is this a false positive?VR wavelab release reported by windows..

 

we should ban these types of questions along with the "kontakt legit real work in cracked kontakt?"

 

why?I am just concerned from what i saw.If it wasn't for the ''cryptor'' on the title i wouldn't been concerned much.

 

If you installed it from trusted sites and groups like VR R2R or others there is no point creating a thread asking what it is about, if your AV detects it, restore it it's a false positive.

 

Last edited: Feb 13, 2021

it was from the sister site,you think its ok?i am concerned about the ''cryptor'' in the title..it brought to my mind ransomware malware.Why does it have this name?

 

Im no expert i haven't seen it before, a google search will do you just good. Although those type of files are used to crack the software.

 

Does windows defender show "!ml" at the end of the threat description?
Also, have you tried uploading it to virustotal?

While we all trust R2R and VR releases, being careful is always the best thing. Windows defender tend to be a bit tricky with w4r3z, it often tags a lot of R2R releases too that are completly harmless.
If you want to install it, I suggest you to use "Revo Uninstaller Pro" to monitor the installation, so that you can remove the software completly in case something goes wrong etc.
Personally I don't have any use for any of the steinberg products, so I have not and will not test them.. but I do enjoy to see them getting cracked properly, just for fact that all their software is massively overpriced and over protected, and it's just not fair for users.
No idea how this wavelab runs, and if it's compatible with the recently released "shady" cubase 11 pro.

 

the info i have is this

https://www.microsoft.com/en-us/wds...?name=Trojan:MSIL/Cryptor&threatid=2147768041

i too ignore false positives when it comes from trusted teams and wrz sites,i got alarmed because of the ''cryptor'' thing.
The software was running fine.When i re enabled windows security it stopped it from opening because it quarantined the file

 

Check what i wrote here: https://audiosex.pro/threads/autotune-pro-ce-gone-from-vst-folder-ableton.57692/#post-535839

 

You can see in the windows defender screen under "Virus & threat protection" >> "Protection History" >> click on drop down menu from the upper threat listed, and you will see some stuff like this: "Detected: Trojan:Script/Conteban.A!ml".
Just in your case it will say cryptor whatever, and there you can see if it says "!ml" or not at the end.

As far as I know "!ml" at the end of the detection means it's a detection that came from the machine learning algorythm and not from the threats definitions from microsoft, and most machine learning detections are false positives (unfortunately).

From that "protection history" window you can also restore the files that got deleted, should you choose to do so.

 

I wish people would exercise due diligence before posting these types of threads.

 

Here we go again.

I agree with you but the rules don't prevent it. The last time I got my ass chewed by @Olymoon when I said the same thing. Now @No Avenger disagree with you, too.

@azuli1 You are getting this straight from the horse's mouth. A @keygen telling you like it is.

Vro! if it is FROM AudioZ and nobody else confirmed that it is not safe, then it is safe. Trust the members there. They love to bitch and nitpick about everything. Always read the comments, and if you dont have experience download and wait for other users to install and report.

This is what every member posting this type of threads needs to do prior to posting but again, nothing in the rules require it, and @SAiNT hates rules so it is what it is.

 

Last edited: Feb 13, 2021

Wow @The Pirate who is the bomb on your avatar?

 

Off topic and moderators will love to chew my ass if I tell you anything else. Bunch of booty bandits

 

This is what i see,what do you think?

 

Please read this and give more info
https://audiosex.pro/threads/malware-warnings-from-warez-guide-how-to-receive-help-and-advice.57742/

 

Hi,i read it but the topic is closed for replies so i will give the info here:

1. Steinberg Wavelab Elements 10.0.40 WiN MAC (TEAM VR)
2. sister site
3. Windows built in
4.

1. exact name of the release, including version and team (no live link!)
2. where did you download the file from
3. name of your antivirus software
4. what warning message did you receive exactly
   
   

 

Well, looking at that, personally I wouldn't install it. VR wavelab is not going to make a big difference in what you can do with audio, there are alternatives, and while I do believe that 99% this just a false positive, I only trust R2R blindly. Not a fan of getting buggy emulators from other teams.

Some of these emulators and cracks need to behave "almost" like a virus, in the sense that they are using hacks to fool the protections etc. Then it is up to you, how much you feel you wanna "risk" the stability of your OS.

One thing worth noting is that the real Trojan:MSIL/Cryptor, in theory, has the body of the malware encrypted. This "SYNSOPOS.exe", I do not know exactly what it does, as I have not and will not be downloading or installing it, but it might be part of the crack or of the emulator and be partially encrypted as well, and because of the encryption the antivirus can't see what's inside, and to be safe it treats the file as if it was Trojan:MSIL/Cryptor.

In a way, antiviruses can be quite "racist", they make stupid judgements based on first impressions and looks, that often ends up being wrong.

 

This isn't a V.R Release!
So be careful.

 

is says VR in the description

''Team V.R (mac requires WIN emulation)''