[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[h-e-w] Possible virus in emacs-23.4-bin-i386.zip (hexl.exe, sorted-doc.
From: |
Torsten Schuetze |
Subject: |
[h-e-w] Possible virus in emacs-23.4-bin-i386.zip (hexl.exe, sorted-doc.exe, digest-doc.exe) |
Date: |
Wed, 01 Feb 2012 23:08:14 +0100 |
User-agent: |
Mozilla/5.0 (Windows NT 6.1; WOW64; rv:10.0) Gecko/20120129 Thunderbird/10.0 |
Hi,
I've just seen that a new emacs version is about to be released. I've
downloaded
http://ftp.gnu.org/pub/gnu/emacs/windows/emacs-23.4-barebin-i386.zip
last modified 29-Jan-2012 19:50
http://ftp.gnu.org/pub/gnu/emacs/windows/emacs-23.4-bin-i386.zip
and tried to unpack it on my Windows 7 system. At home, my antivirus
solution Bitdefender 2012 alarmed me about the Gen:Variant.Graftor.11514
virus in the three files
bin/hexl.exe
bin/sorted-doc.exe
bin/digest-doc.exe
Then I've uploaded the small (3.4 MB) binary file
emacs-23.4-barebin-i386.zip to VirusTotal. Here I received 13 (from
total 43) virus messages with virus names
Artemis!4749CC4C3512
TR/Graftor.11514.13
Trojan-Downloader.win32.Agent.bmzd
Trojan.Win32.Siscos!IK
etc.
Could you please check if these binaries are okay or if they are
infected? It would be a disaster if GNU site distribute a Trojan horse
with Emacs.
Thanks,
Torsten
PS: BTW, the libXpm.dll seems to be much smaller than in the 23.3
binary. I obtain only very simple icons. If I replace libXpm.dll by the
23.3 version, everything seems to be okay.
- [h-e-w] Possible virus in emacs-23.4-bin-i386.zip (hexl.exe, sorted-doc.exe, digest-doc.exe),
Torsten Schuetze <=