Question virus scan results meaning and is the data safe?

Please provide comments and solutions that are helpful to the author of this topic.
Trident

Trident

Level 34
Verified
Top Poster
Well-known
Feb 7, 2023
2,396
Parkinsond said:
I download samples not older than 24 hours age.
I use scripts mainly; executables are usually detected by AV; even Panda can detect them 😁
I care more about pre-execution detection; if detected on-execution or post-exectution, it is over; I will reinstall Windows.
Click to expand...
You think you are downloading samples no older than 24 hours but when these samples were created, when were they distributed first and when exactly someone decided to upload them, these are 3 different dates/times.

Using scripts usually is a viable way to test indeed, but you have very little information whether or not they really did something malicious, or the process just launched, detected something and did nothing.
Sometimes you’d think that “executables are detected” but it will be an executable (specially if signed or inflated) that will evade detection.

Furthermore, not everything on these portals is malicious. Often, some riskware/testware is uploaded.

To really draw some viable conclusions, you need various portals and malware types.
 
  • +Reputation
  • Hundred Points
  • Like
Reactions: Sorrento, Xtwillight, roger_m and 5 others
Fan-of-spyshelter

Fan-of-spyshelter

Level 2
Sep 21, 2022
71
@Parkinsond

You can be infected even you don't download a program by your self, or even you don't execute it by your self.
you just need to go even on a legitimate website.



Solution :

use a no JS script, : What is it? - NoScript: Own Your Browser!

-> it prevent from XSS injections by third party websites. (you need first to delete all trusted website, and one by one give an exception)

use a ManInTheMiddle certificate (for u browser) THAT YOU KNOW REALLY (for example BurpSuite (the community version) -> portswigger.net)

-> it filtrate all the HTTPS traffic -> even there is an HSTS in the backend side
 
  • Like
Reactions: Sorrento and Parkinsond
W

waens

New Member
Thread author
Jun 7, 2025
2
Hi, a few days ago I already asked about some virus scanning results about a launcher, today I found the new launcher and I scanned it.
These are the results: VirusTotal
should I be concerned? kaspersky etc didn’t detect something but 4 other scanners did.
Looking forward to your answers!
 
  • Like
Reactions: Sorrento
R

roger_m

Level 44
Verified
Top Poster
Content Creator
Dec 4, 2014
3,366
waens said:
Hi, a few days ago I already asked about some virus scanning results about a launcher, today I found the new launcher and I scanned it.
These are the results: VirusTotal
should I be concerned? kaspersky etc didn’t detect something but 4 other scanners did.
Looking forward to your answers!
Click to expand...
It's clearly a false positive. It's now only detected by three antiviruses and they are all ones using AI detections. AI/ML based antiviruses give plenty of false positives. As well as that, it was first scanned at VirusTotal in February. If it was actually malicious, then other antiviruses would detect it, as samples uploaded to VT get shared with AV vendors.
 
  • Like
Reactions: waens, Xtwillight, Sorrento and 1 other person
Parkinsond

Parkinsond

Level 18
Dec 6, 2023
889
Fan-of-spyshelter said:
@Parkinsond

You can be infected even you don't download a program by your self, or even you don't execute it by your self.
you just need to go even on a legitimate website.



Solution :

use a no JS script, : What is it? - NoScript: Own Your Browser!

-> it prevent from XSS injections by third party websites. (you need first to delete all trusted website, and one by one give an exception)

use a ManInTheMiddle certificate (for u browser) THAT YOU KNOW REALLY (for example BurpSuite (the community version) -> portswigger.net)

-> it filtrate all the HTTPS traffic -> even there is an HSTS in the backend side
Click to expand...

You have my word; when I get infected by downloading, but not exectuing, malware samples, I will stop doing such a thing.
 
  • Wow
  • Like
Reactions: Sorrento and roger_m

Similar threads

Gandalf_The_Grey
    • Like
    • Sad
    • +Reputation
Privacy News Surfshark: Data-hungry browsers: the choice of 90% of users worldwide?
Replies
3
Views
665
Security News
Zero Knowledge
Z
Wrecker4923
    • Like
    • Hundred Points
Serious Discussion Is Using Free Malwarebytes Scanner as a 2nd Opinion Provider Viable Advice for 'Typical' Consumers?
Replies
6
Views
1,172
General Security Discussions
badboy
badboy
S
    • Like
Opera One is updated with more dynamic Themes and a new privacy feature
Replies
0
Views
299
Opera
Santiago Benavides García
S

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top