Norton Security 22.11.2.7 reports that data from project as virus

ForumsProblems and Bug Reports

Ross Howatson
Ross Howatson
Joined: 25 Nov 05
Posts: 2
Credit: 2757697
RAC: 165
23 Nov 2017 1:50:38 UTC
Topic 211189
(moderation:
    )

    Norton Security 22.11.2.7 reports that data from project as virus.  I would like for you to reach out to the Antivirus software company and get the data you send out off the virus list.  

    Thank you in advance

    Ross Howatson

    -------------- BEGIN OF DATA REPORT FROM NORTON -----------------------------

    Filename: einsteinbinary_brp4_1.34_windows_x86_64__opencl-intel_gpu.exe
    Threat name: WS.Reputation.1Full Path: c:\programdata\boinc\projects\einstein.phys.uwm.edu\einsteinbinary_brp4_1.34_windows_x86_64__opencl-intel_gpu.exe

    ____________________________

    ____________________________
    On computers as of 
    2017-09-24 at 8:40:41 AM

    Last Used 
    2017-11-22 at 8:35:14 PM

    Startup Item 
    No

    Launched 
    No

    Threat type: Insight Network Threat. There are many indications that this file is untrustworthy and therefore not safe
    ____________________________
    einsteinbinary_brp4_1.34_windows_x86_64__opencl-intel_gpu.exe Threat name: WS.Reputation.1
    Locate
    Many Users
    Thousands of users in the Norton Community have used this file.

    Mature
    This file was released 4 years 9 months ago.

    Medium
    This file risk is medium.
    ____________________________
    http://einstein-dl.syr.edu/download/einsteinbinary_BRP4_1.34_windows_x86_64__opencl-intel_gpu.exe
    Downloaded File from syr.edu
    Source: External Media

    boinc.exe

    File Created:
    einsteinbinary_brp4_1.34_windows_x86_64__opencl-intel_gpu.exe

    ____________________________
    File Thumbprint - SHA:
    2a64099fb4751c67639b53be1187b10ca7c0310e1dee4582f88edc411a8948a0
    File Thumbprint - MD5:
    9e51cc57df905e53c01a8d018b83f46e

    Richie
    Richie
    Joined: 7 Mar 14
    Posts: 656
    Credit: 1702989778
    RAC: 0

    False positives can be

    23 Nov 2017 2:05:10 UTC
    Message 163037
    (moderation:
      )

      False positives can be reported here:

      https://submit.symantec.com/false_positive/

      mikey
      mikey
      Joined: 22 Jan 05
      Posts: 11964
      Credit: 1833754959
      RAC: 225390

      The easiest way to avoid

      23 Nov 2017 13:05:30 UTC
      Message 163043
      (moderation:
        )

        The easiest way to avoid these is to exclude the Boinc directories from your virus scan, that way any false positives are ignored and any real viruses that will try to attack other parts of your system will still be caught. A part of the problem is that Boinc sends little bits of data back and forth alot, that is one of the ways a virus acts so the a/v companies think Boinc's activity is a virus when in fact it isn't. The 'new' heuristic scanning catches stuff like this as 'suspicious activity'.

        Not to be mean but if there really is a virus and it only attacks the Boinc directories that isn't my problem, that's the projects problem, but since EVERY Boinc Project has some a/v software running on their end that's highly unlikely.

        Comment viewing options

        Select your preferred way to display the comments and click "Save settings" to activate your changes.

        ForumsProblems and Bug Reports