Home |  Forum |  RSS


igor bordelais - Tue Feb 21 09:42:22 UTC 2017 Tue Feb 21 09:42:22 UTC 2017
Virus in GanttProject 2.8.2 exe

The last download seems to be infected by Trojan.Win32.Agent.nezbho .
2 answers  
Dmitry Barashev - Tue Feb 21 10:55:26 UTC 2017 Tue Feb 21 10:55:26 UTC 2017
some antivirus software may detect false positives in installers for Windows. Many other antiviruses disagree with the false positive and believe that executable is clean. Here is the result of scanning by 57 antivirus programs where only 2 produce positive result: https://goo.gl/dgYXVa

This particular executable was built with NSIS installer version 2.50 on Linux machine. If you have any reasons to think that the file which you downloaded is not the original one, you can check its MD5 checksum. For the original file it is 6c512df96e5ad09c34540fc7a27761d8

If you downloaded the original file but do not trust to the majority of antiviruses and to us, you can use ZIP archive and ganttproject.bat file. It is essentially the same as using Windows installer, except that you need to unpack it and that there is no Windows-native code which may look suspicious to antivirus.
Dmitry Barashev - Tue Feb 21 10:58:28 UTC 2017 Tue Feb 21 10:58:28 UTC 2017
Information about false positives from NSIS developers: http://nsis.sourceforge.net/NSIS_False_Positives