Ninjastic
PostEdited versionsQuotes to this post
Post
Topic
Board Mining (Altcoins)
Re: Claymore's Dual Ethereum AMD+NVIDIA GPU Miner v11.5 (Windows/Linux)
by
Ratledge
on 25/03/2018, 01:28:10 UTC
Quote from: Espacee on March 24, 2018, 06:42:44 PM
Quote from: Digital_Seytan on March 24, 2018, 02:08:32 PM
Hello good day ,Claymore v11.5 and phoenixminer 2.8.a users.
First, I used an online virus scanner to check the file phoenixminer 2.8.a.
The results are: 7/65 detected
https://www.virustotal.com/#/file/ab3f31a48199c800f7f958df21aed6565a9e972581d301ffedc0afa15b8e1cb7/detection
which is actually an excellent result, given that the Claymore's v 11.5 miner gives 19/62 positives
https://www.virustotal.com/#/file/9f2da65c0d6ff694aa66bf9207de9b42f62604021459dfbcba1c2ea2625116c2/detection
And even the open-source ethminer 0.14.0.dev4 gives 10/65 positives, which is ridiculous .
https://www.virustotal.com/#/file/33c0d6b7676d69ed497f8f91fa88ddb7b41c3db2e0cc0291de7d6c0724f66e9c/detection

 a miner is a trojan now! Huh
As a reply i want to inform you about that..

All miners will be on virus lists in very close time, because some users mining over Company sources, like ; Servers, Endpoints etc..

For the reason all the antivirus and threat protection softwares reporting miners to system admin for threat, If Claymore a threat for companies , yes its a way to find miners over companies.

So, its not releated with Trojan, its releated with Company protection.

Best Regards.
Pretty much right on.  The best way to describe it is that many "anti-virus" programs don't even use scheduled downloads of "pattern" files for matching any more.  These days usually it's all kept in "the cloud" for easy (and instant) update.

The problem is that many no longer differentiate between a malicious (AKA "virus") code and a "PUP" or Potentially Unwanted Program in a commercial environment.  For businesses, you likely don't want employees running a mining application on your company servers, right?  Speaking as a former network security officer for the U S Department of Justice, you don't really care exactly what it is, but rather whether or not it is allowed by your "Terms of Service" (PUP) or whatever - or if it is actually harmful or what we use the term "virus".

"VirusTotal.com" doesn't care why (or how) any of the "anti-virus" applications determine it is unwanted, they just report the total detects.

There is no malicious code here, but it is a P2P app, and most - if not all - companies don't want Peer to Peer software on their servers.