RegisterHomeNewsForumsArticlesDownloadsSearchContact usChat
Already a member? Sign in.


[ Home / Forums / News ]  
ESET Update Brings Mass False Positive Alerts
Old 28 February 2011, 03:14   #1
Site Staff

Posts: 12,437
CPU: Intel Core i7-965
GPU: GeForce GTX 560 Ti
M/B: Intel DX58SO
RAM: 6GB of A-DATA
PSU: X-Spice 630w
It seems that another antivirus software has gone mad. This time it's the reputable ESET aka NOD32 and Smart Security. In the past few days, users have been complaining of massive amount of false positive alerts with ESET and the latest virus definition update. It looks like ESET is flagging plenty of legitimate 3rd party software as Win32/OpenCandy adware. Even yours truly has encountered the same issue especially with installation programs.

According to Microsoft's virus encyclopedia, Win32/OpenCandy is an adware program that may be bundled with certain third-party software installation programs. Some versions of this program may send user-specific information, including a unique machine code, operating system information, locale (country), and certain other information to a remote server without obtaining adequate user consent.

Update #1: Microsoft Security Essentials is having similar issue according to users' reports.

Update #2: ESET has released the following statement: "OpenCandy is a popular adware program that is sometimes bundled with installation packages of legitimate programs. You may receive a "Potential threat found" warning window after downloading any program bundled with OpenCandy. OpenCandy is categorized as a potentially unwanted application because it collects information and selects third-party applications to install on your computer, some of which contain rogue-like and questionable qualities."

Update #3: OpenCandy's CEO has issued a statement on this manner.

Last edited by Regeneration; 5 March 2011 at 22:57..
Regeneration is offline  
  
Reply With Quote
Old 28 February 2011, 08:02   #2
Unregistered
Guest

Posts: n/a
This is interesting. For the last few weeks Microsoft Security Essentials also has marked the MediaInfo-installer as Win32/OpenCandy even though In know it didn't before as I used it for quite some time. I know that installer asks if I want to install .... ask.com or something like that.
  Reply With Quote
Old 28 February 2011, 11:31   #3
Golden Member
 

Posts: 897
CPU: AMD FX-8320
GPU: Radeon R7 260X 1GB
M/B: GA-990FX-UD3
RAM: Goodram 2x8GB DDR3 CL9
PSU: OCZ ZS 550W
Send a message via Yahoo to SpectatorX
I'm using best antivirus - my own brain. In fact all the antivirus software is useless and pointless if computer user is not thinking.
__________________
Take your own future in your own hands!
SpectatorX is offline   Reply With Quote
Old 28 February 2011, 11:58   #4
Wielder of Lionheart
 

Posts: 3,349
CPU: Intel i7 920 @ 3.8
GPU: Geforce GTX 680+ 4GB
M/B: Asus Rampage II Gene
RAM: 12GB Corsair Vengeance
PSU: Corsair HX-620
Send a message via ICQ to squall_leonhart Send a message via MSN to squall_leonhart Send a message via Yahoo to squall_leonhart
no, virus's can come from anywhere, spectators line of thinking isn't even plausible.
__________________
squall_leonhart is offline   Reply With Quote
Old 28 February 2011, 12:19   #5
Golden Member
 

Posts: 897
CPU: AMD FX-8320
GPU: Radeon R7 260X 1GB
M/B: GA-990FX-UD3
RAM: Goodram 2x8GB DDR3 CL9
PSU: OCZ ZS 550W
Send a message via Yahoo to SpectatorX
Really? Over 1,5 year ago i left using any antivirus software because it was causing a lot of problems with system stability and was making machine slower. I'm using software in latest versions, taking care about system updates, i'm not clicking all the blinking things and READING (with understanding) everything i see on my screen.

From time to time i'm installing gdata antivirus trial to check my computer for viruses and guess what? I never have any virus!

My system is running smooth, stable and secure because i know what i'm doing with my machine.
__________________
Take your own future in your own hands!
SpectatorX is offline   Reply With Quote
Old 28 February 2011, 12:20   #6
Wielder of Lionheart
 

Posts: 3,349
CPU: Intel i7 920 @ 3.8
GPU: Geforce GTX 680+ 4GB
M/B: Asus Rampage II Gene
RAM: 12GB Corsair Vengeance
PSU: Corsair HX-620
Send a message via ICQ to squall_leonhart Send a message via MSN to squall_leonhart Send a message via Yahoo to squall_leonhart
yeah, that you know of.
__________________
squall_leonhart is offline   Reply With Quote
Old 28 February 2011, 19:21   #7
Rob
Guest

Posts: n/a
How do you use your brain when sites routinely get compromised (see: NYT, CNN, ZDNet...)?

The only way you can use your brain and be accurate is to turn off networking.
  Reply With Quote
Old 28 February 2011, 19:25   #8
Site Staff

Posts: 12,437
CPU: Intel Core i7-965
GPU: GeForce GTX 560 Ti
M/B: Intel DX58SO
RAM: 6GB of A-DATA
PSU: X-Spice 630w
Rob is correct. Even if if you're 100% you can still get infected.
Regeneration is offline   Reply With Quote
Old 28 February 2011, 19:32   #9
Master of Disaster
 

Posts: 3,651
CPU: AMD PII 1100T @ 4.0Ghz
GPU: MSI 660ti PE OC
M/B: MSI 790FX-GD70
RAM: 8GB 1600
PSU: Rosewill Capstone 750w
Send a message via MSN to blindartist
Yep, Ive done a year before with 0 protection and no matter how careful you usally are one will eventually slip through or youll eventually slip up and do something stupid, but to be honest I dont like having an antivirus running as they do cause some issues, lately I just have Threatfire running, it seems to be sufficient, virus free for two years now
__________________
The reasonable man adapts himself to the world; the unreasonable one persists in trying to adapt the world to himself. Therefore all progress depends on the unreasonable man.
blindartist is offline   Reply With Quote
Old 28 February 2011, 20:19   #10
One issue candidate
 

Posts: 4,793
CPU: C2Q 9400 2.66 GHz
GPU: Gigabyte 4870 512MB
M/B: Gigabyte X48 DS5
RAM: 2x2GB DDRII OCZ
PSU: Chiftec 550W
Quote:
Originally Posted by Regeneration View Post
Rob is correct. Even if if you're 100% you can still get infected.
AV closes this window of opportunity? I see.
__________________
... what?
mkey is offline   Reply With Quote
Reply


Thread Tools
Rate This Thread
Rate This Thread:

Tags
antivirus, eset, microsoft, mse, opencandy, software






All times displayed in UTC
Powered by vBulletin from vBulletin Solutions, Inc.


User Agent   Copyright 2014 NGOHQ.com - All Rights Reserved   Disclaimer