• All Community
    • All Community
    • Forums
    • Ideas
    • Blogs
Advanced

Not what you are looking for? Ask the experts!

This forum thread needs a solution.
Kudos0

I don't think this is malicious.

Hi. I recently tried to download a SM64 ROM expander tool. Norton quickly deleted it, with this message:

Category: Download Insight
Date & Time,Risk,Activity,Status,Path - Filename
4/4/2018 11:00:17 AM,Medium,Download Insight analyzed sm64extend.exe,Removed,c:\Users\Eddie\Downloads\sm64extendGUI(v1.02)\sm64extend.exe

Said it was WS.Reputation.1, even though it was harmless. Did the same with sm64extendGUI.exe, saying it was Sonar.Heuristic.170:

Category: Resolved Security Risks
Date & Time,Risk,Activity,Status,Recommended Action,Path - Filename
4/4/2018 11:01:10 AM,High,sm64extendgui.exe (SONAR.Heuristic.170) detected by SONAR,Quarantined,Resolved - No Action Required,c:\users\eddie\downloads\sm64extendgui(v1.02)\sm64extendgui.exe


Category: Quarantine
Date & Time,Risk,Activity,Status,Recommended Action,Path - Filename
4/4/2018 11:01:10 AM,High,sm64extendgui.exe (SONAR.Heuristic.170) detected by SONAR,Quarantined,Resolved - No Action Required,c:\users\eddie\downloads\sm64extendgui(v1.02)\sm64extendgui.exe


Category: SONAR Activity
Date & Time,Risk,Activity,Status,Recommended Action,Path - Filename
4/4/2018 11:01:10 AM,High,sm64extendgui.exe (SONAR.Heuristic.170) detected by SONAR,Quarantined,Resolved - No Action Required,c:\users\eddie\downloads\sm64extendgui(v1.02)\sm64extendgui.exe


I don't think these are malicious. I would be happy if they were unblocked. Thanks.

EDIT: This is my first post, so sorry if I posted this in the wrong section.

Another edit with details I forgot to add: Downloaded both from smwcentral.com, a site dedicated to SMW and SM64 hacking. People were responding positively to it, none saying it was malicious. So I'm pretty sure this was a mistake.

-- Toodles, Necrozma

Replies

Kudos0

Re: I don't think this is malicious.

You can submit the files to virustotal.com to see if any other AVs detect it.

You can report false positive indications here https://submit.symantec.com/false_positive/

Any sites that support or condone any hacking can be susceptible to malicious downloads.

Things happen. Export/Backup your Norton Password Manager data.

This thread is closed from further comment. Please visit the forum to start a new thread.