Welcome, Guest. Please Login or Register.
Search
Members
Login
Register
   Mischel Internet Security Forum
   Malware
   Trojans (Moderators: Helena, Gavin_Coe, Magnus)
   GFI Backup - Home Edition is a trojan?		 « Previous topic | Next topic »
Pages: 1  Reply Reply  Notify of replies Notify of replies   Send Topic Send Topic   Print Print
   Author  Topic: GFI Backup - Home Edition is a trojan?  (Read 2756 times)
alpha128
Junior Member
**





   


Posts: 63
GFI Backup - Home Edition is a trojan?
« on: Dec 28th, 2009, 5:31pm »		 Quote Quote  Modify Modify
I downloaded and started to install GFI Backup - Home Edition.  
 
http://www.gfi.com/backup-hm
 
I got the scare of my life when, during the install, TrojanHunter declared the GFI install was a password stealing trojan!  I selected clean, canceled the install, and then did an uninstall of GFI from Windows Add/Remove Programs.
 
I then did a full scan with TrojanHunter and it said that no trojan files were found.
 
Was this a false positive, or is this actually malware?
IP Logged
siliconman01
Global Moderator
*****



Trojans! Chew 'em Up, Spit 'em Out...

   


Gender: male
 Posts: 7358
Re: GFI Backup - Home Edition is a trojan?
« Reply #1 on: Dec 29th, 2009, 12:27am »		 Quote Quote  Modify Modify
Was it the free version of GFI that you downloaded and tried to install?  I downloaded the free version and then scanned it with TH and it did not detect anything malicious.  I did not try to install it, however.
 
In the TH quarantine folder, there should be the file that TH quarantined.  Would you please submit it for analysis per the link below.  
 
http://www.misec.net/forum/board/FAQ/1211189968
IP Logged
______
TrojanHunter V5.5.1002...No. 1 AT in my Book and on my Box(es)! Windows 7 x64 Professional on a Dell XPS 410, 8 gbyte RAM, dual WD VelociRaptors, dual 24" UltraSharp FPD monitors, Logitech 5.1 Surround Sound; Windows 7 x86 Professional on a Dell Vostro 220s, 4 gbyte RAM, dual WD VelociRaptors. Common: router, cable modem.
alpha128
Junior Member
**





   


Posts: 63
Re: GFI Backup - Home Edition is a trojan?
« Reply #2 on: Dec 29th, 2009, 11:51am »		 Quote Quote  Modify Modify
siliconman01,
 
Yes, it was the free version that I attempted to install.  
 
I have submitted the files in my quarantine folder for analysis per your instructions.
 
Thanks for your help.
IP Logged
Gavin_Coe
Trojan Analyst
*****





   
WWW  

Gender: male
 Posts: 3912
Re: GFI Backup - Home Edition is a trojan?
« Reply #3 on: Dec 29th, 2009, 8:32pm »		 Quote Quote  Modify Modify
The file submitted is clean
 
I'll take a look and see what we can do. I suspect a false alarm which will be quickly fixed if that is the case. Thanks for reporting this Smiley
« Last Edit: Dec 29th, 2009, 8:33pm by Gavin_Coe » IP Logged
Gavin_Coe
Trojan Analyst
*****





   
WWW  

Gender: male
 Posts: 3912
Re: GFI Backup - Home Edition is a trojan?
« Reply #4 on: Dec 29th, 2009, 8:40pm »		 Quote Quote  Modify Modify
Should be fixed now, thanks again Smiley
IP Logged
siliconman01
Global Moderator
*****



Trojans! Chew 'em Up, Spit 'em Out...

   


Gender: male
 Posts: 7358
Re: GFI Backup - Home Edition is a trojan?
« Reply #5 on: Dec 30th, 2009, 1:31am »		 Quote Quote  Modify Modify
Please update your rulesets for TH.  Then download a fresh copy of the GFI installer and try the installation again. Hopefully, it will install without TH barking at it.   Wink
IP Logged
______
TrojanHunter V5.5.1002...No. 1 AT in my Book and on my Box(es)! Windows 7 x64 Professional on a Dell XPS 410, 8 gbyte RAM, dual WD VelociRaptors, dual 24" UltraSharp FPD monitors, Logitech 5.1 Surround Sound; Windows 7 x86 Professional on a Dell Vostro 220s, 4 gbyte RAM, dual WD VelociRaptors. Common: router, cable modem.
alpha128
Junior Member
**





   


Posts: 63
Re: GFI Backup - Home Edition is a trojan?
« Reply #6 on: Dec 30th, 2009, 1:50pm »		 Quote Quote  Modify Modify
My thanks to you both.
IP Logged
Pages: 1  Reply Reply  Notify of replies Notify of replies   Send Topic Send Topic   Print Print

« Previous topic | Next topic »