cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Drivers & Software

andre
Adept II
‎07-17-2019 04:23 PM

Radeon updates keep access to systemrequirementslab.com when ESET internet security reports "Potentially unwanted content found". AMD Please!!

Howdy,

As I am trying to bring here, so far as it is a big topic in ESET Forum. The Radeon software in my case rightnow I'm using the latest one 19.7.2 with a RX 580 Rog Strix 8gb.


Everytime I try to use "game explorer" to set up different settings, my payed ESET Internet security freaks out poping lots of warnings and respective blocks.

http://amd.systemrequirementslab.com/ - Eset report "This web page is on a list of websites with unc...

Untitled.png

Reporting, reading info, I've found that this is not a case of false positive. As reply made by Eset admin "The application served by the blocked address is detected as  Win64/SystemRequirementsLab PUA so the PUA block is ok and it's not a false positive. The question is why on earth RadeonSettings.exe attempt to access that url."

Thread here - https://forum.eset.com/topic/19961-eset-blocking-systemrequirementslab-in-amd-catalyst/?tab=comments... 

This is too frustrating. Being customer of both companies and deal with this. What it is happening with this link? If it truly is a false positive, is it trusteful? ESET thinks not!!! Then AMD staff can verify and explain to ESET.

please can you have a look in this?

My eset log file have hundred of "Blocked by PUA blacklist"

Time;URL;Status;Application;User;IP address;SHA1
17/07/2019 21:29:35;http://www.systemrequirementslab.com/services/systeminfo/xxxxxx-6815-79D2-1E87-A9A4046D1CA4/1232?apikey=0;Blocked by PUA blacklist;C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe;TENNO\pc;52.44.157.166;69DA926E73F28F1926737F71D50FE995E010D014

Can you please help sort this out,
Thanks your attention.

7 Replies
kingfish
MVP
‎07-18-2019 02:24 AM

You should ask/report your issue to AMD > Online Service Request | AMD 

andre
In response to kingfish
Adept II
‎07-18-2019 07:54 AM

Thnk you Sir,

Just did it, but as far as I see this is a common issue for those who use AMD catalyst and ESET internet security, i've posted here also to check other users feedback on that.

andre
Adept II
‎07-19-2019 08:08 AM

While I'm still waiting for a reply. 

I'm digging this further. So aparentely the Raden Catalyst (game tab) tried to access the reported URL. Mean while i've noticed that there's a crappy file that might be used by this url/application - Caught on Virus Scan

One engine detected this file
b1875aba8fde849d88768108c5440d8d7c8f7299763492f6cf8e3dcbbfc09eaa
Detection.exe

https://www.virustotal.com/gui/file/b1875aba8fde849d88768108c5440d8d7c8f7299763492f6cf8e3dcbbfc09eaa... 

For the record - Last time I allowed that URL in ESET at the end (after 1 week) I had to reinstall my windows, since started to behave abnormally. 

Why Detection.exe needs to access all that??? 

Why on Earth does the Detection.exe file creates a important_document.exe and why Detection.exe need to watch over my browsers history?? 

Processes Created important_document.exe

this is reported on the {ticketno:[8200886857]} - I'm still waiting for a reply, probably I'll trash this graphic board and move to Nvidia...... It's unbelivable that AMD it is silent in this subject.

0 Likes
kingfish
In response to andre
MVP
‎07-20-2019 01:03 AM

Do you have the "AMD User Experience" program enabled? Check it here:

If you did 'join' during driver install, it will offer to quit.

This program checks all your settings..in Wattman and in the game you are playing and reports back to AMD. Maybe the AV program is seeing that as a 'unwanted program

0 Likes
magiqx
Adept I
‎11-20-2019 05:03 PM

Maybe this helps. It drove me crazy as well. Go to preferences and unflag the show upgrade advisor. At least those notifications dont show anymore.Capture.PNG

0 Likes
jahus
Journeyman III
‎03-13-2020 06:55 AM

@andre

You are stating:

For the record - Last time I allowed that URL in ESET at the end (after 1 week) I had to reinstall my windows, since started to behave abnormally. 

Why Detection.exe needs to access all that??? 

Why on Earth does the Detection.exe file creates a important_document.exe and why Detection.exe need to watch over my browsers history?? 

 

Processes Created important_document.exe

Without giving any information about it.

AMD is using their API, calling these:

http://amd.systemrequirementslab.com/services/ping

http://www.systemrequirementslab.com/services/systeminfo/

http://amd.systemrequirementslab.com/api/analysis/

http://amd.systemrequirementslab.com/api/requirements?

You're talking about a file. Where is it? Doesn't ESET detect that it's malicious? What information do you have to assume that it's the reason why you had to reinstall Windows?

After allowing these addresses in the order they show up, I can't see anything else requested by AMD.

One can use Fiddler to check what it really downloads. It's even http, no security…

0 Likes
Zarmoxis911
In response to jahus
Journeyman III
‎01-12-2021 04:06 PM

Has any one from AMD replied ever? i have been loyal since 1989 switching from nvidia back in the day graphics card when they had less then 512k not gig ram, i am in my home town the local pc fixer and i have always stood by saying it is way better per £ then nvidia to do the same job.... but this problem has become more then a joke....... where are u amd? i dont even know what to say to my customers any more other then how unprofessional your being. In old days you could install your software under custom rather then express and select things u dont want. This problem is one. I dont even want to use this system requirements web... dont care what others set there games to work that's easy turn on if dont work turn  it back off. It is called learning curve. how hard is it to just put a tick in the install to want installed or not install this. why are u forcing something that is broken, unsecured and junk...since u dont fix or answer? Really no one . So my question is ARE you going to fix or at least make it so we can opt out that part of your software. feed up with all the hits from eset to you unsecure web site!!! how hard is it to program a line with a box opt in or out of this option ? Iwould say i am looking forward to an aswer and resolve ,but every where i have been online say's you aint this far so.... what is really goin on ?

0 Likes