Yourname942

If I use the VM with no network connections, is there any way for me to manually find malware hidden in the files? I'm not really sure what to look for specifically. I definitely want to try using a VM to more closely inspect the files

Thank you for the detailed response. Just to confirm, is Hyper-V your sandbox VM? I used ESET to scan the files I torrented, but they look very suspicious from virustotal, but I don't really know how to parse the info - knowing if it is a false positive/etc.

Hey thank you for the info. Which VM do you use? How do you disable the various types of sharing with the host? Also, how do you validate? Sorry for all the questions, but that seems like it may be my only option

Oh okay, thanks. I don't know how it compares with Eset for example. My antivirus said the files were clean, but the virustotal results are really sketchy.

I mean yeah that makes sense, but I don't know enough about torrenting (nor tech in general) to know if something is safe/trustworthy sadly.. I feel like I'm probably better off spending several hundreds on a subscription, than more likely than not be hacked/get advanced spyware. I doubt they wouldn't prey on dumb people like me if it is easy. If I was more knowledgeable it would probably be possible to manually remove infected bits of a torrented file to make it work, but idk.

Thank you for the advice. Is clamav just another antivirus software?

I ran my antivirus on the plugins.zip folder and it didn't detect anything. Then I ran it on the master collection folder, and it also didn't detect anything, but it suspiciously finished almost immediately although it does only contain the iso (37.5GB), .info file (2.46KB), .sha (85B), .md5 (77B), so I'm not sure. Also, I just posted the virustotal results in this thread.

How would I know if there was hidden spyware/malware if I ran it in a VM? (if they are smart they try to be undetected)

This was the result: https://imgur.com/a/5rEpIga I'm not sure if that means that it is safe/unsafe, but it seems extremely suspicious.

Wouldn't it be different since non-official versions are cracked? I'm also not really sure how I would even do so for that plugin since it is a subscription, nor how to do so for the master collection, because it technically does not exist officially.

I mean, is it safe to assume that the torrent from megathread > monkrus > uztracker is safe? I've read that you either go genp or monkrus for less chance of malware.

Alternatively, do you think splitting the 37.5GB file into 650MB pieces and then scanning with virustotal would do much good?

Thank you for the advice. Get them separate just because of how few I am looking to get? I feel like there might be more setup required if I get them separately.

I also don't know if getting them separate would cause me to get redundant installers/managers/rules+patches each trying to apply the same patches.