delorie.com/archives/browse.cgi   search  
Mail Archives: cygwin/2021/11/25/15:08:53

X-Recipient: archive-cygwin AT delorie DOT com
DKIM-Filter: OpenDKIM Filter v2.11.0 sourceware.org F36073858000
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cygwin.com;
s=default; t=1637870932;
bh=MynohuPb8ODumXvshXoWDMmwyCqfxBsrDEh/AoYcaEU=;
h=References:In-Reply-To:Date:Subject:To:List-Id:List-Unsubscribe:
List-Archive:List-Post:List-Help:List-Subscribe:From:Reply-To:Cc:
From;
b=MJSW59FVBFtIIb1T8/20ChUvN5DEzMVqBSOUro7FOvsaNd6kcWTIDDam9WKN7fDyA
QuYbrI6fkUVx09o3iv3wpQKJJUtjB9iAxFgqo3ROZR+Iadv8rADDiRSonpQQ1TfXrR
QIHEbBxzuPsDz4/tSwn1rOLxXpIb2yA9oc1Hyae0=
X-Original-To: cygwin AT cygwin DOT com
Delivered-To: cygwin AT cygwin DOT com
DMARC-Filter: OpenDMARC Filter v1.4.1 sourceware.org 865E53858D35
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
d=1e100.net; s=20210112;
h=x-gm-message-state:mime-version:references:in-reply-to:from:date
:message-id:subject:to:cc;
bh=Jn+6+1jUqbk2z3RWavkJNSwXeukEzFlninSUvWIvLWs=;
b=JGiLeE+cKXRJjM1FYf0kBI8k7pwP6ofl11W21qL+skmqe7Cbf9cC5ijRPli5dGGOAv
5pC7IacZ0F6l0Mr9pI3T/Ae3hznP3rzhmfktRphPaUWcH1GZECjY5XO9ujMTQ7R8axMb
YWw7bCOb0aA1qciO4CqhtXdhlCm6hKKzeXgQ4l4BiYmahZvNtYcQK4/YU6dF7mr/Ycu7
fvgKzRG0iXR3xWl8gL4YWFy6cDt1v8MZ4sfMUeRY1N4iP5Q6+WP5DRSKKrgTfcBkD8vY
rMIWsV5n08F0NAjNJS/odpMZQsZKlLfXjpFOA0KOVhJqN1m1/Ldg4r8nU3XJ1vbntJ4G
nM4g==
X-Gm-Message-State: AOAM530vUwOYEKo73sFB1hvDanwg2al7Ah2QEphBUOMmTshAqWNiRAs9
dkTUwSYcwuZs8HlIDuawHjPEMBVxvj3rQyovLnM=
X-Google-Smtp-Source: ABdhPJwPAYFpYZqH775CJldc8bSGEFhU7LJvrUUXRZ84oPy2qDDJn8TVafqweQYVoRxXxUkE7dtXuKeGHVVs4n5IrmY=
X-Received: by 2002:adf:9bca:: with SMTP id e10mr9470972wrc.490.1637870898603;
Thu, 25 Nov 2021 12:08:18 -0800 (PST)
MIME-Version: 1.0
References: <CAOJ3qEu9Y5CQu4ArKmZATc0Od9+yJyU6Zn1iF+Ywc-koJcQQGg AT mail DOT gmail DOT com>
In-Reply-To: <CAOJ3qEu9Y5CQu4ArKmZATc0Od9+yJyU6Zn1iF+Ywc-koJcQQGg@mail.gmail.com>
Date: Thu, 25 Nov 2021 21:08:07 +0100
Message-ID: <CAEhDDbCa1L3wj5Rg54WvWYrhBBNvZaVX2vvCXQ=2o+cbEO3RUw@mail.gmail.com>
Subject: Re: Bitdefender detecting a file from cygwin as a trojan
To: Tyme LaDow <tynotanime AT gmail DOT com>
X-Spam-Status: No, score=-0.8 required=5.0 tests=BAYES_00, DKIM_SIGNED,
DKIM_VALID, DKIM_VALID_AU, DKIM_VALID_EF, FREEMAIL_FROM, RCVD_IN_DNSWL_NONE,
SPF_HELO_NONE, SPF_PASS, TXREP autolearn=ham autolearn_force=no version=3.4.4
X-Spam-Checker-Version: SpamAssassin 3.4.4 (2020-01-24) on
server2.sourceware.org
X-BeenThere: cygwin AT cygwin DOT com
X-Mailman-Version: 2.1.29
List-Id: General Cygwin discussions and problem reports <cygwin.cygwin.com>
List-Archive: <https://cygwin.com/pipermail/cygwin/>
List-Post: <mailto:cygwin AT cygwin DOT com>
List-Help: <mailto:cygwin-request AT cygwin DOT com?subject=help>
List-Subscribe: <https://cygwin.com/mailman/listinfo/cygwin>,
<mailto:cygwin-request AT cygwin DOT com?subject=subscribe>
From: Csaba Raduly via Cygwin <cygwin AT cygwin DOT com>
Reply-To: Csaba Raduly <rcsaba AT gmail DOT com>
Cc: cygwin list <cygwin AT cygwin DOT com>
Sender: "Cygwin" <cygwin-bounces+archive-cygwin=delorie DOT com AT cygwin DOT com> 

Hi,

On Thu, 25 Nov 2021 at 20:33, Tyme LaDow via Cygwin  wrote:
>
> Hey,
>
> I'm running Windows 10 Pro v. 10.0.19042 build 19042 and I installed cygwin
> at least a year ago and haven't touched it since June 2020.  Today,
> November 25th, 2021, I got a notification from Bitdefender that it had
> detected a trojan and quarantined it.  The threat notification says "Item
> was blocked. Threat name: Trojan.GenericKDZ.80660. Path:
> C:\cygwin64\bin\dumper.exe."

That is almost certainly a false positive. Restore the file, and
submit it to virustotal.com
if you want to be safe.

Perhaps you could try upgrading too.

Csaba
-- 
You can get very substantial performance improvements
by not doing the right thing. - Scott Meyers, An Effective C++11/14 Sampler
So if you're looking for a completely portable, 100% standards-conformant way
to get the wrong information: this is what you want. - Scott Meyers (C++TDaWYK)

-- 
Problem reports:      https://cygwin.com/problems.html
FAQ:                  https://cygwin.com/faq/
Documentation:        https://cygwin.com/docs.html
Unsubscribe info:     https://cygwin.com/ml/#unsubscribe-simple

- Raw text -


  webmaster     delorie software   privacy  
  Copyright © 2019   by DJ Delorie     Updated Jul 2019