|
|
Post by cptkremmen on Jul 24, 2020 13:01:52 GMT -6
I don't understand this at all, but i ran the updater a few times, having to reboot the PC a couple of times to free up locked files. then it would not run because i did not have the authority, even running it as administrator. another reboot and go into the file folder and rtw2.exe has gone!! everything else is there. Bright ideas how to fix please! I have rerun the updater a few times but no luck
|
|
|
|
Post by seawolf on Jul 24, 2020 18:04:31 GMT -6
That sounds like an antivirus deleted it.
If you have one you should be able to open the logs and restore the file
|
|
|
|
Post by williammiller on Jul 25, 2020 8:20:02 GMT -6
seawolf is most likely correct - Check your antivirus software to see if it has incorrectly flagged/deleted the RTW2 executable - if it has, set the RTW2 folder to be excluded from scans. Also, please let me know which anti-virus program you are using, that way I can inform them of a false heuristic alert on the game.
|
|
|
|
Post by cptkremmen on Jul 25, 2020 11:58:32 GMT -6
I have bitdefender and malwarebytes.
Theyt have never deleted anything before, and did not have issues with prior versions of RTW2?
Andy
|
|
|
|
Post by cptkremmen on Jul 25, 2020 12:01:35 GMT -6
yes it was bitdefender
The file C:\Users\Public\Desktop\Rule the Waves 2.lnk is infected with Trojan.GenericKD.43421162 and was moved to quarantine. It is recommended that you run a System Scan to make sure your system is clean.
it seems to have deleted the file?
|
|
|
|
Post by cptkremmen on Jul 25, 2020 12:04:10 GMT -6
i have managed to restore the file
i presume it does not have this trojan in it?
|
|
|
|
Post by williammiller on Jul 25, 2020 13:12:07 GMT -6
No, it s a false 'heuristic detection' - basically the AV engine looks for code structure in a file that has close to certain characteristics, and if some code matches to within a (variable) degree then it will flag it as malware even if it does not match the actual signature of any known malware....in this case I assume that the DRM protection is what it is 'guessing' is malware.
I had already contacted Bitdefender, but I will resubmit a sample for clearing since it appears they have not yet cleared the incorrect flagging. I always send out a sample for clearing with all major AV engines when we publish an update/patch, but some of them are slow to clear it, and in a (very) few cases some of them never clear it...sigh. I need to start adding code-signing to the updates, that might help with a few AV engines incorrectly flagging the executable.
|
|
