Malicious Software found In Epson Reset Software from OctoInkjet

turbguy

turbguy

Printer Master
Platinum Printer Member
Joined
Sep 10, 2007
Messages
1,562
Reaction score
1,441
Points
293
Location
Laramie, Wyoming
Printer Model
Canon i960, Canon i9900
Malewarebytes says that the Epson Reset Software for my Epson 800 supplied by OctoInkjet contains malware! Is this part of hacking for the software, or is it real??

See below, result of scan.

2540_clipboard10.jpg



Wayne
 
panos

panos

Print Addict
Joined
Apr 14, 2005
Messages
623
Reaction score
18
Points
166
Location
Greece
"Malicious" is not a proper adjective for PUP (=Potentially Unwanted Application).

A Hacktool.Patcher is a typical component of utilities that circumvent protections such as Epson counters. If in doubt, use software such as Malware Defender to check out whether Octo's proggie attempts to patch your system files or anything else it's not meant to patch.
 
cls

cls

Print Addict
Joined
Jan 13, 2013
Messages
413
Reaction score
152
Points
188
Location
Germany Hamburg
Printer Model
8560, 8570, 1400, 1500W, P50 e
Same results would most likely found in ANY serial/keygenerator or Cracking Software since the Original Developer of the piece of soft- or hardware would report these coded "hacks" as malicious or even threatening piece of software
no worries buddy
 
websnail

websnail

Printer VIP
Platinum Printer Member
Joined
Oct 27, 2005
Messages
3,666
Reaction score
1,349
Points
337
Location
South Yorks, UK
Printer Model
Epson, Canon, HP... A "few"
Perhaps this will help:
http://www.octoink.co.uk/kb/questions/119/

I've noticed that various utilities that have been around for years are now being classified as malware because of automated heuristic tests which naturally enough have a "healthy"? dose of paranoia built in.

I did a series of checks on a whole host of the utilities and did some checking with folks in the know. What you have to know is that Epson have written in various checks to presumably stop general use and these include date checks and a filesize check. The latter is the key and the process of unlocking has to fake the filesize in order to stop it being detected.

So, in effect what happens is that the heuristic scan detects that the filesize has indeed been faked and automatically assumes, something faked = malware.



As far as the files that I have go, they've all been tested as best as I can and I don't have any issues with using them. Some are being classified as trojans and creating additional concerns (such as the original post), to the point that I've decided that in the near future I'll be switching to providing waste kits with WICReset keys, as standard bundles.


All of this said though, having a tool that actually keeps an eye on program processes is the only way to be 100% sure so really if in doubt, switch to a WICReset key + reset to be sure.

Hope that clarifies.
 
turbguy

turbguy

Printer Master
Platinum Printer Member
Joined
Sep 10, 2007
Messages
1,562
Reaction score
1,441
Points
293
Location
Laramie, Wyoming
Printer Model
Canon i960, Canon i9900
Thanx all....I'll tell malwarebytes to ignore it on future scans.

Wayne
 
You must log in or register to reply here.

Latest posts

Top