msg122101 - (view) |
Author: Vil (VilIgnoble) |
Date: 2010-11-22 09:16 |
scan on msi installer x86 win 3.x python gives Win32/Palevo.DZ worm and erases.
|
msg122211 - (view) |
Author: Martin v. Löwis (loewis) * |
Date: 2010-11-23 12:03 |
What file specifically did you download?
|
msg122593 - (view) |
Author: Vil (VilIgnoble) |
Date: 2010-11-27 23:54 |
http://www.python.org/ftp/python/3.1.2/python-3.1.2.msi
it was this link on download page for msi windows x86 installer
On Tue, Nov 23, 2010 at 6:03 AM, Martin v. Löwis <report@bugs.python.org>wrote:
>
> Martin v. Löwis <martin@v.loewis.de> added the comment:
>
> What file specifically did you download?
>
> ----------
>
> _______________________________________
> Python tracker <report@bugs.python.org>
> <http://bugs.python.org/issue10500>
> _______________________________________
>
|
msg122641 - (view) |
Author: Ezio Melotti (ezio.melotti) * |
Date: 2010-11-28 08:56 |
I checked both the 3.1.2 and 3.1.3 x86 msi installers on windows xp machine using Avast and it didn't find anything.
|
msg122644 - (view) |
Author: Georg Brandl (georg.brandl) * |
Date: 2010-11-28 10:02 |
At the very least we'd need to know what virus scanner, and what version of it, the OP used.
|
msg122648 - (view) |
Author: Stefan Krah (skrah) * |
Date: 2010-11-28 10:40 |
Checked python-3.1.2.msi with f-prot, no viruses. Checked download
with firefox (which claims to do a short virus scan), no results.
|
msg122650 - (view) |
Author: Senthil Kumaran (orsenthil) * |
Date: 2010-11-28 11:07 |
No problems when I downloaded and installed on Windows XP.
I scanned using the Symantec EndPoint protection and no threats found.
|
msg122657 - (view) |
Author: Michael Foord (michael.foord) * |
Date: 2010-11-28 14:12 |
Scanning with Microsoft Security Essentials says "no threat detected".
|
msg122661 - (view) |
Author: Stefan Behnel (scoder) * |
Date: 2010-11-28 14:50 |
File checked with ClamAV under Linux, no findings.
|
msg122677 - (view) |
Author: Jesús Cea Avión (jcea) * |
Date: 2010-11-28 16:28 |
VirusTotal says it is clean.
http://www.virustotal.com/file-scan/report.html?id=ca802f144a7e8268a773fa2567fecb0a1d792c62c00f751f27d103a263352113-1290961377
I suggest to close this issue.
|
msg122682 - (view) |
Author: Rafael Villar Burke (Rafael.Villar.Burke) |
Date: 2010-11-28 16:47 |
Latest AVG Free on windows (9.0.872) says it's clean.
|
msg122686 - (view) |
Author: Stephen Hansen (ixokai) |
Date: 2010-11-28 17:27 |
Latest Norton 360 fully updated has it clean; further, File Insight has it marked as Trusted (thousands of Norton users have had the same file installed for over a month with no reported trouble). Seems clean to me.
|
msg122697 - (view) |
Author: Martin v. Löwis (loewis) * |
Date: 2010-11-28 18:28 |
Thanks for the confirmations; closing this report as invalid.
|
msg122708 - (view) |
Author: Terry J. Reedy (terry.reedy) * |
Date: 2010-11-28 19:14 |
And I checked both .2 and .3 with McAfee "Nothing found"
|
msg122764 - (view) |
Author: Vil (VilIgnoble) |
Date: 2010-11-29 03:59 |
I am using CA antivirus, I downloaded 3.13 in link
http://www.python.org/ftp/python/3.1.3/python-3.1.3.msi
and it is still showing Win32/Palevo.DZ when i scan and it quarantines and
then erases the installer msix86 binary (does not include source)
On Sun, Nov 28, 2010 at 2:56 AM, Ezio Melotti <report@bugs.python.org>wrote:
>
> Ezio Melotti <ezio.melotti@gmail.com> added the comment:
>
> I checked both the 3.1.2 and 3.1.3 x86 msi installers on windows xp machine
> using Avast and it didn't find anything.
>
> ----------
> nosy: +ezio.melotti
>
> _______________________________________
> Python tracker <report@bugs.python.org>
> <http://bugs.python.org/issue10500>
> _______________________________________
>
|
msg122766 - (view) |
Author: Jesús Cea Avión (jcea) * |
Date: 2010-11-29 04:13 |
I would recommend to the poster to contact CA and to notify them that they have a false positive no other antivirus (check VirusTotal site) in the world is having :-).
|
msg122768 - (view) |
Author: Stephen Hansen (ixokai) |
Date: 2010-11-29 04:26 |
I downloaded that linked MSI again (as its different from the one originally reported)-- and it too is still coming up as clean.
I would suggest that its clearly either a false positive as Jesús is suggesting... or something on your side or between you and python.org is infecting it as or right after you download it.
|
msg122769 - (view) |
Author: Jesús Cea Avión (jcea) * |
Date: 2010-11-29 04:32 |
The virustotal (Note: I am associated to those guys) link I posted included HASHES you can verify in your side to know if it is a false positive or the file is actually altered by "something" in transit/in your site.
|
msg122870 - (view) |
Author: Vil (VilIgnoble) |
Date: 2010-11-29 21:04 |
I sent the file I downloaded to total virus and it say,
Result:
0/ 36 (0.0%)
I'm not sure what that means, but I am guessing a Result of "-" means it did
not find a virus, I have 2.7.1 installed and it scanned the installer and
was clean, so though I do not know what the Result says I am going to say it
shows clean on my side in the folder I downloaded to; I will send it in to
CA to see if they can recognize it as a false positive.
2010/11/28 Jesús Cea Avión <report@bugs.python.org>
>
> Jesús Cea Avión <jcea@jcea.es> added the comment:
>
> The virustotal (Note: I am associated to those guys) link I posted included
> HASHES you can verify in your side to know if it is a false positive or the
> file is actually altered by "something" in transit/in your site.
>
> ----------
>
> _______________________________________
> Python tracker <report@bugs.python.org>
> <http://bugs.python.org/issue10500>
> _______________________________________
>
|
|
Date |
User |
Action |
Args |
2022-04-11 14:57:09 | admin | set | github: 54709 |
2010-11-29 21:04:34 | VilIgnoble | set | files:
+ unnamed
messages:
+ msg122870 |
2010-11-29 04:32:05 | jcea | set | messages:
+ msg122769 |
2010-11-29 04:26:11 | ixokai | set | messages:
+ msg122768 |
2010-11-29 04:13:38 | jcea | set | messages:
+ msg122766 |
2010-11-29 03:59:44 | VilIgnoble | set | files:
+ unnamed
messages:
+ msg122764 |
2010-11-28 19:14:42 | terry.reedy | set | nosy:
+ terry.reedy messages:
+ msg122708
|
2010-11-28 18:28:13 | loewis | set | status: open -> closed resolution: not a bug messages:
+ msg122697
|
2010-11-28 17:27:06 | ixokai | set | nosy:
+ ixokai messages:
+ msg122686
|
2010-11-28 16:47:48 | Rafael.Villar.Burke | set | nosy:
+ Rafael.Villar.Burke messages:
+ msg122682
|
2010-11-28 16:28:20 | jcea | set | nosy:
+ jcea messages:
+ msg122677
|
2010-11-28 14:50:21 | scoder | set | nosy:
+ scoder messages:
+ msg122661
|
2010-11-28 14:12:49 | michael.foord | set | nosy:
+ michael.foord messages:
+ msg122657
|
2010-11-28 11:07:08 | orsenthil | set | nosy:
+ orsenthil messages:
+ msg122650
|
2010-11-28 10:40:19 | skrah | set | nosy:
+ skrah messages:
+ msg122648
|
2010-11-28 10:02:22 | georg.brandl | set | files:
- unnamed |
2010-11-28 10:02:17 | georg.brandl | set | nosy:
+ georg.brandl messages:
+ msg122644
|
2010-11-28 08:56:12 | ezio.melotti | set | nosy:
+ ezio.melotti messages:
+ msg122641
|
2010-11-27 23:54:41 | VilIgnoble | set | files:
+ unnamed
messages:
+ msg122593 |
2010-11-23 12:03:28 | loewis | set | messages:
+ msg122211 |
2010-11-23 11:51:10 | eric.araujo | set | nosy:
+ loewis
versions:
- Python 3.3 |
2010-11-22 09:16:35 | VilIgnoble | create | |