Virus warning in SETI through Boinc...


Advanced search

Message boards : Number crunching : Virus warning in SETI through Boinc...
Message board moderation

To post messages, you must log in.

AuthorMessage
Zuurdeeg

Send message
Joined: 30 Oct 99
Posts: 6
Credit: 4,161,039
RAC: 0
France
Message 1758140 - Posted: 22 Jan 2016, 10:25:56 UTC

Today my antivirus AVG gave following warning:
C:\ProgramData\BOINC\projects\setiathome.berkely.edu\setiathome_8.00_windowsd_intelx86__cuda50.exe
Severity: medium
Identified by: identity protection
Date: 22/01/2016,09:47:57

AVG deleted the virus without problem.
This is the first time in many years this happened to me.
Is this a SETI or a BOINC problem?
How can this happen? Hackers somewhere?
ID: 1758140 · Report as offensive
Profile Wiggo
Avatar

Send message
Joined: 24 Jan 00
Posts: 34744
Credit: 261,360,520
RAC: 489
Australia
Message 1758143 - Posted: 22 Jan 2016, 10:37:09 UTC

Actually it's a false positive (that can happen a lot) and you should have that folder exempt from being scanned.

Also without that file you won't be doing any cuda50 GPU work. ;-)

Cheers.
ID: 1758143 · Report as offensive
Profile Mr. Kevvy Crowdfunding Project Donor*Special Project $250 donor
Volunteer moderator
Volunteer tester
Avatar

Send message
Joined: 15 May 99
Posts: 3776
Credit: 1,114,826,392
RAC: 3,319
Canada
Message 1758163 - Posted: 22 Jan 2016, 11:54:09 UTC
Last modified: 22 Jan 2016, 12:06:28 UTC

I have had that AVG "Identity Protection" component flag BOINC files (and others) as suspicious for years. It's also responsible for most of the reboot requirements whenever it updates. My conclusion: it's crap and disable it.

As Wiggo noted, you'll have to restore that file under Options > Virus Vault.
ID: 1758163 · Report as offensive
Profile Jord
Volunteer tester
Avatar

Send message
Joined: 9 Jun 99
Posts: 15184
Credit: 4,362,181
RAC: 3
Netherlands
Message 1758171 - Posted: 22 Jan 2016, 12:08:55 UTC

More people, with false positives and my advice what to do with it (set up an exclusive directory, or DMZ).
ID: 1758171 · Report as offensive
Richard Haselgrove Project Donor
Volunteer tester

Send message
Joined: 4 Jul 99
Posts: 14650
Credit: 200,643,578
RAC: 874
United Kingdom
Message 1758175 - Posted: 22 Jan 2016, 12:19:34 UTC - in response to Message 1758171.  

More people, with false positives and my advice what to do with it (set up an exclusive directory, or DMZ).

The trouble is that these days, most false positives happen during the download phase, before the file even reaches your DMZ. Not as the result of a scan.
ID: 1758175 · Report as offensive
Mark Lybeck

Send message
Joined: 9 Aug 99
Posts: 245
Credit: 216,677,290
RAC: 173
Finland
Message 1759004 - Posted: 24 Jan 2016, 13:48:00 UTC

Hello,

AVG Identity protection reported IDP.ARES generic for Lunatics_x41zi_win32_cuda50.exe.

Rgs,
-Mark
ID: 1759004 · Report as offensive

Message boards : Number crunching : Virus warning in SETI through Boinc...


 
©2024 University of California
 
SETI@home and Astropulse are funded by grants from the National Science Foundation, NASA, and donations from SETI@home volunteers. AstroPulse is funded in part by the NSF through grant AST-0307956.