Hi,
My Faf keep getting deleted by windows defender as dangerous Malware.
Category: Trojan
Description: This program is dangerous and executes commands from an attacker.
Recommended action: Remove this software immediately.
Items:
file:C:\Program Files (x86)\Forged Alliance Forever\FAForever.exe
file:C:\Users\Public\Desktop\FA Forever.lnk
Category: Trojan
Description: This program is dangerous and executes commands from an attacker.
Recommended action: Remove this software immediately.
Items:
taskscheduler:C:\WINDOWS\System32\Tasks\{F97A3A74-4703-446C-A219-878978696ADB}
file:C:\Program Files (x86)\Forged Alliance Forever\FAForever.exe
file:C:\WINDOWS\System32\Tasks\{F97A3A74-4703-446C-A219-878978696ADB}
regkey:HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9EFBE673-2E1B-440F-BD6B-511AEBBF84FA}
regkey:HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{F97A3A74-4703-446C-A219-878978696ADB}
What gives?
This forum is archived and read only.
Please move to the new forum!
- It is currently 07 Apr 2021, 12:06
Forged Alliance Forever
Forged Alliance Forever Forums
FaF being deleted by windows defender for containing Malware
Moderator: PhilipJFry
Forum rules
BEFORE POSTING read
Our wiki contains a lot of helpful material about technical issues, try looking there first!
Use the search function before opening a thread! (https://www.faforever.com/forums/search.php)
Read this before posting here: https://wiki.faforever.com/index.php?ti ... cal_Issues
BEFORE POSTING read
Our wiki contains a lot of helpful material about technical issues, try looking there first!
Use the search function before opening a thread! (https://www.faforever.com/forums/search.php)
Read this before posting here: https://wiki.faforever.com/index.php?ti ... cal_Issues
7 posts
• Page 1 of 1
FaF being deleted by windows defender for containing Malware
by The_Corinthian » 21 Feb 2017, 16:41
- The_Corinthian
- Posts: 7
- Joined: 21 Feb 2017, 16:37
- Has liked: 0 time
- Been liked: 0 time
- FAF User Name: The_Corinthian
Re: FaF being deleted by windows defender for containing Mal
by DukeOfEarl » 21 Feb 2017, 17:13
Hello,
I don't know which version of FAForever.exe you have, but I had someone else submit their version to virustotal and it comes up clean:
https://virustotal.com/de/file/bbab4e49 ... 487689511/
It also comes up clean on Microsoft's service: https://www.microsoft.com/en-us/securit ... 912cd59cae
Please submit your FAForever.exe there as well and tell me how exactly you installed your current version of FAF.
I don't know which version of FAForever.exe you have, but I had someone else submit their version to virustotal and it comes up clean:
https://virustotal.com/de/file/bbab4e49 ... 487689511/
It also comes up clean on Microsoft's service: https://www.microsoft.com/en-us/securit ... 912cd59cae
Please submit your FAForever.exe there as well and tell me how exactly you installed your current version of FAF.
DevOps Councillor and Maintainer of the FAF Python Client
aka Duke / OppressiveDuke / DukeOfEarl / duk3luk3 - call me Duke
Problems? Get help in the Tech Support Forum
Have I fixed your problems? You can support me on Patreon and LiberaPay!
aka Duke / OppressiveDuke / DukeOfEarl / duk3luk3 - call me Duke
Problems? Get help in the Tech Support Forum
Have I fixed your problems? You can support me on Patreon and LiberaPay!
-
DukeOfEarl - Avatar-of-War
- Posts: 206
- Joined: 17 Apr 2013, 14:31
- Has liked: 12 times
- Been liked: 18 times
- FAF User Name: OppressiveDuke
Re: FaF being deleted by windows defender for containing Mal
by The_Corinthian » 21 Feb 2017, 18:48
DukeOfEarl wrote:Hello,
I don't know which version of FAForever.exe you have, but I had someone else submit their version to virustotal and it comes up clean:
https://virustotal.com/de/file/bbab4e49 ... 487689511/
It also comes up clean on Microsoft's service: https://www.microsoft.com/en-us/securit ... 912cd59cae
Please submit your FAForever.exe there as well and tell me how exactly you installed your current version of FAF.
Hi, I don't know what the version was because defender deleted it. But the most recent install was two days ago, and that got automatically removed too.
https://www.microsoft.com/security/port ... terprise=0
- The_Corinthian
- Posts: 7
- Joined: 21 Feb 2017, 16:37
- Has liked: 0 time
- Been liked: 0 time
- FAF User Name: The_Corinthian
Re: FaF being deleted by windows defender for containing Mal
by DukeOfEarl » 21 Feb 2017, 19:41
You will have to try to get Defender to ignore FAForever.exe. Maybe you can use this: https://support.microsoft.com/en-us/ins ... s-defender
DevOps Councillor and Maintainer of the FAF Python Client
aka Duke / OppressiveDuke / DukeOfEarl / duk3luk3 - call me Duke
Problems? Get help in the Tech Support Forum
Have I fixed your problems? You can support me on Patreon and LiberaPay!
aka Duke / OppressiveDuke / DukeOfEarl / duk3luk3 - call me Duke
Problems? Get help in the Tech Support Forum
Have I fixed your problems? You can support me on Patreon and LiberaPay!
-
DukeOfEarl - Avatar-of-War
- Posts: 206
- Joined: 17 Apr 2013, 14:31
- Has liked: 12 times
- Been liked: 18 times
- FAF User Name: OppressiveDuke
Re: FaF being deleted by windows defender for containing Mal
by zachyattacky » 22 Feb 2017, 04:12
As long as you download it from a reputable place such as the faf website I wouldn't worry about it. When I first installed faf my antivirus did the same (webroot) and I didn't play it for over a year which is really sad. Then I finally just installed it and haven't had any problems. Some peoples antivirus are extra sensitive to certain things. I'd imagine its something to do with the way the updates are handled or the fact that its hijacking the faf game and using it.
- zachyattacky
- Avatar-of-War
- Posts: 53
- Joined: 20 Aug 2016, 14:46
- Has liked: 81 times
- Been liked: 8 times
- FAF User Name: zachyattacky
7 posts
• Page 1 of 1
Who is online
Users browsing this forum: No registered users and 1 guest