Jump to content

Is this malware?

VFXGuy
By VFXGuy
in Programs, Apps and Websites
 Share
Posted

I wouldn't make any determinations based on Norton.

Corps aren't your friends. "Bottleneck calculators" are BS. Only suckers buy based on brand. It's your PC, do what makes you happy.  If your build meets your needs, you don't need anyone else to "rate" it for you. And talking about being part of a "master race" is cringe. Watch this space for further truths people need to hear.

 

 

Link to comment
https://linustechtips.com/topic/1347411-is-this-malware/#findComment-14803137
Share on other sites
Link to post
Share on other sites
Posted

Well where are you downloading it from? Directly or from some random download site?

Or is this just something that popped up?

 

Edit:

It looks like an older version so likely a trojan or something masking itself as adwcleaner

Current Network Layout:

Current Build Log/PC:

Storage Server Setup:

 

Prior Build Log/PC:

Link to comment
https://linustechtips.com/topic/1347411-is-this-malware/#findComment-14803153
Share on other sites
Link to post
Share on other sites
Posted
  • Author
1 hour ago, Lurick said:

Well where are you downloading it from? Directly or from some random download site?

Or is this just something that popped up?

 

Edit:

It looks like an older version so likely a trojan or something masking itself as adwcleaner

Do idea. I downloaded Adwcleaner ages ago. No idea where that one came from.

Link to comment
https://linustechtips.com/topic/1347411-is-this-malware/#findComment-14803267
Share on other sites
Link to post
Share on other sites
Posted
43 minutes ago, VFXGuy said:

Is Norton bad? Its always worked well for me. Its caught a lot of stuff.

yes and no, when you try to uninstall and so on. Is not always great.

But they have some decently good tools. Can sometimes be a bit aggressive too and some false positives, NPE (free norton tool) which is quite aggresive but can maybe have a chance on taking some action, so long you don't delete important system files.

 

Also how some anti-virus can hogg system resources or annoy the user in irrelevant things or making it seem you have more security than you do, taking higher risks. Which is why you should do backups. Also hate how they make it so you can do less in what you want to do, when "action is needed" and norton doesn't want to deal with it.

Link to comment
https://linustechtips.com/topic/1347411-is-this-malware/#findComment-14803361
Share on other sites
Link to post
Share on other sites
Posted

You should check your browser's download history as that shows where it originated from. File's extention is .part so it wasn't even fully downloaded to begin with though it may have contained enough data for the AV to pick it up. Alternatively it could have already been caught while it was downloading.

Link to comment
https://linustechtips.com/topic/1347411-is-this-malware/#findComment-14803378
Share on other sites
Link to post
Share on other sites
Posted
3 hours ago, Middcore said:

I wouldn't make any determinations based on Norton.

You should probably come up with a citation showing that Norton is less reliable with false-positives than other engines.

 

Otherwise... sounds a lot like opinion based on anecdotal evidence.

MacBook Pro 16 i9-9980HK - Radeon Pro 5500m 8GB - 32GB DDR4 - 2TB NVME

iPhone 12 Mini / Sony WH-1000XM4 / Bose Companion 20

Link to comment
https://linustechtips.com/topic/1347411-is-this-malware/#findComment-14803508
Share on other sites
Link to post
Share on other sites
Posted

Since this was detected using Hueristics - it means that the file is not in Malwarebytes Malware database, it's a detection made purely based on characteristics of the file which resemble malware. ie: it's guessing it's malware based on how it looks.

 

I would say if any reputable engines on virustotal.com such as Kaspersky or Bitdefender detect it as a threat, I would consider it a threat. 

 

Now, onto how this has impacted you: (keep in mind, it might not even be malware)

 

Since the only detection is in your downloads folder, I suspect you haven't run the file - if this is the case then you're good.

 

You are correct in saying that malware can and usually does act as merely a loader to bring other malware onto the system.  Usually this is one of the following:

  1. A remote access trojan which is used to have a portal of access to your machine, so the attacker can run commands on it (and usually thousands of others) to perform actions such as bitcoin mining, DDoSing a website, etc.
     
  2. Ransomware - you would know if you got infected with ransomware as all of your files would be encrypted.
     
  3. A credential stealer - this is the worst one in my opinion because it would quickly launch an app, scan your system for saved passwords, send them to a server, and then delete itself.  And you may not even know that your credentials are being sold online.

 

Conclusion:

 

Even though it might not be malware, I suggest treating it as such for now and taking proactive action.  

  1. Remove the file
  2. Run a scan using another antivirus tool (despite people's messages on here, Norton doesn't have a terrible virus database)
  3. Reset all of your passwords that you login on the machine with
  4. Install an antivirus on your computer if not already installed, reset your passwords every 30,180 or 365 days, and steer clear of anything dodgy, or run a scan on anything dodgy with a trusted antimalware tool before running it.

 

Hope this helps.

Link to comment
https://linustechtips.com/topic/1347411-is-this-malware/#findComment-14804336
Share on other sites
Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share
Go to topic listing Programs, Apps and Websites

×