Jump to content

A malware in MTA ???


Guest Berbe

Recommended Posts

MTA does not contain any malware, if your antivirus picked it up, it could be due to one of two things.

1. you downloaded it from an untrusted source, (use the download now and use the wojjie download source)

or

2. some antivirus software detects methods of virus operation, since MTA is essentially a hack, it could contain code that causes a false positive in antivirus software, namely the method that MTA uses to hook GTA's rendering sequence to draw the chatbox.

Kent

Link to comment

I've downloaded mta from this website... Maybe the virus has been hosted on a mta server and applied without anyone can see anything...

Security issue ?

[EDIT]

McAfee ViruScan was used

Link to comment

IF your client is infected then theres a high chance other applications on your system are also infected, depending which virus you have 'caught', but very few limit themselves to infecting a single file. I would update your vscanner and spyware cleaner and scan/clean thoroughly. Then re-download and re-install MTA and any other files that have become infected.

Link to comment

The part of of image shown result from a complete scan of my system, with the latest definitions of viruses...

I've scanned my system with an anti-spywares too, but the viruses is only identified in this file...

Link to comment

What is the MD5 has or CRC of the file in question? You can find out the CRC by putting the file in winzip (or winrar) and telling it to display the CRC column (right click on a column header).

Does anyone else have McAfee who could check if this is McAfee's fault? I notice that update that caused this was released only a couple of days ago. If it is their fault, we'll contact them and inform them.

eAi

Link to comment

the subtype Heuristic implies that mcaffe caught it because of some virus's methodology, so it could be because of our graphics hook, however, i would do as eAi suggested and get an MD5 hash so that we can verify the download is infact the same file as we are distributing.

Link to comment

I've just done that :

First of all I've uninstalled/reinstalled MTA from the archive I've keeped on my HD : the malware was still there...

I've then re-dl the file from gonnaplay.com (the first of the mirror servers in the download list of mtavc.com), unistalled/reinstalled the game, and the problem hasn't disappeared...

So your code is detected as a virus by McAfee, surely due to a too big resemblance with a real virus... Another program, TeamSpeak had a similar problem with Norton, a year ago...

Link to comment
I've just done that :

First of all I've uninstalled/reinstalled MTA from the archive I've keeped on my HD : the malware was still there...

I've then re-dl the file from gonnaplay.com (the first of the mirror servers in the download list of mtavc.com), unistalled/reinstalled the game, and the problem hasn't disappeared...

So your code is detected as a virus by McAfee, surely due to a too big resemblance with a real virus... Another program, TeamSpeak had a similar problem with Norton, a year ago...

but that was keypresshook, which MTA doesnt use...but it does have a keyhook.

and obviously MTA is not malware...or we wouldnt have like...10,000 users.

Link to comment

I also have McAffee and the same thing happened to me.

MTAClient.exe shows up as a Trojan, so its not just a glitch or something

Link to comment
the subtype Heuristic implies that mcaffe caught it because of some virus's methodology, so it could be because of our graphics hook, however, i would do as eAi suggested and get an MD5 hash so that we can verify the download is infact the same file as we are distributing.

Is that in English? :?

Link to comment

mcafee I find is really overzelous with the protection (which can be good i suppose) and i bet they get a lot of this every day. Of course MTA is a very popular program and this warrents a reply from mcafee (IMO)

Link to comment
  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...