Please note that this is an incorrect detection and you can safely install CCleaner.
1
False Virus Warning
Started by MrG, Mar 08 2005 08:58 AM
-
This topic is locked
10 replies to this topic
#1 OFFLINE
-
- Admin
-
- 1,113 posts
Administrator
- Gender:Male
- Location:London, UK
Posted 08 March 2005 - 08:58 AM
The latest version of the F-Prot Antivirus definitions seem to be falsely identifying the CCleaner setup as containing the trojan W32/Banco.GL.
Please note that this is an incorrect detection and you can safely install CCleaner.
Please note that this is an incorrect detection and you can safely install CCleaner.
#2 OFFLINE
-
- Members
-
- 27 posts
Member
Posted 17 March 2005 - 06:19 AM
As a newcomer to this forum, I have visited other MS mvp (ie most valuable professionals) forums frequently, and I can assure the folks out there that even the best security software often times incorrectly tags good programs as spyware, adware, or whatever flavor of the month seems in vogue.
It is, therefore, not unusual for the good to be mowed down with the bad sometimes. CCleaner is good folks, rest your bottom dollar on that!
El Cattivo has spoken
It is, therefore, not unusual for the good to be mowed down with the bad sometimes. CCleaner is good folks, rest your bottom dollar on that!
El Cattivo has spoken
#3 OFFLINE
-
- Moderators
-
- 13,496 posts
Captain Spectacular
- Gender:Male
- Location:Shadow Moses
Posted 17 March 2005 - 08:47 AM
Well F-Prot is known for giving false alarms on some compressed files, however it's usually only if they've been compressed with UPX. I immediately decompress any UPX compressed files I come across, since F-Prot isn't the only av scanner that can give a false warning. There's tons of compressed executables floating about - for instance lossy audio encoders LAME, MPC, OGG, etc.
#4 OFFLINE
-
- Members
-
- 16 posts
Member
Posted 30 March 2005 - 03:05 PM
MrG, on Mar 8 2005, 02:58 AM, said:
The latest version of the F-Prot Antivirus definitions seem to be falsely identifying the CCleaner setup as containing the trojan W32/Banco.GL.
Please note that this is an incorrect detection and you can safely install CCleaner.
Please note that this is an incorrect detection and you can safely install CCleaner.
So Does Trendmicro,s UK Housecall even though it is not listed in their data base!!
Later Bill
#5 OFFLINE
-
- Members
-
- 16 posts
Member
Posted 30 March 2005 - 07:37 PM
Andavari, on Mar 17 2005, 02:47 AM, said:
Well F-Prot is known for giving false alarms on some compressed files, however it's usually only if they've been compressed with UPX. I immediately decompress any UPX compressed files I come across, since F-Prot isn't the only av scanner that can give a false warning. There's tons of compressed executables floating about - for instance lossy audio encoders LAME, MPC, OGG, etc.
OOPs I left Out " ITs False" Run Clean Crap once a day atleast. Later Bill
#6 OFFLINE
-
- Members
-
- 1,339 posts
Dial-a-fix author
Posted 01 April 2005 - 09:31 PM
UPX is harmless. It just so happens that it is free, and convenient for malware coders.
Using UPX, I compressed CCleaner.exe from:
438272 bytes to 135168 bytes (428 KB to 132 KB)
Here is a list of the other compressable files:
That's awesome, no?
The directory took up 1,295,839 bytes before
Now it takes up 562,655 bytes, and the program still works fine (that is the point of UPX)
psst, MrG
Using UPX, I compressed CCleaner.exe from:
438272 bytes to 135168 bytes (428 KB to 132 KB)
Here is a list of the other compressable files:
-------------------- ------ ----------- ----------- 49152 -> 18944 38.54% win32/pe CCHelper.ocx 180224 -> 76800 42.61% win32/pe CCListView.ocx 40960 -> 15360 37.50% win32/pe CCSubTimer.dll 61440 -> 27136 44.17% win32/pe CCTab.ocx 151552 -> 58368 38.51% win32/pe CCTreeView.ocx 17408 -> 7168 41.18% win32/pe lang-1031.dll 17920 -> 7168 40.00% win32/pe lang-1033.dll 18944 -> 7168 37.84% win32/pe lang-1034.dll 18944 -> 7680 40.54% win32/pe lang-1036.dll 17920 -> 7168 40.00% win32/pe lang-1040.dll 11776 -> 6656 56.52% win32/pe lang-1041.dll 10752 -> 6656 61.90% win32/pe lang-1042.dll 18944 -> 7168 37.84% win32/pe lang-1043.dll 16896 -> 7168 42.42% win32/pe lang-1044.dll 17920 -> 7168 40.00% win32/pe lang-1045.dll 16384 -> 7168 43.75% win32/pe lang-1049.dll 16896 -> 7168 42.42% win32/pe lang-1053.dll 19456 -> 7680 39.47% win32/pe lang-2070.dll 71131 -> 54747 76.97% win32/pe uninst.exe -------------------- ------ ----------- ----------- 774619 -> 344539 44.48% [ 19 files ]
That's awesome, no?
The directory took up 1,295,839 bytes before
Now it takes up 562,655 bytes, and the program still works fine (that is the point of UPX
)psst, MrG
Click here if CCleaner Issues are re-appearing
DjLizard.net
DjLizard.net wiki
Dial-a-fix
Dial-a-fix tips
DjLizard.net software support forum
Do you live in Bradenton, Sarasota, Tampa, or St. Petersburg, Florida? Visit Digital Doctors where I work :)
DjLizard.net
DjLizard.net wiki
Dial-a-fix
Dial-a-fix tips
DjLizard.net software support forum
Do you live in Bradenton, Sarasota, Tampa, or St. Petersburg, Florida? Visit Digital Doctors where I work :)
#7 OFFLINE
-
- Members
-
- 11 posts
Member
Posted 03 April 2005 - 06:36 PM
MrG, on Mar 8 2005, 03:58 AM, said:
The latest version of the F-Prot Antivirus definitions seem to be falsely identifying the CCleaner setup as containing the trojan W32/Banco.GL.
Please note that this is an incorrect detection and you can safely install CCleaner.
Please note that this is an incorrect detection and you can safely install CCleaner.
I havent ever had a Spyware tool tell me CCleaner had anything.But that is a good heads up..I think that CCleaner is a mighty fine tool..I Have a Computer Business and suggest it in my forums, and place the program on most of my Clients Pc's..
K & D Technology Appreciates every bit of input and time, everyone puts into this forum and the program its self..
Thank You
K Doty
Owner K & D Tech
#8 OFFLINE
-
- Members
-
- 80 posts
Advanced Member
- Location:SinGaPoRe
Posted 22 April 2005 - 03:17 PM
Ad-Aware Has Formally Spot Spybot As A Trojan Horse...
*Moral Of The Story*
Even The Best Software Has It Own Weakness...
*Moral Of The Story*
Even The Best Software Has It Own Weakness...
#9 OFFLINE
-
- Banned
-
- 3,071 posts
Lunarian
Posted 22 April 2005 - 04:51 PM
xd3vilx, on Apr 22 2005, 11:17 AM, said:
Ad-Aware Has Fomally Spot Spybot As A Trojan Horse...
*Moral Of The Story*
Even The Best Software Has It Own Weakness...
*Moral Of The Story*
Even The Best Software Has It Own Weakness...
#10 OFFLINE
-
- Members
-
- 1,339 posts
Dial-a-fix author
Posted 22 April 2005 - 07:15 PM
And Not Every Word Needs To Be Capitalized
Click here if CCleaner Issues are re-appearing
DjLizard.net
DjLizard.net wiki
Dial-a-fix
Dial-a-fix tips
DjLizard.net software support forum
Do you live in Bradenton, Sarasota, Tampa, or St. Petersburg, Florida? Visit Digital Doctors where I work :)
DjLizard.net
DjLizard.net wiki
Dial-a-fix
Dial-a-fix tips
DjLizard.net software support forum
Do you live in Bradenton, Sarasota, Tampa, or St. Petersburg, Florida? Visit Digital Doctors where I work :)
#11 OFFLINE
-
- Members
-
- 80 posts
Advanced Member
- Location:SinGaPoRe
Posted 23 April 2005 - 06:13 AM
Tarun, on Apr 23 2005, 12:51 AM, said:
It was due to a bad ref file. Stay up to date on stories before you spread false word.
