× CodeTyphon MS Windows (XP, Vista, Win7, Win8.x and Win10) OS Development, discussions and problems

Question Antivirus Bitdefender

  • Mihai Nester
  • Mihai Nester's Avatar Topic Author
  • Offline
  • New Member
  • New Member
More
9 years 1 day ago #3066 by Mihai Nester
Antivirus Bitdefender was created by Mihai Nester
I greet you all.
I have a big problem.

Bitdefender antivirus "Gen:Variant.Kazy.135641" virus found in these files:

c:\codetyphon\bin\binfpc\i386-win32.zip=>i386-win32/delp.exe Gen:Variant.Kazy.135641 Delete
c:\codetyphon\bin\binfpc\i386-win32.zip=>i386-win32/fpc.exe Gen:Variant.Kazy.135641 Delete
c:\codetyphon\bin\binfpc\i386-win32.zip=>i386-win32/plex.exe Gen:Variant.Kazy.135641 Delete
c:\codetyphon\bin\binfpc\i386-win32.zip=>i386-win32/ppufiles.exe Gen:Variant.Kazy.135641 Delete
c:\codetyphon\bin\binfpc\i386-win32.zip=>i386-win32/ppumove.exe Gen:Variant.Kazy.135641 Delete
c:\codetyphon\bin\binfpc\i386-win32.zip=>i386-win32/pyacc.exe Gen:Variant.Kazy.135641 Delete
c:\codetyphon\bin\binfpc\i386-win32.zip=>i386-win32/rmcvsdir.exe Gen:Variant.Kazy.135641 Delete
c:\codetyphon\fpc\bin\i386-win32\delp.exe Gen:Variant.Kazy.135641 Delete
c:\codetyphon\fpc\bin\i386-win32\plex.exe Gen:Variant.Kazy.135641 Delete
c:\codetyphon\fpc\bin\i386-win32\fpc.exe Gen:Variant.Kazy.135641 Delete
c:\codetyphon\fpc\bin\i386-win32\ppufiles.exe Gen:Variant.Kazy.135641 Delete
c:\codetyphon\fpc\bin\i386-win32\ppumove.exe Gen:Variant.Kazy.135641 Delete
c:\codetyphon\fpc\bin\i386-win32\pyacc.exe Gen:Variant.Kazy.135641 Delete
c:\codetyphon\fpc\bin\i386-win32\rmcvsdir.exe Gen:Variant.Kazy.135641 Delete

I scanned CodeTyphonIns.zip vesion 3.10

Please Log in or Create an account to join the conversation.

More
9 years 1 day ago #3068 by Aleksandar
Replied by Aleksandar on topic Antivirus Bitdefender

nesterm wrote: I greet you all.
I have a big problem.

Bitdefender antivirus "Gen:Variant.Kazy.135641" virus found in these files:

c:\codetyphon\bin\binfpc\i386-win32.zip=>i386-win32/delp.exe Gen:Variant.Kazy.135641 Delete
c:\codetyphon\bin\binfpc\i386-win32.zip=>i386-win32/fpc.exe Gen:Variant.Kazy.135641 Delete
c:\codetyphon\bin\binfpc\i386-win32.zip=>i386-win32/plex.exe Gen:Variant.Kazy.135641 Delete
c:\codetyphon\bin\binfpc\i386-win32.zip=>i386-win32/ppufiles.exe Gen:Variant.Kazy.135641 Delete
c:\codetyphon\bin\binfpc\i386-win32.zip=>i386-win32/ppumove.exe Gen:Variant.Kazy.135641 Delete
c:\codetyphon\bin\binfpc\i386-win32.zip=>i386-win32/pyacc.exe Gen:Variant.Kazy.135641 Delete
c:\codetyphon\bin\binfpc\i386-win32.zip=>i386-win32/rmcvsdir.exe Gen:Variant.Kazy.135641 Delete
c:\codetyphon\fpc\bin\i386-win32\delp.exe Gen:Variant.Kazy.135641 Delete
c:\codetyphon\fpc\bin\i386-win32\plex.exe Gen:Variant.Kazy.135641 Delete
c:\codetyphon\fpc\bin\i386-win32\fpc.exe Gen:Variant.Kazy.135641 Delete
c:\codetyphon\fpc\bin\i386-win32\ppufiles.exe Gen:Variant.Kazy.135641 Delete
c:\codetyphon\fpc\bin\i386-win32\ppumove.exe Gen:Variant.Kazy.135641 Delete
c:\codetyphon\fpc\bin\i386-win32\pyacc.exe Gen:Variant.Kazy.135641 Delete
c:\codetyphon\fpc\bin\i386-win32\rmcvsdir.exe Gen:Variant.Kazy.135641 Delete

I scanned CodeTyphonIns.zip vesion 3.10


I hope that you are aware that this can be a false alarm, but I also hope that CT team have good antivirus installed.

I just tried to unpack that zip in order to tested some files from this list on virustotal site separately.

NOD deleted rmcvsdir.exe

This is from my log:
rmcvsdir.exe	probably a variant of Win32/Bifrose.MTQPCCK trojan	cleaned by deleting - quarantined

Looks like someone else already tested some of those files on virustotal.

Complete archive test result:
www.virustotal.com/file/3cfe6fb9b3a471eb...e3eeb2a38c/analysis/

This indeed look suspicious, but as I said it could be a false alarm too.

Please Log in or Create an account to join the conversation.

  • Mihai Nester
  • Mihai Nester's Avatar Topic Author
  • Offline
  • New Member
  • New Member
More
8 years 11 months ago #3078 by Mihai Nester
Replied by Mihai Nester on topic Antivirus Bitdefender
I greet you all.

I returned the following observations:

1. I downloaded today CodeTyphonIns.zip version 3.10 from www.pilotlogic.com ..., was scanned with Bitdefender Antivirus and was a pleasant surprise when the scan was:

C:\codetyphon\lazarus\tools\lazdatadesktop\lazdatadesktop.exe Gen:Variant.Adware.SMSHoax.71 Delete
C:\codetyphon\lazarus\tools\cthexeditor\cthexeditor.exe Gen:Variant.Adware.SMSHoax.71 Delete

I hope that will be resolved and these 2 files.

Congratulate all working on project CodeTyphon.
It's a good job.
More sucess in future and the next step ... CT ver 4.00, and the next step .... and so...

Good health and strength!

Please Log in or Create an account to join the conversation.

More
8 years 11 months ago #3145 by Arioch
Replied by Arioch on topic Antivirus Bitdefender
Maybe that was just a bad day in Romania. Decline of the moon and such.

the-arioch.livejournal.com/10932.html

Please Log in or Create an account to join the conversation.

  • Sternas Stefanos
  • Sternas Stefanos's Avatar
  • Away
  • Moderator
  • Moderator
  • Ex Pilot, M.Sc, Ph.D
More
8 years 11 months ago - 8 years 11 months ago #3147 by Sternas Stefanos
Replied by Sternas Stefanos on topic Antivirus Bitdefender

nesterm wrote: I greet you all.

I returned the following observations:

1. I downloaded today CodeTyphonIns.zip version 3.10 from www.pilotlogic.com ..., was scanned with Bitdefender Antivirus and was a pleasant surprise when the scan was:

C:\codetyphon\lazarus\tools\lazdatadesktop\lazdatadesktop.exe Gen:Variant.Adware.SMSHoax.71 Delete
C:\codetyphon\lazarus\tools\cthexeditor\cthexeditor.exe Gen:Variant.Adware.SMSHoax.71 Delete

I hope that will be resolved and these 2 files.

Congratulate all working on project CodeTyphon.
It's a good job.
More sucess in future and the next step ... CT ver 4.00, and the next step .... and so...

Good health and strength!


Thanks Sir
CodeTyphon build
C:\codetyphon\lazarus\tools\lazdatadesktop\lazdatadesktop.exe and
C:\codetyphon\lazarus\tools\cthexeditor\cthexeditor.exe
at "Lazarus build procedure" from source files,
you can check the source of these tools by your self.

Your antivirus behavior it's not logical...

PilotLogic Architect and Core Programmer
Last edit: 8 years 11 months ago by Sternas Stefanos.

Please Log in or Create an account to join the conversation.

  • 4aiman
  • 4aiman's Avatar
  • Offline
  • Junior Member
  • Junior Member
  • Comix creator
More
8 years 11 months ago #3258 by 4aiman
Replied by 4aiman on topic Antivirus Bitdefender
I think they have virus on their PCs which infects just built exe. Then antivirus delete infected files on check. (Bitdefender hasn't got stealth mode anyway, so there's plenty of time to get infected.)

コンソールマニアック

Please Log in or Create an account to join the conversation.