Trojan Horse virus detection

[elscrabinda]

My virus detection has just blocked a load of Microgaming casinos as having 'Trojan horse dropper.generic7.ulj'

Usually just ignore virus things when its from otherwise reputable casinos, but this time it doesn't give me an option to ignore it, and anyway 'Trojan Horse' sounds a bit scary.

Anyone had the same or know how serious it is? Is it likely to be a deliberate part of the software or could have been infected by a third party? Seems a bit irresponsible to delete my virus detector if its only doing its job but that might be the only way!

 

[Jd666]

My virus detection has just blocked a load of Microgaming casinos as having 'Trojan horse dropper.generic7.ulj'

Usually just ignore virus things when its from otherwise reputable casinos, but this time it doesn't give me an option to ignore it, and anyway 'Trojan Horse' sounds a bit scary.

Anyone had the same or know how serious it is? Is it likely to be a deliberate part of the software or could have been infected by a third party? Seems a bit irresponsible to delete my virus detector if its only doing its job but that might be the only way!

Same here but its only 32red im getting the trojan warning for.
My other 5 mg casinos are opening fine including nedplay which is part of 32red.

I have tried reinstalling it but getting no joy at all.

Im using avg free

 

[me_and_ed]

I got the same thing, AVG is picking it up on my laptop, Bitdefender did not on my other computer, both at 32RED.

 

[elscrabinda]

Mine is AVG too. Only option to get round it is delete as normal, then report it as a suspected false positive and if they agree will allow you to reinstall it. I know its for our own good but seems odd that they don't allow you to overrule it

 

[smokeeye]

You can add the .exe file to the exception list using AVG.

Go to the taskbar (lower right, with the clock) -> Find AVG icon -> Right click -> enter AVG user interface -> Options (upper right) -> Advanced settings -> Find "Exceptions" on the list (left side) -> click "Add exception" -> Select "file" in the dropdown window* -> Browse to the path of your .exe (ie C:\casino\32red\32red.exe) -> OK.

* Instead of choosing file you can add whole folders to the exception, not advisable though -> Folders -> Choose folder, ie C:\Casino, and all folders under C:\Casino will be excepted.

 

[Mark_32Red (retired acct)]

Hi All,

Thanks to JDrocks for bringing this thread to my attention. :notworthy

I've flagged this with our IT team, while I don't know if it's something we can resolve - they will certainly try.

Thanks
Mark

 

[maphesto]

This is how it looks here!

 

[ChillBill]

Came for that exact reason. I use the paid version of AVG



Is this a false positive and any word from AVG?

 

[smokeeye]

The dropper (basically when it tries to install/infect something) is a Generic7.UIJ which is not on any white list as far as I can see.

Though it comes directly from casinogame.exe so if it is infected someone have to be uploading the casinogame.exe on the 32red.com site itself, in other words most likely someone with ACCESS to edit/upload files would have to do it. Or reroute the traffic but that would have been more noticable.

From 32reds reputation I would say "Yes, it's a false positive" but one can never take this kind of business seriously enough. I would await Mark's words on it.

 

[Mark_32Red (retired acct)]

Hi Again,

I've just spoken to our IT team and this issue has been raised with AVG this morning. In the meantime I believe smokeeye's workaround may be a solution?

Thanks
Mark

 

[Jd666]

You can add the .exe file to the exception list using AVG.

Go to the taskbar (lower right, with the clock) -> Find AVG icon -> Right click -> enter AVG user interface -> Options (upper right) -> Advanced settings -> Find "Exceptions" on the list (right side) -> click "Add exception" -> Select "file" in the dropdown window* -> Browse to the path of your .exe (ie C:\casino\32red\32red.exe) -> OK.

* Instead of choosing file you can add whole folders to the exception, not advisable though -> Folders -> Choose folder, ie C:\Casino, and all folders under C:\Casino will be excepted.

Thank you, now sorted.
Not quite this way you explained as it may be a different version, but i just added "c:\Microgaming\Casino\32red\casinogame.exe" to the antivirus exceptions, so thanks for giving me the clue

 

[smokeeye]

There's many roads to Rome. Glad you sorted it out


@Mark: Casinopatch.exe is reporting as infected aswell, may give them (IT) a heads up when consulting with AVG.

 

[ChillBill]

There's many roads to Rome.

But only 1 to the pot of gold at the bottom of the rainbow

 

[colly]

Also had this issue-let 32red know and they are raising it with AVG-to fix just looked up my download files- got the name of the exe file and added it to the exceptions in the virus vault.

Only happening with 32red- other MCG casino's working OK

 

[GOCC]

Ive had it with Ladbrokes this morning.

 

[incrediblestuff]

Maybe it has something to do with the new live casino?

 

[smokeeye]

May be.

That kind of Trojan is for sniffing networks, getting live user data. Usually to steal CC#, passwords etc.

So if there's some kind of new function (I don't know, don't play MG alot nor Live Casino) that requires persisent connection and meanwhile sending sensible information back and forth, which is likely as it is a Casino afterall, AVG might flag it as it's new.

 

[shjcard]

Got it as well. AVG will not let me access.

 

[shadow123]

comp showed trojan report on either mummys gold or 7 sultans today (cant remember which but looked at both casinos yesterday)
free avg

 

[bsilva028]

i have avast and it dont detect that

i am begin to thinking should i trade of anti virus?

 

[shjcard]

Got around prob by deleting avg and install avast

 

[Jinn]

i have avast and it dont detect that

i am begin to thinking should i trade of anti virus?

But this is a false positive, it's not a real trojan so you should be happy that Avast is not finding it and causing a problem for you like these other users. That's a good reason to NOT trade Avast for another anti virus program.

Of course Avast and all anti-virus software will find false positives occasionally, so I wouldn't change anti-virus software just because of an occasional problem. Avast and AVG both provide reliable and capable software.

 

[Nate]

But this is a false positive, it's not a real trojan so you should be happy that Avast is not finding it and causing a problem for you like these other users. That's a good reason to NOT trade Avast for another anti virus program.

Of course Avast and all anti-virus software will find false positives occasionally, so I wouldn't change anti-virus software just because of an occasional problem. Avast and AVG both provide reliable and capable software.

You are right - Avast was going NUTS over RTG a few months back... It happens

Nate

 

[Mark_32Red (retired acct)]

Hi All,

We've been in touch with AVG and the false positive should now have been fixed. Please let me know if you experience any further problems.

Thanks for bringing it to my attention.

Mark