| Forum Home | ||||
| Press F1 | ||||
| Thread ID: 49766 | 2004-09-29 23:32:00 | Virus in 1st Page on PCW CD - False positive | Biggles (121) | Press F1 |
| Post ID | Timestamp | Content | User | ||
| 276920 | 2004-09-29 23:32:00 | Virus scannaers are reporting a virus found in the 1st Page package that is on the October PCW CD. This is in fact a false positive. Details can be found at the developers site here: EvrSOFT Forums (developers.evrsoft.com) The relevant section is reproduced here: "Actually it is a javascript called "6 buttons" that can be a nuisance and was targeted by virus scanners long after 1st Page was released. Information on removing it can be found here (developers.evrsoft.com). You can search old threads regarding this topic if you are interested. Finally, there is a really good writeup (www.spywareinfo.com) regarding the mislabelling of this javascript by virus scanner developers." Our apologies for the confusion this has caused. |
Biggles (121) | ||
| 276921 | 2004-09-30 04:50:00 | Ok Just out of curiosity, why wasn't this picked up when the CD was made? Didn't anyone check the program at any point? From the trhead on the site, the problem has been around for years and affects all sorts of anti-virus software. The only conclusio I can draw is that the programs are not propelry checked What if it had been a real virus lurking in the program. This concerns me greatly. JoanC |
joanc (3798) | ||
| 276922 | 2004-09-30 04:59:00 | We scan the programs we put on disk but we don't install and then virus scan after installation each program. This is the first problem of this kind we 've had as far as I'm aware, and it's NOT an actual virus. | Biggles (121) | ||
| 276923 | 2004-09-30 05:46:00 | Many Virus scanners try to scan more than just Viruses, but also "Virus-like activity". This includes when you Update Windows to a newer version (Such as from Win9x to WinXP), most Anti-Virus programs will pick that up as Virus-Like activity. I have full confidence in PCW that they do their best to prevent Viruses getting into their CD's! Thanks to PCW for the service and CD's! |
Chilling_Silence (9) | ||
| 276924 | 2004-09-30 07:26:00 | I understand it was a false positive . However, simply scanning an exe file is not enough to test for viruses . From what I understand, installation packages are frequently encrypted . This means that scanning an exe will not show up if a virus is present . Sorry Chilling_Silence, but this problem clearly highlights that the files are not fully tested . If so, why didn't this problem show up during tests? It's easy to see it - I did it . Plus it's been around for years . Again, what if it was a real virus . We all would have been exposed to it because PC World did not test the files properly . |
joanc (3798) | ||
| 276925 | 2004-09-30 09:12:00 | This 'problem' is being blown out of proportion. I know for one that the stupidest things are found as viruses, and often the most severe ignored. Ultimately you use the CD at your own risk, as there is no way anyone can gurantee a disk, or any media, perfect. What if the truck carrying them was stolen, the contents reproduced with viruses embedded and resent to the destinations? I have hardly looked at the CDs in the past (because of the fact that my computer was too horrid), and now don't see a need (except for a useful stuff). PCWorld is the magazine - not the threat of contamination. Best thing you could do is keep your virus definitions updated. |
Growly (6) | ||
| 276926 | 2004-09-30 09:13:00 | > I understand it was a false positive. However, simply > scanning an exe file is not enough to test for > viruses. From what I understand, installation > packages are frequently encrypted. This means that > scanning an exe will not show up if a virus is > present. Compressed - Not encrypted.... BIG difference. Actually, I know that AVG has the ability to scan within .Zip files, and frequently does so. Many simple installers can be extracted with WinZip. This is something that some scanners pick up and some do not. By-and-large I'd assume that PCW test the apps themselves. I _know_ for a fact that their anti-virus is update either nightly or bi-nightly. You worry about Viruses - Ditch windows. > Sorry Chilling_Silence, but this problem clearly > highlights that the files are not fully tested. If > so, why didn't this problem show up during tests? > It's easy to see it - I did it. Plus it's been around > for years. Perhaps it was scanned with an AV Scanner that didnt classify that sorta javascript as malicious. What's wrong with that? > Again, what if it was a real virus. We all would have > been exposed to it because PC World did not test the > files properly. Actually, Im sure if you read the Mag there's a disclaimer in there somewhere. Just make sure you run AV Software yourself, anybody who's been a Windows User for longer than a month will know that you cant run windows without Anti-Virus. Aside from this, you got it with the PCW mag, which highlights Windows insecurities and vulnerabilities to this sorta thing!! If you're that paranoid about Viruses, then wisen up and use a different OS. Otherwise, they state (Somewhere) that they've scanned the files with an up-to-date-at-burn-time Virus Scanner, but take no responsibility should there be a virus on there. Not worth the worry if you ask me! Then again, ignorance is bliss, and Im euphoric ;-) Chill. |
Chilling_Silence (9) | ||
| 276927 | 2004-09-30 09:14:00 | > Best thing you could do is keep your virus > definitions updated. Agreed! |
Chilling_Silence (9) | ||
| 276928 | 2004-09-30 09:43:00 | ....Truck stolen.......discs manipulated.......and re-sent......this is deign of mr. Isaac Asimov......so i'd have to guess the crims would have replaced the files in the cd's with the ......x-files?........ Just kidding. Like they say shi-f-t happens and this time the good people (I love them) at PCW have made a faux pas. So be it. Keep up with the good work guys. |
Sanco (683) | ||
| 276929 | 2004-09-30 10:34:00 | >Compressed - Not encrypted.... BIG difference. I know the difference. Do you understand what I am saying? Many installer programs encrypt the data to stop it being altered. If the person creating the installer is infected, this infection can be encrypted too and gets missed. Don't you wonder why the anitivirus only picks it up during installation and not when scanned normally -even with 'scan within zip' is enabled. Try it yourself. >Perhaps it was scanned with an AV Scanner that didnt classify that sorta javascript as malicious. What's wrong with that? Well, for a start, what you say is wrong. Bruce stated they don't check it that way. They don't install the software so it doesn't give you much faith that they test things. Who decided it was worth putting on the CD if nobody ran it? Here is something simple for you Chilling: do you think it is that hard to install software to check that it is OK, before sending it out to thousands of people? This seems like they are taking a lazy shortcut. Not to mention that the files could simply be corrupted - they would still put it on the CD and send it out. |
joanc (3798) | ||
| 1 2 3 | |||||