Several Security Vendors detect Norton Crypto as PUP or Riskware

[Anthony Qian]

With the release of Norton 22.21.6.51, Norton Crypto, a "legitimate" mining application, was also formally provided to US consumers.

Interestingly but not surprisingly, Norton Crypto has been detected as Riskware by some "strict" antivirus vendors. According to VirusTotal, Norton Crypto is currently detected as PUA or Riskware by six antivirus vendors, including ESET.

MalwareBytes previously detected Norton Crypto as Riskware.BitCoinMiner; however the detection was later removed, according to Norton Community.

Kaspersky, as a side note, whitelisted this program.

It's unclear whether the number of AV vendors that flag Norton Crypto as Riskware will increase or decrease, but it's just ironic that a security software is detected as risky by other security products.

 

[marcopaone]

It's also funny because Norton is still the best antivirus compared to those in screenshots.

 

[Anthony Qian]

It's also funny because Norton is still the best antivirus compared to those in screenshots.

Well, ESET is not worse than Norton. In fact, it is better than Norton in terms of detection, IMO.

 

[Local Host]

The detection is not wrong, since it's a miner.

 

[Anthony Qian]

The detection is not wrong, since it's a miner.

Yes. But I think some AV vendors may whitelist Norton Crypto because of Norton's market standing

 

[peterfat11]

Yes. But I think some AV vendors may whitelist Norton Crypto because of Norton's market standing

"legitimate" mining application, but anyways here it is

what if I run it on my trash graphic card

 

[Venustus]

Norton is now a pup...What a shame..They ruined a very capable AV

 

[Anthony Qian]

Norton is now a pup...What a shame..They ruined a very capable AV

It's a sad story... It seems like Norton is focusing on Crypto now because the recent update is almost all about Norton Crypto.

 

[Anthony Qian]

[UPDATE] Now Bitdefender becomes one of the AV products detecting Norton Crypto, as per VirusTotal. Now, a total of 9 AV vendors detect Norton Crypto.

 

[peterfat11]

12 now

 

[Anthony Qian]

12 now
View attachment 259855

View attachment 259856

Thanks for updating! Another famous AV product, McAfee, added Norton Crypto to their virus definition.......

 

[peterfat11]

also norton self have some problems Norton shutting itself down | Norton Community

 

[Popolitus]

"iobit, is that you?"

When even MAX ANTIVIRUS detect u as a virus...u have a really big problem

 

[JB007]

Hello,
Very amazing !
Can anyone give me the Virus Total link ?

 

[Anthony Qian]

Hello,
Very amazing !
Can anyone give me the Virus Total link ?

VirusTotal

VirusTotal

www.virustotal.com

The number is going down!

 

[JB007]

ESET still detects it as PUA.
Maybe anyone using ESET can report this detection to ESET support ?

 

[peterfat11]

ESET still detects it as PUA.
Maybe anyone using ESET can report this detection to ESET support ?

I mean it is a coin miner it is a PUA....

 

[Anthony Qian]

ESET still detects it as PUA.
Maybe anyone using ESET can report this detection to ESET support ?

ESET is very cautious about detection. So when a file is flagged by ESET, unless it is 100% clean, it is almost impossible for ESET to remove the detection.

Also, there may be no commercial relationship between this Slovakian company and Norton. So not revoking this detection may not have an impact on ESET’s operation. Instead, this decision can actually enhance ESET’s image as an INDEPENDENT AV company.

Anyway, one thing is for sure: there is definitely no "ESET Crypto" unless ESET changes its mind and removes the detection.

 

[Gandalf_The_Grey]

Users claim that Norton 360 antivirus installs a crypto miner on PCs

The official website states that Norton Crypto is not enabled by default, but some users claim otherwise and that the new version is installing the crypto miner without the user's consent. According to this thread on Twitter, the antivirus installs a miner called NCrypt.exe. Some users have suggested that it can be deleted from the software's directory after disabling the Tamper Protection from the antivirus' settings. Here's another interesting discussion about it on HackerNews.

Norton 360 antivirus is installing a crypto miner on PCs - gHacks Tech News

Users are claiming that Norton 360 antivirus is installing a crypto miner on their PCs. This is what you need to know about Norton Crypto.

www.ghacks.net

 

[peterfat11]

Users claim that Norton 360 antivirus installs a crypto miner on PCs

Norton 360 antivirus is installing a crypto miner on PCs - gHacks Tech News

Users are claiming that Norton 360 antivirus is installing a crypto miner on their PCs. This is what you need to know about Norton Crypto.

www.ghacks.net

It do but the miner need 6gb of vram to start, which not everyone have, and it requires the users permission to actually mine.