BleepingComputer.com: WinRAR 3.80 trojan infection

Jump to content


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.

Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Page 1 of 1
  • You cannot start a new topic
  • You cannot reply to this topic

WinRAR 3.80 trojan infection

#1 User is offline   mcq360 

  • New Member
  • Pip
  • Find Topics
  • Group: Members
  • Posts: 11
  • Joined: 13-February 09

  Posted 19 February 2009 - 09:33 PM

Does anyone know where I can get a version of WinRAR 3.7 or older program that is not infected? Looking at all the replies on CNET-download.com supposedly the 3.80 version has a trojan in the download from there website.

Any help would be greatly appreciated,
mcq360

#2 User is offline   DaChew 

  • Visiting Alien
  • PipPipPipPipPipPip
  • Find Topics
  • Group: BC Advisor
  • Posts: 10,313
  • Joined: 20-May 07
  • Gender:Male
  • Location:millenium falcon and rockytop

Posted 19 February 2009 - 10:20 PM

I downloaded the installer just now from cnet-download.com, I submitted it to jotti and virustotal

A-Squared Found nothing
AntiVir Found nothing
ArcaVir Found nothing
Avast Found nothing
AVG Antivirus Found nothing
BitDefender Found nothing
ClamAV Found nothing
CPsecure Found nothing
Dr.Web Found nothing
F-Prot Antivirus Found nothing
F-Secure Anti-Virus Found nothing
G DATA Found nothing
Ikarus Found nothing
Kaspersky Anti-Virus Found nothing
NOD32 Found nothing
Norman Virus Control Found nothing
Panda Antivirus Found nothing
Sophos Antivirus Found nothing
VirusBuster Found nothing
VBA32 Found nothing

a-squared 4.0.0.93 2009.02.20 -
AhnLab-V3 2009.2.19.0 2009.02.19 -
AntiVir 7.9.0.85 2009.02.19 -
Authentium 5.1.0.4 2009.02.20 -
Avast 4.8.1335.0 2009.02.19 -
AVG 8.0.0.237 2009.02.19 -
BitDefender 7.2 2009.02.20 -
CAT-QuickHeal 10.00 2009.02.19 -
ClamAV 0.94.1 2009.02.19 -
Comodo 983 2009.02.19 -
DrWeb 4.44.0.09170 2009.02.20 -
eSafe 7.0.17.0 2009.02.19 -
eTrust-Vet 31.6.6366 2009.02.20 -
F-Prot 4.4.4.56 2009.02.19 -
F-Secure 8.0.14470.0 2009.02.20 -
Fortinet 3.117.0.0 2009.02.20 -
GData 19 2009.02.20 -
Ikarus T3.1.1.45.0 2009.02.20 -
K7AntiVirus 7.10.637 2009.02.19 -
Kaspersky 7.0.0.125 2009.02.20 -
McAfee 5530 2009.02.19 -
McAfee+Artemis 5530 2009.02.19 -
Microsoft 1.4306 2009.02.19 -
NOD32 3869 2009.02.19 -
Norman 6.00.06 2009.02.19 -
nProtect 2009.1.8.0 2009.02.20 -
Panda 10.0.0.10 2009.02.20 -
PCTools 4.4.2.0 2009.02.19 Trojan.Chifrax.a
Prevx1 V2 2009.02.20 -
Rising 21.17.32.00 2009.02.19 -
SecureWeb-Gateway 6.7.6 2009.02.20 -
Sophos 4.38.0 2009.02.20 -
Sunbelt 3.2.1855.2 2009.02.17 -
Symantec 10 2009.02.20 -
TheHacker 6.3.2.2.259 2009.02.18 -
TrendMicro 8.700.0.1004 2009.02.19 -
VBA32 3.12.10.0 2009.02.20 -
ViRobot 2009.2.19.1615 2009.02.19 -
VirusBuster 4.5.11.0 2009.02.19 -

Strange thing tho, the website did ask me to install updated chinese language pack

but anyway here's the old versions

http://www.oldapps.com/winrar.php
Chewy

No. Try not. Do... or do not. There is no try.

#3 User is online   boopme 

  • To Insanity and Beyond
  • PipPipPipPipPipPip
  • Find Topics
  • Group: Global Moderator
  • Posts: 46,303
  • Joined: 10-September 04
  • Gender:Male
  • Location:NJ USA

Posted 20 February 2009 - 12:25 AM

Odd finding there .. Sunbelt doesn't see it there in virus total yet they have a complete description here
http://research.sunbelt-software.com/threa...hreatid=4080837
How do I get help? Who is helping me?
Staying Updated Calendar of Updates.
For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....
Become a BleepingComputer fan: Facebook

#4 User is offline   mcq360 

  • New Member
  • Pip
  • Find Topics
  • Group: Members
  • Posts: 11
  • Joined: 13-February 09

  Posted 20 February 2009 - 07:08 AM

thanks for your help

#5 User is offline   karbo1 

  • Forum Regular
  • PipPipPip
  • Find Topics
  • Group: Members
  • Posts: 172
  • Joined: 23-March 08
  • Gender:Male
  • Location:Quebec, Canada

Posted 20 February 2009 - 09:45 AM

Some people download the software "illegally" in a zipped bundle with a keygen. When you unzip it, that's when the antivirus detects the infection... :thumbsup: The legal versions are clean.
Please post back if we found the solution

Share this topic:


Page 1 of 1
  • You cannot start a new topic
  • You cannot reply to this topic

1 User(s) are reading this topic
0 members, 1 guests, 0 anonymous users