Windows 10: false positive? Win32/Sabsik.FT.A!ml

Discus and support false positive? Win32/Sabsik.FT.A!ml in AntiVirus, Firewalls and System Security to solve the problem; after compiling my C++ using the devolper console "cl /EHsc hello.cpp" this triggered my antivirus to say Win32/Sabsik.FT.A!ml trojan was discovered... Discussion in 'AntiVirus, Firewalls and System Security' started by DrTrollPepsi, Dec 11, 2021.

  1. DRTROLLPEPSI
    DrTrollPepsi Win User

    false positive? Win32/Sabsik.FT.A!ml


    after compiling my C++ using the devolper console "cl /EHsc hello.cpp" this triggered my antivirus to say Win32/Sabsik.FT.A!ml trojan was discovered and it affected "hello.cpp", so false positive or not or this Win32/Sabsik.FT.A!ml the C++ compilor?

    :)
     
    DrTrollPepsi, Dec 11, 2021
    #1
  2. BHRINGER
    bhringer Win User

    False Positive by Windows Defender ? Win32/Critet.BS

    @G_963

    Found thread in ZHPCleaner forum.

    Dectection du trojan :Win32/Critet.BS

    https://www.nicolascoolman.com/forum/dectection-trojan-win32-critet-t9711.html

    Updated Windows Defender definitions to 1.263.740.0 and downloaded ZHPCleaner from author's site. It passed security scan so hopefully the issue has been resolved with false positives.

    Try manually updating through Windows Defender Security Center - Virus and Treat Protection Updates and determine if supercopier is still detected.

    ~
     
    bhringer, Dec 11, 2021
    #2
  3. SNIXTOR
    Snixtor Win User
    False positive for desktop shortcut scanner.lnk

    The 1.239.488.0 virus / spyware definition update that rolled out about 24 hours ago appears to be producing a false positive for any shortcut placed on the desktop called "Scanner.lnk". I can consistently replicate a false positive for Trojan:Win32/FakeSysdef
    with the following steps.

    • Create a shortcut to an exe file.
    • Place the shortcut on the desktop.
    • Name the shortcut "Scanner".
    • Run "Quick Scan".
    I don't get the same result by directly scanning the file, nor by uploading the file to www.virustotal.com, so it would appear this is as a result of a heuristic rather than a file content analysis. I also don't get the same result with a shortcut that links
    to a website.

    Can anyone else replicate? How can we go about getting the Windows Defender team to reconsider this heuristic? It's a bit heavy-handed.
     
    Snixtor, Dec 11, 2021
    #3
  4. JG_963
    JG_963 Win User

    false positive? Win32/Sabsik.FT.A!ml

    False Positive by Windows Defender ? Win32/Critet.BS

    hi,

    I have the same problem with supercopier that does not run stopped by the defender with this Trojan also with ZHPcleaner!!!

    Nicolas Coollman say that it is as false/positive.
     
    JG_963, Dec 11, 2021
    #4
Thema:

false positive? Win32/Sabsik.FT.A!ml

Loading...

  1. false positive? Win32/Sabsik.FT.A!ml - Similar Threads - false positive Win32

  2. Windows defender Win32/Wacatac.B!ml false positives are hindering our business

    in Windows 10 Gaming
    Windows defender Win32/Wacatac.B!ml false positives are hindering our business: We develop a SIGNED with an EV Cert from DigiCert application that we distribute to our users in the form of a Wix MSI that is being incorrectly flagged as Win32/Wacatac.B!ml.VirusTotal shows nothing from any other vendor.This has been an issue before:...

  3. Windows defender Win32/Wacatac.B!ml false positives are hindering our business

    in Windows 10 Software and Apps
    Windows defender Win32/Wacatac.B!ml false positives are hindering our business: We develop a SIGNED with an EV Cert from DigiCert application that we distribute to our users in the form of a Wix MSI that is being incorrectly flagged as Win32/Wacatac.B!ml.VirusTotal shows nothing from any other vendor.This has been an issue before:...

  4. Windows defender Win32/Wacatac.B!ml false positives are hindering our business

    in AntiVirus, Firewalls and System Security
    Windows defender Win32/Wacatac.B!ml false positives are hindering our business: We develop a SIGNED with an EV Cert from DigiCert application that we distribute to our users in the form of a Wix MSI that is being incorrectly flagged as Win32/Wacatac.B!ml.VirusTotal shows nothing from any other vendor.This has been an issue before:...

  5. wacatac.H!ml trojan false positive?

    in Windows 10 Gaming
    wacatac.H!ml trojan false positive?: Hello,I have had a false positive with this file for a few days now.https://builds.enginehub.org/job/worldguard/23827KB2310138 - 1.409.145.0 https://answers.microsoft.com/en-us/windows/forum/all/wacatachml-trojan-false-positive/a6508c5b-4ebd-4624-8bb2-235ccd89ebf5

  6. wacatac.H!ml trojan false positive?

    in Windows 10 Software and Apps
    wacatac.H!ml trojan false positive?: Hello,I have had a false positive with this file for a few days now.https://builds.enginehub.org/job/worldguard/23827KB2310138 - 1.409.145.0 https://answers.microsoft.com/en-us/windows/forum/all/wacatachml-trojan-false-positive/a6508c5b-4ebd-4624-8bb2-235ccd89ebf5

  7. Win32/Bladabindi!ml What is it? Is it a false detection?

    in Windows 10 Gaming
    Win32/Bladabindi!ml What is it? Is it a false detection?: I recently reinstalled windows and I was reinstalling all the apps including Microsoft office. I was using office deployment tool to install office. After installation I thought I might store the files so I could use them later. So I made a sfx archive with WinRAR but as soon...

  8. Win32/Bladabindi!ml What is it? Is it a false detection?

    in Windows 10 Software and Apps
    Win32/Bladabindi!ml What is it? Is it a false detection?: I recently reinstalled windows and I was reinstalling all the apps including Microsoft office. I was using office deployment tool to install office. After installation I thought I might store the files so I could use them later. So I made a sfx archive with WinRAR but as soon...

  9. How can I know if Wacatac.B!ml is a false positive or it's a real positive?

    in AntiVirus, Firewalls and System Security
    How can I know if Wacatac.B!ml is a false positive or it's a real positive?: So I scaned my pc and windows defender says that one program has the virus wacatac.B!mlthis happened when I downloaded a zip and unziped it. I readed that sometimes windows defender thinks that a .exe unziped has the virus, but the virus is in other program. Anyway I never...

  10. Trojan:Script/Firetype.A!ml flagging a thumbs.db file. False positive?

    in AntiVirus, Firewalls and System Security
    Trojan:Script/Firetype.A!ml flagging a thumbs.db file. False positive?: I just exported an image from lightroom to a network share on my server then switched the folder to thumbnail view and got a windows defender malware warning. Flagged as follows: Trojan Severe Affected Items:...