Hi !! Everyone. I just downloaded and installed a software VISIFLY from this web site, but to my surprise this program contains a trojan. I have a screenshot of my antivirus program detecting the trojan.I am using Kaspersky Internet Security 6.0 with latest updates. Any one willing to have a look can request me and iwill email the screenshot... i am very much afraid with the softwares provided....
Give Away the Virus
(16 posts) (10 voices)-
Posted 17 years ago #
-
F-Secure found the same; a trojan in one of the .dll. It is in both the GOTD version and version on Visifly own page. Could be a false positive but will wait for confirmation on that . . .
Posted 17 years ago # -
Perhaps that would explain why the main http://www.giveawayoftheday.com is down. Is it just me or is it down for everyone else?
grey out
Posted 17 years ago # -
I got no notification of a trojan.
Virus is different from a trojan people.
Posted 17 years ago # -
I tried to download it yesterday but got the same notification about the backdoor trojan from Kaspersky...
I have never had a problem with any other download from GOTD.Posted 17 years ago # -
Maybe it's an update file, you can disable in your firewall.
I have used PC boost for a vew years, now they release an update every Sunday night and when I read their history file it says they have to fix a problem with Kaspersky.
Example.
PGWARE PCBOOST VERSION 3 HISTORY DOCUMENTATION
This file describes issues that may affect the use of this product.
* 3.1.8.2007 - Fixed problem where Kaspersky Antivirus would give a false positive report due to the compression of the main executable.
* 3.1.1.2007 - Updated visual components with software to fix various minor graphical/usability bugs within the software.
* 3.12.25.2006 - Updated installer to support Windows 64bit versions, problems with shortcut creation and installing under non-administrative users.
* 3.12.11.2006 - Added full support for 64bit version of Windows Vista.
* 3.12.4.2006 - Improved software compatibility and performance on older computers, also optimized graphics within software.
* 3.11.27.2006 - Fixed problem with compression and digital signature of the main executable causing program not to work on some computers.
* 3.11.20.2006 - Changed Vista accesslevel rights to administrator privilege to allow system level changes from the software.
* 3.11.13.2006 - Changed compression of the software which was causing the software to function incorrectly with some Windows 98 machines.
* 3.11.6.2006 - Fixed problem with the registration online check which would freeze up with Norton Firewall.
* 3.10.30.2006 - Modified the manifest file within software to provide elevated permissions within Windows Vista, and provide full Windows Control 6.0 features.
* 3.10.23.2006 - Fixed small problem with authenticode code signing and software compression errors.
* 3.10.16.2006 - Updated software installer to fix several problems during installation, also added full Vista compatibility with the software installer.
* 3.10.9.2006 - Fixed problem with installer not working correctly under Windows Vista.
* 3.10.1.2006 - Fixed problem where software would not work or install correctly on some Windows Vista computers.
* 3.9.25.2006 - Updated online software registration check. Problem within software which would cause the software to freeze when a firewall is installed on the computer.
* 3.9.18.2006 - Updated component within software which would recognize version of Windows installed incorrectly.
Maybe Kaspersky is the problem.
Posted 17 years ago # -
Hi,
I was reading the comments on VISIFLY and comment #66 by Scotto, his Anti virus found Backdoor.Win32.Hupigon.edk when he tried to install it, so I looked it up at A-Squared web site data base, and found this: quote"a-squared Malware-Info
Name: Backdoor.Win32.Hupigon.edkDescription:
The term Backdoor describes a specific group of Trojan Horses. As Trojans, they are not able to spread itself to other computers. Backdoors allow attackers full control over the victim's PC. Mostly they are split into 3 parts:
1. Server
The part which is put on the victim's PC and takes control over the PC.2. Client
A little program used by the attacker to connect to the server and control the computer.3. Editor
An additional tool to create the server program. It allows the attacker to create an unique server and allows him to set all options and rules for the server.Backdoors are wide spread today. They are one of the most dangerous software programs for users surfing the web beside Worms, Dialers, Spyware and Trojans."
In their Data base there are 1636 variants of "Backdoor.Win32.Hupigon." listed. If you would like to look at A-Squared's data base it can be found here: http://www.emsisoft.com/en/support/malware/default.aspx?showmalware=trojan
The page takes a while to load, for there are thousands of entries. If you installed this program I would defiantly check it out.
Have a good day,
BarryPosted 17 years ago # -
Whatever it is, if F-Secure also found it, then VISIFLY should have a look.
There´s no way I´d simply assume it may be safe and install it.Posted 17 years ago # -
http://www.f-secure.com/v-descs/hupigon_apo.shtml
Might explain the problem as visifly app uses this file.
Posted 17 years ago # -
It's a false positive SoftPedia (a software database [like download.com]) that scans files deeply for all kinds of viruses, trojans and other malware said it's clean
http://www.softpedia.com/get/Internet/WEB-Design/Flash/VisiFly.shtml
If it was really a virus it would never be on softpedia.
Softpedia guarantees that VisiFly 1.0 is 100% CLEAN, which means it does not contain any form of malware, including but not limited to: spyware, viruses, trojans and backdoors.
This software product was tested thoroughly and was found absolutely clean, therefore it can be installed with no concern by any computer user.However, it should be noted that this product will be retested periodically and the award may be withdrawn, so you should check back on this page from time to time.
Posted 17 years ago # -
ive got it tooo!
Posted 17 years ago # -
Hello,
Lee, I looked at F-Secure, that file they describe as being a false positive, "Backdoor.Win32.Hupigon.apo", and probably is, is not the same file as "Backdoor.Win32.Hupigon.edk", a file I could not find a description for at F-Secure.
MASA, have you considered that the download offered at SoftPedia may be clean, but the one offered here might be infected? I do not know, but it is not that hard to check and see if you have Backdoor.Win32.Hupigon.edk on your computer: Do a search for it with the option, show hidden files, or there is a good chance that the file is in, C:\Windows\system32, see if it is among those files in there. If you do find it, there is a lot of places on the Net that a person can have individual files checked out, a lot of anti virus and anti malware programs have a place built right in their software, to submit suspicious files.
Hopefully, this is a false alarm, and the file "Backdoor.Win32.Hupigon.edk" is safe, but I sure would not take the chance that it is not.
Good Luck,
BarryPosted 17 years ago # -
Hi,
I found a little more information on Backdoor.Hupigon at Symantec, http://www.symantec.com/security_response/writeup.jsp?docid=2002-100914-4859-99. I can not be sure if it is the same file as "Backdoor.Win32.Hupigon.edk" but they tell you what files to look for and how to fix it, if it is.
I would be very leery with any file that has "Backdoor" attached to it.
Good day,
BarryPosted 17 years ago # -
I don´t think it should be necessary to do all this work!
As a consumer, I don´t want to meet this kind of problem with new software.
Put it this way...this prog includes something that causes several virus scanners to raise the alarm...what is this "something"???
Surely it doesn´t need to be there: I don´t know of any other progs that use it...and if it was necessary, they need to notify these MAJOR anti-virus software makers so that their scans will let it through. VISIFLY or GOTD need to explain this.
I agree with Barry...when my system says "NO"...then I don´t want it.Posted 17 years ago # -
I scanned with Avast Anti-Virus and Webroot's Spy Sweeper and found nothing.
Posted 17 years ago # -
It is just false positive. Nothing else.
Posted 17 years ago #
Reply
You must log in to post.