:34

Great, Sebastian, G-Data does induce no longer problems since today. :thumbsup:

Ähnliche Themen