Stephen White 1900:What Norton is telling me is exactly the same as the file insight on your 6:55am post that the exe file is a Heuristic virus.
Okay....if the 'tomb4.exe' hash is the same as my >
Posted: 18-Mar-2021 | 9:49AM • Edited: 18-Mar-2021 | 9:55AM • Permalink
I've submitted that 'tomb4.exe' as False Positive -
You may also submit.
Thanks
What Norton is telling me is exactly the same as the file insight on your 6:55am post that the exe file is a Heuristic virus.
Yeah.....Norton does not like new tomb4.exe nor it's friend TR3Aiming.dll
Stephen White 1900:
Thanks for the replies, the files are being quarantined after extracting from zip file and clicking on the exe file, the downloads are free go to trle.net click play which brings up all the games this happened on Evening in Quebec and Goliaths Tomb and a lot of the other recent games on there are the same due to the modified exe files,
Regarding "modified exe files" ......IDK what Norton is reporting.
Please tell us what Norton is telling you regarding this event.
For information regarding this event > from Norton pop-up > View Details > Copy to Clipboard &or from Norton history > More Options > Copy to Clipboard > paste here.
FWIW ~
I've pulled Evening in Quebec.
I'll try to submit Evening in Quebec detections.
Okay....before your reply. I grabbed
I've submitted tomb4.exe to Norton as False Positive.
Filename: tomb4.exe Threat name: Heur.AdvML.C
tomb4.exe is an old file with few IMO VT detections. VirusTotal uses the command-line scanner versions of the products that support VirusTotal. Some of the solutions included in VirusTotal are configured according to the parameters requested by the vendor, with a more aggressive level of heuristic detection than the official end-user default configuration would offer.
Stephen White 1900:
I’d just like someone at Norton’s thoughts on it as a lot of people on trle say there are no dangerous files on there and seem to be downloading and playing these games just fine, I was 95% sure they are right but when I see the Norton antivirus say things are a treat it’s making me unsure, I just want to play these games like others are.
Sorry, I run Norton. I'm not Norton. Since, you'd like Norton's thoughts.
I'd urge you to submit suspect file/s to NortonLifeLock.
Report a suspected incorrect detection to NortonLifeLock
https://support.norton.com/sp/en/us/home/current/solutions/v126152382
Submit a file to NortonLifeLock
https://support.norton.com/sp/en/ie/home/current/solutions/kb20090602171902EN
Respond to incorrect Norton alerts that a file is infected or a program or website is suspicious
https://support.norton.com/sp/en/us/home/current/solutions/kb20100222230832E
Thanks for the replies, the files are being quarantined after extracting from zip file and clicking on the exe file, the downloads are free go to trle.net click play which brings up all the games this happened on Evening in Quebec and Goliaths Tomb and a lot of the other recent games on there are the same due to the modified exe files, I’d just like someone at Norton’s thoughts on it as a lot of people on trle say there are no dangerous files on there and seem to be downloading and playing these games just fine, I was 95% sure they are right but when I see the Norton antivirus say things are a treat it’s making me unsure, I just want to play these games like others are.
FWIW ~
Stephen White 1900:I am trying to download and play custom tomb raider game levels on the tomb raider level editor website trle.net but on some of the game level downloads the exe files and some dll files are being quarantined by Norton, [...]
Um, are the installers blocked n'or quarantined.
Are the installed exe/dll blocked n'or quarantined.
Note: I'm not a gamer.
I'd try to reproduce, my side, if download/s is free and if you point me to the download/s.
http://trle.net/
http://forum.trle.net/
WS.Reputation.1 is a detection for files that have a low reputation score based on analyzing data from Symantec’s community of users and therefore are likely to be security risks. Detections of this type are based on Symantec’s reputation-based security technology. Because this detection is based on a reputation score, it does not represent a specific class of threat like adware or spyware, but instead applies to all threat categories.
The reputation-based system uses "the wisdom of crowds" (Symantec’s tens of millions of end users) connected to cloud-based intelligence to compute a reputation score for an application, and in the process identify malicious software in an entirely new way beyond traditional signatures and behavior-based detection techniques.
Now, like any security technology, there is a small chance that we have made a mistake on a file. We are constantly tuning the reputation system to avoid these problems, but they do occur on occasion. If you believe a file has been mistakenly detected by WS.Reputation.1, you can submit a dispute at https://submit.norton.com/
Files reported as WS.Reputation.1 may not necessarily be malicious, and may be a false positive detection. Should you be uncertain whether a file has been reported correctly, you may submit file to https://www.virustotal.com for second opinion scan with multiple antivirus engines.
If you believe a file has been mistakenly detected by WS.Reputation.1, you may submit a dispute at https://submit.norton.com/
Report a suspected incorrect detection to NortonLifeLock
https://support.norton.com/sp/en/us/home/current/solutions/v126152382
Submit a file to NortonLifeLock
https://support.norton.com/sp/en/ie/home/current/solutions/kb20090602171902EN
Respond to incorrect Norton alerts that a file is infected or a program or website is suspicious
https://support.norton.com/sp/en/us/home/current/solutions/kb20100222230832E
Please tell us what Norton is telling you regarding this event.
For information regarding this event > from Norton pop-up > View Details > Copy to Clipboard &or from Norton history > More Options > Copy to Clipboard > paste here.
For second opinion choose File &/or Search hash at VirusTotal