Trojan found in 2.24.0.1?
72 views
Skip to first unread message
nietz...@gmail.com
Nov 12, 2019, 9:05:00 AM11/12/19
to git-for-windows
Just got the following message from BitDefender (in Dutch):
Het bestand C:\Program Files\Git\unins000.exe is geïnfecteerd met Trojan.GenericKD.42005936 en is in quarantaine geplaatst. We raden aan dat u een Systeemscan uitvoert om te verzekeren dat uw systeem volledig schoon is.
Translated:
The file C:\Program Files\Git\ unins000.exe is infected with Trojan.GenericKD.42005936 and is quarantined. We recommend that you perform a System Scan to ensure that your system is completely clean.
Git updated automatically last week, I've got version 2.24.0.1.
Anyone with the same issue?
Johannes Schindelin
Nov 12, 2019, 3:24:22 PM11/12/19
to nietz...@gmail.com, git-for-windows
Hi,
On Mon, 11 Nov 2019, nietz...@gmail.com wrote:
> Just got the following message from BitDefender (in Dutch):
> *Het bestand C:\Program Files\Git\unins000.exe is geïnfecteerd met
>
> Translated:
> *The file C:\Program Files\Git\ unins000.exe is infected with
reasons:
- We did not upgrade our InnoSetup since 007f34065 (Upgrade InnoSetup to
version 5.6.1, 2018-08-10), i.e. it has been in use for _a long_ time,
producing all Git for Windows installers since v2.19.0, including the
latest.
- The installers are built on clean Azure Pipelines agents, it is pretty
much impossible that those agents are infected.
- Based on past experience, literally _all_ reports about malware in Git
for Windows have been false positives. Every single one of them.
Ciao,
Johannes
On Mon, 11 Nov 2019, nietz...@gmail.com wrote:
> Just got the following message from BitDefender (in Dutch):
> Trojan.GenericKD.42005936 en is in quarantaine geplaatst. We raden aan dat
> u een Systeemscan uitvoert om te verzekeren dat uw systeem volledig schoon
> is.*
> u een Systeemscan uitvoert om te verzekeren dat uw systeem volledig schoon
>
> Translated:
> *The file C:\Program Files\Git\ unins000.exe is infected with
> Trojan.GenericKD.42005936 and is quarantined. We recommend that you perform
> a System Scan to ensure that your system is completely clean.*
>
> Git updated automatically last week, I've got version 2.24.0.1.
>
> Anyone with the same issue?
I highly doubt that this is a legitimate report, for the following
> Git updated automatically last week, I've got version 2.24.0.1.
>
> Anyone with the same issue?
reasons:
- We did not upgrade our InnoSetup since 007f34065 (Upgrade InnoSetup to
version 5.6.1, 2018-08-10), i.e. it has been in use for _a long_ time,
producing all Git for Windows installers since v2.19.0, including the
latest.
- The installers are built on clean Azure Pipelines agents, it is pretty
much impossible that those agents are infected.
- Based on past experience, literally _all_ reports about malware in Git
for Windows have been false positives. Every single one of them.
Ciao,
Johannes
Reply all
Reply to author
Forward
0 new messages