Was browsing through old links today, and I went to Patches Scrolls and
found the latest VTMB patch. Feb 27 2023, v11.3. Filename: VTMBup113.exe

Then Windows Defender immediately pegged it as malware and deleted it.

The identifier was "Trojan:Win32/Casdet!rfn" whatever that means, but it
labeled it as "Severe."

I remember that some of you are plugged into this community project, I
think Werner. In fact, IIRC, Werner was responsible for it.

Anyone know what's up? I'm guessing false positive, but I'm not sure
who's in control of the project any more.

--
Zag

West of House
There is a small mailbox here.

>read leaflet
"WELCOME TO USENET!

USENET is a game of adventure, danger,
and low cunning. In it you will
explore some of the most amazing
territory ever seen by mortals. No
computer should be without it!"

Zaghadka <zaghadka@hotmail.com> wrote in
news:ee119i12q4jch9a092rk42g85qnmlmvm7v@4ax.com:

> Was browsing through old links today, and I went to Patches Scrolls and
> found the latest VTMB patch. Feb 27 2023, v11.3. Filename: VTMBup113.exe
>
> Then Windows Defender immediately pegged it as malware and deleted it.
>
> The identifier was "Trojan:Win32/Casdet!rfn" whatever that means, but it
> labeled it as "Severe."
>

Odd. It works just fine for me.

--
Clotho, Lachesis, Atropos -- the only sysadmins that matter

On 6/19/2023 12:49 PM, Zaghadka wrote:
> Was browsing through old links today, and I went to Patches Scrolls and
> found the latest VTMB patch. Feb 27 2023, v11.3. Filename: VTMBup113.exe
>
> Then Windows Defender immediately pegged it as malware and deleted it.
>
> The identifier was "Trojan:Win32/Casdet!rfn" whatever that means, but it
> labeled it as "Severe."
>
> I remember that some of you are plugged into this community project, I
> think Werner. In fact, IIRC, Werner was responsible for it.
>
> Anyone know what's up? I'm guessing false positive, but I'm not sure
> who's in control of the project any more.

Probably a false positive but if you want to be sure upload it to
virustotal[dot]com if the file is smaller than 650MB, they'll inspect it
with over 70 antivirus scanners and URL/domain blocklisting services. I
never run anything on my computer, regardless of source, without
checking the executable there first.

It's free and takes just a few seconds/minutes for a result. From their
site:

"Upon submitting a file or URL basic results are shared with the
submitter, and also between the examining partners, who use results to
improve their own systems. As a result, by submitting files, URLs,
domains, etc. to VirusTotal you are contributing to raise the global IT
security level.

This core analysis is also the basis for several other features,
including the VirusTotal Community: a network that allows users to
comment on files and URLs and share notes with each other. VirusTotal
can be useful in detecting malicious content and also in identifying
false positives -- normal and harmless items detected as malicious by
one or more scanners."

--
Tell me a time in history when it was the good guys banning books - I'll
wait.

On Mon, 19 Jun 2023 13:52:23 -0400, in comp.sys.ibm.pc.games.action,
Metal Guru wrote:

>On 6/19/2023 12:49 PM, Zaghadka wrote:
>> Was browsing through old links today, and I went to Patches Scrolls and
>> found the latest VTMB patch. Feb 27 2023, v11.3. Filename: VTMBup113.exe
>>
>> Then Windows Defender immediately pegged it as malware and deleted it.
>>
>> The identifier was "Trojan:Win32/Casdet!rfn" whatever that means, but it
>> labeled it as "Severe."
>>
>> I remember that some of you are plugged into this community project, I
>> think Werner. In fact, IIRC, Werner was responsible for it.
>>
>> Anyone know what's up? I'm guessing false positive, but I'm not sure
>> who's in control of the project any more.
>
>Probably a false positive but if you want to be sure upload it to
>virustotal[dot]com if the file is smaller than 650MB, they'll inspect it
>with over 70 antivirus scanners and URL/domain blocklisting services. I
>never run anything on my computer, regardless of source, without
>checking the executable there first.
>

Yeah. VirusTotal turned up clean. Microsoft just screwed up. I stuck it
into an excluded folder, where it will stay until I can get the false
positive reported.

--
Zag

No one ever said on their deathbed, 'Gee, I wish I had
spent more time alone with my computer.' ~Dan(i) Bunten

On Mon, 19 Jun 2023 14:13:49 -0500, in comp.sys.ibm.pc.games.action,
Zaghadka wrote:

>On Mon, 19 Jun 2023 13:52:23 -0400, in comp.sys.ibm.pc.games.action,
>Metal Guru wrote:
>
>>On 6/19/2023 12:49 PM, Zaghadka wrote:
>>> Was browsing through old links today, and I went to Patches Scrolls and
>>> found the latest VTMB patch. Feb 27 2023, v11.3. Filename: VTMBup113.exe
>>>
>>> Then Windows Defender immediately pegged it as malware and deleted it.
>>>
>>> The identifier was "Trojan:Win32/Casdet!rfn" whatever that means, but it
>>> labeled it as "Severe."
>>>
>>> I remember that some of you are plugged into this community project, I
>>> think Werner. In fact, IIRC, Werner was responsible for it.
>>>
>>> Anyone know what's up? I'm guessing false positive, but I'm not sure
>>> who's in control of the project any more.
>>
>>Probably a false positive but if you want to be sure upload it to
>>virustotal[dot]com if the file is smaller than 650MB, they'll inspect it
>>with over 70 antivirus scanners and URL/domain blocklisting services. I
>>never run anything on my computer, regardless of source, without
>>checking the executable there first.
>>
>
>Yeah. VirusTotal turned up clean. Microsoft just screwed up. I stuck it
>into an excluded folder, where it will stay until I can get the false
>positive reported.

Microsoft has a 500MB limit on file submissions. Guess what's just over
500MB? Ridiculous.

--
Zag

No one ever said on their deathbed, 'Gee, I wish I had
spent more time alone with my computer.' ~Dan(i) Bunten