Re: Malware found in winpython-64bit-2.7.5.3
520 views
Skip to first unread message
Sebastian Wagner
Apr 28, 2015, 10:31:51 AM4/28/15
to Mark Davidson, winp...@googlegroups.com
Hi Mark,
thanks for your attention and the notice. We had this issue earlier,
with Avast, see more details here:
https://github.com/winpython/winpython.github.io/issues/18
To dig into this issue, it would be great of you can provide us more
informations:
Which anti virus software have you used in which version on which OS?
I just started a scan with virustotal on winpython.github.io
https://www.virustotal.com/en/url/d33e71786e6299db8387972f7f5def497e8e91e4791254cfb0b48796ee9a361c/analysis/1430231082/
with no results, all say its clean.
Can someone check the MD5s of the suspicious files?
best regards,
Sebastian
On 04/28/2015 02:30 PM, Mark Davidson wrote:
> Dear Sebastian,
>
> I found your email listed on the github site for winpython. I wish to
> report malware reported to me by an antivirus program for winphython
> as indicated by these lines from the log file:
>
> Mon 2015-04-27 18:57:49.0900Infection detected:
> c:\winpython-64bit-2.7.5.3\winpython control panel.exe [MD5:
> 3CB8CC6DDB9B73FC90F8ED4F3FF00E2A] [3/00080410] [Pua.Safe.Software]
> Mon 2015-04-27 18:57:50.0129Begin passive write scan (1 file(s))
> Mon 2015-04-27 18:57:50.0652End passive write scan (1 file(s))
> Mon 2015-04-27 18:59:06.0277Infection detected:
> c:\winpython-64bit-2.7.5.3\winpython command prompt.exe [MD5:
> 125B4CC938464B87A4967AA7DEE9AD81] [3/00080C10] [Pua.Safe.Software]
>
> Regards,
>
> Mark Davidson
--
python programming - mail server - photo - video - https://sebix.at
To verify my cryptographic signature or send me encrypted mails, get my
key at https://sebix.at/DC9B463B.asc and on public keyservers.
thanks for your attention and the notice. We had this issue earlier,
with Avast, see more details here:
https://github.com/winpython/winpython.github.io/issues/18
To dig into this issue, it would be great of you can provide us more
informations:
Which anti virus software have you used in which version on which OS?
I just started a scan with virustotal on winpython.github.io
https://www.virustotal.com/en/url/d33e71786e6299db8387972f7f5def497e8e91e4791254cfb0b48796ee9a361c/analysis/1430231082/
with no results, all say its clean.
Can someone check the MD5s of the suspicious files?
best regards,
Sebastian
On 04/28/2015 02:30 PM, Mark Davidson wrote:
> Dear Sebastian,
>
> I found your email listed on the github site for winpython. I wish to
> report malware reported to me by an antivirus program for winphython
> as indicated by these lines from the log file:
>
> Mon 2015-04-27 18:57:49.0900Infection detected:
> c:\winpython-64bit-2.7.5.3\winpython control panel.exe [MD5:
> 3CB8CC6DDB9B73FC90F8ED4F3FF00E2A] [3/00080410] [Pua.Safe.Software]
> Mon 2015-04-27 18:57:50.0129Begin passive write scan (1 file(s))
> Mon 2015-04-27 18:57:50.0652End passive write scan (1 file(s))
> Mon 2015-04-27 18:59:06.0277Infection detected:
> c:\winpython-64bit-2.7.5.3\winpython command prompt.exe [MD5:
> 125B4CC938464B87A4967AA7DEE9AD81] [3/00080C10] [Pua.Safe.Software]
>
> Regards,
>
> Mark Davidson
--
python programming - mail server - photo - video - https://sebix.at
To verify my cryptographic signature or send me encrypted mails, get my
key at https://sebix.at/DC9B463B.asc and on public keyservers.
stonebig
Apr 28, 2015, 1:18:52 PM4/28/15
to winp...@googlegroups.com, sebix.w...@sebix.at, mda...@spectelresearch.com
Hi Mark,
Winpython-64bit-2.7.5.3 arrived on the internet in 2013-08-22, 20 month ago
(before the move to sourceforge by Pierre Raybaut)
When did you install it on this PC ?
Can you check the MD5 / SHA1 of the downloaded file compared to what Sourceforge says:
- MD5 = 2637a67b59d2a78fc6b35de4edec47a2
- SHA1 = a1804c561ce1a7a10bbbeb34a25e5fa0c1e8ff87
Winpython-64bit-2.7.5.3 arrived on the internet in 2013-08-22, 20 month ago
(before the move to sourceforge by Pierre Raybaut)
When did you install it on this PC ?
Can you check the MD5 / SHA1 of the downloaded file compared to what Sourceforge says:
- MD5 = 2637a67b59d2a78fc6b35de4edec47a2
- SHA1 = a1804c561ce1a7a10bbbeb34a25e5fa0c1e8ff87
Sebastian Wagner
Apr 28, 2015, 1:36:51 PM4/28/15
to stonebig, winp...@googlegroups.com, mda...@spectelresearch.com
I create an issue on github to track this case:
https://github.com/winpython/winpython/issues/88
Thanks stonebig, for caring
https://github.com/winpython/winpython/issues/88
Thanks stonebig, for caring
Reply all
Reply to author
Forward
0 new messages