New Update Bitdefender - BDTS updates

blackice

Level 39
Verified
Top Poster
Well-known
Apr 1, 2019
2,868
I don't know if the issues were solved. It turns on game mode for steam games but don't know if they support other game launcher also. Epic Games should be supported since it's probably the second most popular gaming store. I usually play one game at a time if I'm playing a single player game or maybe two if I'm also playing another online game. So back when I was using BD, I would just put the game exe into game profile and be done with that. So it didn't bother me much. I was bothered by their work profile which would automatically enable work profile when I ran Notepad++ and Thunderbird (also not using anymore). But thankfully you can change what these profiles do so overall less of an issue but not ideal on default settings.
My problem was certain launchers cause game mode to stay on. For a while it was Battle.net, then it was Epic. Game mode would never turn off if you let those launchers run in the background, which I did to let games update in the background so I don’t have spend my precious free time updating games. It was doing it up until last fall when I tried it last.
 

SeriousHoax

Level 49
Verified
Top Poster
Well-known
Mar 16, 2019
3,867
My problem was certain launchers cause game mode to stay on. For a while it was Battle.net, then it was Epic. Game mode would never turn off if you let those launchers run in the background, which I did to let games update in the background so I don’t have spend my precious free time updating games. It was doing it up until last fall when I tried it last.
Oh, I see. I saw Kaspersky also enabling game mode when you run steam whether you start a game or not. That's a problem if it hasn't been fixed yet. But I can't tell without testing it.
 

Jonny Quest

Level 22
Verified
Top Poster
Well-known
Mar 2, 2023
1,154
That was the problem I had last time I used Bitdefender as well... It came to a point I just turned off automatic profile switching.
When I was using it more consistently on multiple devices, that was the first thing I would turn off. It's also what I advise on the forum when members are struggling with some of those issues. I believe now on a clean install, that feature is turned off (due to some of the issues and feedback regarding it) and has to manually be enabled as Auto Profiles, or individual Work, Movie, Game, etc profiles.
 

Zartarra

Level 7
Verified
Well-known
May 9, 2019
349
Anyone else using ADguard with Bitdefender? In the last update Bitdefender made changes to alot of drivers. It looks like the new web protection driver is causing an issue with ADguard HTTPS filtering. If I disable HTTPS filtering in ADguard all pages are loading in a correct manner. If the option is enabled I get the message "Secure Connection Failed - Error code: PR_END_OF_FILE_ERROR".

Anyone else with a similar issue?
 

mlnevese

Level 28
Verified
Top Poster
Well-known
May 3, 2015
1,760
Anyone else using ADguard with Bitdefender? In the last update Bitdefender made changes to alot of drivers. It looks like the new web protection driver is causing an issue with ADguard HTTPS filtering. If I disable HTTPS filtering in ADguard all pages are loading in a correct manner. If the option is enabled I get the message "Secure Connection Failed - Error code: PR_END_OF_FILE_ERROR".

Anyone else with a similar issue?
That's recurrent with both Bitdefender and Kaspersky. If it follows the pattern of the last few times it happened, there will be an Adguard update pretty soon.
 

SeriousHoax

Level 49
Verified
Top Poster
Well-known
Mar 16, 2019
3,867
Anyone else using ADguard with Bitdefender? In the last update Bitdefender made changes to alot of drivers. It looks like the new web protection driver is causing an issue with ADguard HTTPS filtering. If I disable HTTPS filtering in ADguard all pages are loading in a correct manner. If the option is enabled I get the message "Secure Connection Failed - Error code: PR_END_OF_FILE_ERROR".

Anyone else with a similar issue?
Two products doing HTTPS scanning will always keep creating problems sooner or later, I think.
I haven't tried Bitdefender recently but ESET's web protection and SSL filtering doesn't work at all if "Protect from DPI" is enabled in AdGuard's stealth mode. Otherwise, no conflict at the moment AFAIK (excluding maybe the impact on browsing speed which I haven't tested).
 

HarborFront

Level 72
Verified
Top Poster
Content Creator
Oct 9, 2016
6,158
Just updated

1722088051686.png
 

SeriousHoax

Level 49
Verified
Top Poster
Well-known
Mar 16, 2019
3,867
A few days ago, I sent Bitdefender a not-so-important malware (embedded redirector script in a HTML) that was only being detected by ESET.
BD analyst created a bad sha1/sha256/similar hash based signature (So did Avast). I sent them the same sample with a different hash and asked them to create a proper signature. But again they created a hash-based signature.
Two days later I saw that they finally created a proper signature but they previous two hash-based signature were still present in their database.
Yesterday, sent an email to their support asking their analysts to remove those two useless signatures and today in the morning, received a reply that the signatures will be removed and just now checked that they have indeed removed them (y)
1722440391158.png

Not-Too-Bad.gif

BTW, many products create basic hash-based signatures for not-so-prevalent samples. Very common for McAfee (mostly cloud based), Norton and some Chinese and other low-quality copy-cat VT detection products, moderately common for Avast, Avira, Microsoft Defender, less common for Bitdefender, very rare for Kaspersky, extremely rare for ESET (All based on my experience only).
 

RansomwareRemediation

Level 5
Verified
Well-known
Jun 22, 2020
201
A few days ago, I sent Bitdefender a not-so-important malware (embedded redirector script in a HTML) that was only being detected by ESET.
BD analyst created a bad sha1/sha256/similar hash based signature (So did Avast). I sent them the same sample with a different hash and asked them to create a proper signature. But again they created a hash-based signature.
Two days later I saw that they finally created a proper signature but they previous two hash-based signature were still present in their database.
Yesterday, sent an email to their support asking their analysts to remove those two useless signatures and today in the morning, received a reply that the signatures will be removed and just now checked that they have indeed removed them (y)
View attachment 284642
View attachment 284641
BTW, many products create basic hash-based signatures for not-so-prevalent samples. Very common for McAfee (mostly cloud based), Norton and some Chinese and other low-quality copy-cat VT detection products, moderately common for Avast, Avira, Microsoft Defender, less common for Bitdefender, very rare for Kaspersky, extremely rare for ESET (All based on my experience only).
What is hash-based signature ? D: :eek:
 

SeriousHoax

Level 49
Verified
Top Poster
Well-known
Mar 16, 2019
3,867
What is hash-based signature ? D: :eek:
For example, this is the sha256 hash of a notepad file that I just created on my desktop and wrote random letters in it:
58DD157109F5A119C9C71BF2D2921E052D4A94A401FC8061E603933CFFCED4FF
When I slightly changed the file by typing one more letter, the hash changed to:
698D34FB74F3EEED09BFB12B031548EE74177D90FD77536A5B123F67BB92CE91
If an AV vendor create a signature that looks for one particular hash only then even a tiny change in the file will make it not detect anymore.
There is also fuzzy hash which is different. Slight modification doesn't change fuzzy hash. SSDEEP, TLSH are two such examples.
 

silversurfer

Super Moderator
Verified
Top Poster
Staff Member
Malware Hunter
Aug 17, 2014
11,256

Pat MacKnife

Level 16
Verified
Top Poster
Well-known
Jul 14, 2015
781
Maybe, but several fixes for update issues : stuck at 0% and on 84 % should be fixed now.

 

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

User Menu

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top