OVTune is a virus until proven otherwise

I just received my $799 purchase of OVTune, downloaded their application from www.ovtuned.com and immediately my antivirus software quarrantined it as a trojan.

I uploaded the file to virustotal.com and here are the results
p5flash_V1.2.2.exe
https://www.virustotal.com/gui/file...2ee3c9c62729c099c40469129f9bc566426/detection

p5flash_V1.2.1.exe
https://www.virustotal.com/gui/file...161aa9ee1bd2475c39ff80c78afbb86fee3/detection

I have reached out to OVtune and also submitted samples of both files above to Cisco AMP Symantec for deep analysis. I'll post the reports once they come back..

 

Hmmm, I’m sure there’s an explanation on this. Lots of people are running the tune problem free.

 

Just disable antivirus on your computer and install the tune. There is nothing harmful in the package. OV is not trying to hack you lol

 

This is most likely the case, but it never hurts to be cautious. I’m curious to hear the report back on the deeper analysis.

 

That sounds like something an OVTune fanboy would say.



























Just kidding brotha.

 

It’s probably scraping the names and sees “VIRUS” because the name of the company. A ton of people had it pop up with windows defender(me included). DISABLE, INSTALL, RE-ENABLE.

 

how do you prove it otherwise? how about hundreds of users with zero issues...

really should read up on all available info before drawing so much attention, OP. not necessary or helpful. all answers available, always have been.

 

Its because some of the code in the flash utility is locked so it can't be stolen. Virus scanners can't read the code so they flag it as a virus.

Most likely the deep analysis will still say virus unless they take the time to crack and decompile the code.

 

Maybe, maybe not. I’m still curious to hear back on the report.

 

that was just my guess. But @cstern1 description sounds more plausible

 

Yeah that seems like a plausible cause for it. I know nothing about tune coding though so not sure if it’s accurate.

What I can guarantee though is this threads about to be filled with a lot of hate towards OP and people speculating some ridiculous shit in the meantime. This is TW after all.

 

Its what @OVTune has said and it makes sense. Either that, or its because it is a utility that can flash code to something that supposedly couldn't be hacked. So that implies the utility is malicious. Sort of like how antivirus quarantines keygens and other fun utilities one may have.

 

I assume you haven't submitted for the reg key yet? I would wait for the results before going past the point of no money return.

 

OVT is the virus remover that cleaned my Tacomas crap factory tune. Your virus scanner just didn't want to be 1-uped.

 

This is a known issue in the OVTune instructions online and on Tacomaworld. Many software installs require the virus program to be disabled. Like tax software, etc. However, of course it is your absolute right to question and check it. Me, I am taking the risk.

 

Two messages total... mhmmm looks like @OVTune started a new profile just to enjoy some popcorn on a Saturday night ..

 

I'm only reporting exactly what I found. I'm a retired computer security professional, I know these AV tools sometimes have false positives however to have 23 different antivirus vendors flag the two latest versions of OV tune as malware is not a good thing.

I'm not suggesting OVTune is intentionaly putting malware in their application, it's possible that a hacker has altered their software.

 

I have access to very expensive malware analysis services, the files are being analyzed. As soon as I have results I will post. Anyone is also free to repeat these tests.

Filename MD5
p5flash_V1.2.1.exe f064c5b93b1f8c01d404f04c3bdadc8c


Filename MD5
p5flash_V1.2.2.exe 2d600ee1c16c273262fd16429711e238