How Will You React If You Bought A WSO With 5/45 Detection Ratio In VirusTotal?

by IhaveAdream

Posted: 11 years ago 9 replies

INTERNET MARKETING

Recently I was requested to review a WSO but I found it contains 5/45 detection ratio with virustotal before I open it. I sent feedback to the seller by asking him to fix it if possible but he claimed those to be false positive.

I'm trying to help the seller to avoid bad reviews, can some expert confirm this for me?

SHA256: e5fc48b22b2656edd77a65628eaeade4c3ad4704cf20e30108 ab377b86f81c7b
SHA1: 4b72c5a63374fad24a2f8f4ca4469c0ecc847986
MD5: 8271632284d2cdf5a336be4c9d2c2aa8
File type: Android
Detection ratio: 5 / 45
Code-related observations
The application does not load any code dynamically
The application does not contain reflection code
The application does not contain native code
The application does not contain cryptographic code

#5 or 45 #bought #detection #ratio #react #virustotal #wso

badbaseball 11 years ago

i would ask him/her about that, then ask for a refund.If its got ad-aware something is up.
- [ 1 ] Thanks
{{ DiscussionBoard.errors[8352640].message }}
IhaveAdream 11 years ago

Hmmm...can someone else advice me what should I do? Should I just open the WSO and review it? I'm worry about the risk of getting virus...
- Thanks
- 3 replies
{{ DiscussionBoard.errors[8354771].message }}
- LandenLakewood 11 years ago
  
  Originally Posted by IhaveAdream
  
  Hmmm...can someone else advice me what should I do? Should I just open the WSO and review it? I'm worry about the risk of getting virus...
  
  If you're worried about a virus, don't open it. That's pretty simple. That said, there are a number of non-commercial softwares that will throw a false positive.
  
  [ 1 ] Thanks
  
  {{ DiscussionBoard.errors[8354794].message }}
- RobinInTexas 11 years ago
  
  If it's a review copy, I wouldn't open it.
  
  If you got the copy from a thread on the forum here, I'd suggest you post the results, without further comment, in the thread for the author to respond.
  
  About the same if you bought the WSO, except if it were me, I'd ask for a refund.
  
  [ 1 ] Thanks
  
  Signature
  
  Robin
  
  ...Even if you're on the right track, you'll get run over if you just set there.
  
  {{ DiscussionBoard.errors[8354799].message }}
- datingworld 11 years ago
  
  Originally Posted by IhaveAdream
  
  Hmmm...can someone else advice me what should I do? Should I just open the WSO and review it? I'm worry about the risk of getting virus...
  
  Certainly don't open it. Contact the owner as you have already done it.
  
  [ 1 ] Thanks
  
  1 reply
  
  Signature
  
  Free Private Label Dating Guide Book _ _ _ _ _ The Best Dating Affiliate Program
  
  {{ DiscussionBoard.errors[8354893].message }}
  
  JohnZ 11 years ago
  
  That's kinda crazy...I'd probably try a few different scanners if possible just to see what happens but definitely wouldn't install it until I was convinced it was safe.
  
  And if someone told me my plugin was doing that, I would certainly investigate that big time before I let anyone else even touch it.
  
  John
  
  Thanks
  
  Signature
  
  www.JohnZapata.com
  
  {{ DiscussionBoard.errors[8355019].message }}
Nate Simms 11 years ago

You can tell the seller of the WSO that the Adware/ANDR variant is definitely not a "false positive."

Everything else on that list could be a false positive, but the ANDR is most definitely a true positive (and they are persistent suckers). More than likely (and because I like to give the benefit of the doubt), the seller's computer is already infected with that strand of ANDR and it is now infecting the compressed files he created for the WSO.
- [ 1 ] Thanks
{{ DiscussionBoard.errors[8354827].message }}
JeanneLynn 11 years ago

I wouldn't open it.
- [ 1 ] Thanks
{{ DiscussionBoard.errors[8355650].message }}
IhaveAdream 11 years ago

Thanks for all the responses! I will contact the seller again regarding this issue.
- Thanks
{{ DiscussionBoard.errors[8356824].message }}