Forum Thread: Virus inside archive proposed

You are currently viewing a forum thread in the Secunia Community Forum. Please note that opinions expressed here are not of Secunia but solely reflect those of the user who wrote it.

This thread was submitted in the following forum:
Programs

Relating to this vendor:
And, this specific program:
XChat 2.x

This thread has been marked as locked.
besatanas Virus inside archive proposed
Member 27th Jun, 2009 09:39
Ranking: 0
Posts: 1
User Since: 27th Jun, 2009
System Score: N/A
Location: N/A
According to the PSI proposal to download xchat 2.8.7c.exe to correct a vulnerability, it's seems, according to antivir (up to date) that the file contain a virus

Here the report of the antivirus:
Dans le fichier 'C:\Users\php\AppData\Local\Microsoft\Windows\Temp orary Internet Files\Content.IE5\907BLVUQ\xchat-2.8.7c[1].exe'
un virus ou un programme indésirable 'TR/Crypt.CFI.Gen' [trojan] a été détecté.
Action exécutée : Refuser l'accès

It's seems that on the website,they have the xchat 2.8.7e.exe version witch is looking safe.
Is there a false positiv, or that file is compromised

Regards

Anthony Wells RE: Virus inside archive proposed
Expert Contributor 27th Jun, 2009 10:36
Score: 2468
Posts: 3,356
User Since: 19th Dec 2007
System Score: N/A
Location: N/A
Last edited on 27th Jun, 2009 10:39
I don't know about xChat , but you can load your file to Avira (even a quarantine one) as a possible FP ; I use this link usually :-

http://analysis.avira.com/samples/index.php

They usually have a pretty quick turnaround .

You can always double check using Jotti and VirusScan.

Avira gets the odd FP if you have the heuristics set to high.

Better safe than sorry.

Bonne Journée
Anthony

--


It always seems impossible until its done.
Nelson Mandela
Was this reply relevant?
+0
-0

This thread has been marked as locked.