rejetto forum

"unsafe"

rejetto · 25 · 6679

0 Members and 1 Guest are viewing this topic.

Offline bmartino1

  • Tireless poster
  • ****
    • Posts: 900
  • I'm only trying to help i mean no offense.
    • View Profile
    • My HFS Google Drive Shared Link
I am seeing this also with Windows 10 defender and Malwarebytes.

Trojan:Win32/Spallowz.A!cl
Alert level: Severe

i have seen that one too, what i have found is that the hfs file downloaded was form a "ISP cache" site that had a bad version and was corrupted...
(i have worked with Microsoft "live/ defense(defender) /security essential / ms anti spyware) - the up to date official download done't get claimed as a "Trojan / virus / risk-ware / etc....

lorgarth , i would recommend you to try to re download, if have to , will place a google download link like before (https) cant' be sync-seeded via the ssl certs renewal process, so its harder for an ISP to "cache the site.....

the problem / why this topic was started was that AV program are giving a false positive...
I can 100% be sure that there is not a problem with the latest build...

« Last Edit: July 04, 2016, 05:18:11 AM by bmartino1 »
Files i try to keep and share can be found on my google drive:

https://drive.google.com/drive/folders/1FOWi3Gqaldld6JLXvZ-biDv4RSguf0IC


Offline rejetto

  • Administrator
  • Tireless poster
  • *****
    • Posts: 13159
    • View Profile
bmartino1, i noticed that you are making lots of typos lately. A martini spilled on your keyboard?


Offline bmartino1

  • Tireless poster
  • ****
    • Posts: 900
  • I'm only trying to help i mean no offense.
    • View Profile
    • My HFS Google Drive Shared Link
:) :P ...

yeah yeah... most of my time on the forum is late at night, i'm a bad typist.. on top of tired and dyslexic... i will try to fix what i can...
Files i try to keep and share can be found on my google drive:

https://drive.google.com/drive/folders/1FOWi3Gqaldld6JLXvZ-biDv4RSguf0IC


Offline LeoNeeson

  • Tireless poster
  • ****
    • Posts: 686
  • Still busy...
    • View Profile
    • twitter.com/LeoNeeson
bmartino1, i noticed that you are making lots of typos lately. A martini spilled on your keyboard?
You nailed it right on the spot!... ;D

yeah yeah... most of my time on the forum is late at night, i'm a bad typist.. on top of tired and dyslexic... i will try to fix what i can...
Don't worry, I personally understand what you write. But this is a problem for those who need to use Google Translator (I'm not referring to Rejetto since he knows English), but there are russians, germans and chinese in this forum who need to use a translator, and they can't get the translation done properly. May be you should use some extension for your browser, that lets you automatically correct any typos fast and easy. ;)

Look here: LanguageTool (for Firefox) & (for Chrome)

Like you say: "I'm only trying to help, I mean, no offense." :P
« Last Edit: July 04, 2016, 07:58:14 AM by LeoNeeson »
HFS in Spanish (HFS en Español) / How to compile HFS (Tutorial)
» All my work/posts/data anywhere on internet is on Public License!


Offline lorgarth

  • Occasional poster
  • *
    • Posts: 4
    • View Profile
i have seen that one too, what i have found is that the hfs file downloaded was form a "ISP cache" site that had a bad version and was corrupted...
(i have worked with Microsoft "live/ defense(defender) /security essential / ms anti spyware) - the up to date official download done't get claimed as a "Trojan / virus / risk-ware / etc....

lorgarth , i would recommend you to try to re download, if have to , will place a google download link like before (https) cant' be sync-seeded via the ssl certs renewal process, so its harder for an ISP to "cache the site.....

the problem / why this topic was started was that AV program are giving a false positive...
I can 100% be sure that there is not a problem with the latest build...

The download I pulled was from here, or I thought it was. I will try again and see what I get.

From the link on http://www.rejetto.com/hfs/?f=dl  I get the save from http:rejetto.webfactional.com  I also got a download link from a .cz page. both pages flagged the download as Win32.Spallowz.A!cl infected.

Tried a third time from http://www.melauto.it   same thing flagged. :(
« Last Edit: July 04, 2016, 04:28:53 PM by lorgarth »


Offline bmartino1

  • Tireless poster
  • ****
    • Posts: 900
  • I'm only trying to help i mean no offense.
    • View Profile
    • My HFS Google Drive Shared Link
https://drive.google.com/open?id=0B9u5dgydfOEueENzajBhY3F5SG8

hfs 2.3 i ...
exe...

try this...
strangeness even the download(as i also tested it...) form a clean hfs off the https of my google drive is causing this...

although, i believe it to be something in Chrome , try using Firefox (fire fox worked properly on the https link and the official rejeto download link...

all clear via scan for the link.... (definitely google browser....)
https://www.virustotal.com/en/url/f4cc586f9017dfce3f23e1349357212660c5ae687942ca803599208431ee201c/analysis/1467737565/

« Last Edit: July 05, 2016, 04:53:32 PM by bmartino1 »
Files i try to keep and share can be found on my google drive:

https://drive.google.com/drive/folders/1FOWi3Gqaldld6JLXvZ-biDv4RSguf0IC


Offline lorgarth

  • Occasional poster
  • *
    • Posts: 4
    • View Profile
https://drive.google.com/open?id=0B9u5dgydfOEueENzajBhY3F5SG8

hfs 2.3 i ...
exe...

try this...
strangeness even the download(as i also tested it...) form a clean hfs off the https of my google drive is causing this...

although, i believe it to be something in Chrome , try using Firefox (fire fox worked properly on the https link and the official rejeto download link...

all clear via scan for the link.... (definitely google browser....)
https://www.virustotal.com/en/url/f4cc586f9017dfce3f23e1349357212660c5ae687942ca803599208431ee201c/analysis/1467737565/

The file you linked came up clean, both with Malewarebytes and Windows Defender. 

thanks


Offline LeoNeeson

  • Tireless poster
  • ****
    • Posts: 686
  • Still busy...
    • View Profile
    • twitter.com/LeoNeeson
lorgarth: Just out of curiosity, what's your ISP? (Internet Service Provider). Because what happened to you, it's your ISP's fault. Well, I'm glad you solved.
« Last Edit: July 07, 2016, 05:56:54 AM by LeoNeeson »
HFS in Spanish (HFS en Español) / How to compile HFS (Tutorial)
» All my work/posts/data anywhere on internet is on Public License!


Offline lorgarth

  • Occasional poster
  • *
    • Posts: 4
    • View Profile
lorgarth: Just out of curiosity, what's your ISP? (Internet Service Provider). Because what happened to you, it's your ISP's fault. Well, I'm glad you solved.

I have TDS telecom


Offline LeoNeeson

  • Tireless poster
  • ****
    • Posts: 686
  • Still busy...
    • View Profile
    • twitter.com/LeoNeeson
I have TDS telecom
Thank you. This happened to some other user in the past, as you can read here. Usually ISP caches files from HTTP links, but not from HTTPS (SSL). This explains why a file hosted on Google Drive (hosted on HTTPS), get download "cleanly" on your side. You can read an explanation on how ISP caches files, here.
HFS in Spanish (HFS en Español) / How to compile HFS (Tutorial)
» All my work/posts/data anywhere on internet is on Public License!