PDA

View Full Version : FEAR virus???


Technoholic
08-25-07, 02:48 PM
My AVG AntiVirus picked up a virus in FEAR.exe... the Obfustat.JGA?

pix @ 1360x768
http://usera.imagecave.com/Technoholic/stuff/fearvirus.jpg

My Vista is on V drive, the C drive is XP and I have not logged in the XP for weeks.

evilghost
08-25-07, 10:03 PM
Seems to be a false positives as a result of definition updates, the description of the 'virus' appears to be a heuristic as well. I'd ignore it.

http://www.hardforum.com/showthread.php?p=1031364422

Eliminator
08-25-07, 10:37 PM
just another false positive... avg deleted a bunch of install files and tried to delete some system files too after it thought they were all trojans... i removed that POS and got me NOD32 which is much better

evilghost
08-25-07, 10:40 PM
Nod32's detection rate isn't much to write home about.

$n][pErMan
08-25-07, 10:49 PM
I have not used an AV product in years.... you guys gotta watch where you download your porn... :p

Eliminator
08-25-07, 10:54 PM
Nod32's detection rate isn't much to write home about.
better than avg... at least it doesnt think untouched system files are trojans:rolleyes:

Bokishi
08-25-07, 10:56 PM
AVG deleted my FEAR executable so I had to reinstall, boy was I pissed

Eliminator
08-25-07, 11:11 PM
Nod32's detection rate isn't much to write home about.
actually take a look at this detailed report
http://www.av-comparatives.org/seiten/ergebnisse/report14.pdf

nod 32got the overall highest rating while avg was at the very bottom

evilghost
08-25-07, 11:16 PM
actually take a look at this detailed report
http://www.av-comparatives.org/seiten/ergebnisse/report14.pdf

nod 32got the overall highest rating while avg was at the very bottom

I'm going from first-hand experience on the storm worm variants and testing done at http://www.virustotal.com by bleeding-edge live variants.

alexk
08-25-07, 11:25 PM
Nod32's detection rate isn't much to write home about.
Got any data to support your subjective opinion? No? Then why do you even bother sharing it? :p

For anyone who's interested for more objective data, take a look at this site:
http://www.av-comparatives.org/seiten/comparatives.html
Note that they have 2 types of tests done: "on-demand comparative" (this is when all of the tested products are fully updated with the latest updates) and "retrospective/proactive test" (this is where they intentionally don't update their tested products for about 3 months, to see how well the product would catch the totally "unknown" viruses (which appeared during these 3 months) without using the "signatures" to detect them). They have a pretty nice and detailed description of all their testing methods here:
http://www.av-comparatives.org/seiten/ergebnisse/methodology.pdf

alexk
08-25-07, 11:38 PM
I'm going from first-hand experience on the storm worm variants and testing done at http://www.virustotal.com by bleeding-edge live variants.

Virustotal (or any other online scanner) is not a very reliable tool to use for judging some antivirus product... In my personal experience, I've seen different results using Virustotal and http://virusscan.jotti.org sites, even when using them at the same time using same exact virus sample - for example, the Kaspersky antivirus engine used on one of these sites would correctly detect a certain virus, while the same Kaspersky antivirus engine used on the other site would not. Also, both of these sites don't provide the exact settings that they use for each of the scanner, not to mention that Virustotal seem to use very old scanning engines (for example, the current Kaspesky antivirus engine version is 7.0.0.125 and it is significantly different (due to a completely new heuristics engine) than any previous version of Kaspersky products, but Virustotal still (for a many, many months already) lists the Kaspersky's engine with some weird number "4.0.2.24").

Crow_Nest
08-27-07, 11:08 AM
AVG has never done anything to my FEAR. And i just did a full system scan about an hour ago.

XDanger
08-27-07, 05:49 PM
my AVG said R6 Vegas 1.05 patch had a Trojan in it, ewww

Technoholic
08-27-07, 07:01 PM
It's a free condom, what's there is to eww about? :p

jolle
08-27-07, 07:47 PM
I remember Avast! picked up Quicktime as a virus for a whole day before they updated the defintions again heh.
Was a bit annoying cause I was using SoftImage at the time, and it wouldnt start unless Quicktime did, and Avast! wouldnt let QT start so..

Technoholic
08-27-07, 08:59 PM
I don't use XP often anymore so I've got nothing to worry about..

If it was on laptop I'd care, cuz I will be switching a lot thru out the college year unless I get MS Office to complete downloading in time for my Vista, then XP will be byebye. Unfortunately this time, I will be using XP anyway on laptop. Computer, f#%@ XP. :captnkill:

supra
08-27-07, 10:31 PM
just out of curiosity was that fear.exe a nocd patched version? ive had problems with some games and nocd fixes.