Cacti (home)ForumsDocumentation
Cacti: offical forums and support
It is currently Mon Jun 17, 2019 11:49 pm

All times are UTC - 5 hours




Post new topic Reply to topic  [ 3 posts ] 
Author Message
 Post subject: Virus infected downloads for manage plugin?
PostPosted: Mon Nov 12, 2012 4:14 am 
Offline

Joined: Mon Nov 12, 2012 4:08 am
Posts: 3
Hi guys,

Not to create a panic, so please stay calm.

I tried to download the manage plugin today and I got the following from my virus scanner:

<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01//EN">
<html><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8"><style type="text/css">html,body{height:100%;padding:0;margin:0;}.oc{display:table;width:100%;height:100%;}.ic{display:table-cell;vertical-align:middle;height:100%;}div.msg{display:block;border:1px solid #30c;padding:0;width:500px;font-family:helvetica,sans-serif;margin:10px auto;}h1{font-weight:bold;color:#fff;font-size:14px;margin:0;padding:2px;text-align:center;background: #30c;}p{font-size:12px;margin:15px auto;width:75%;font-family:helvetica,sans-serif;text-align:left;}</style><title>High Security Alert!!</title></head><body><div class="oc"><div class="ic"><div class="msg"><h1>High Security Alert!!</h1><p>You are not permitted to download the file "manage-0.6.2.zip" because it is infected with the virus "Riskware/AntiZlob".<br /><br />URL = docs.cacti.net/_media/userplugin:manage-0.6.2.zip<br /><br />File quarantined as: .<br /><br /><a href="http://www.fortinet.com/ve?vn=Riskware%2FAntiZlob">http://www.fortinet.com/ve?vn=Riskware%2FAntiZlob</A></p></div></div></div></body></html>

I assume this to be a false positive, am I right?

Yours,

Martin


Top
 Profile  
 
 Post subject: Re: Virus infected downloads?
PostPosted: Tue Nov 13, 2012 2:39 pm 
Offline
Cacti Moderator
User avatar

Joined: Sat May 08, 2004 12:44 pm
Posts: 12160
Location: USA
I'm going to say false positive.

Looking over the virustotal scan results, several AV dont like that it includes Sysinternals pskill. This is a valid tool, see http://technet.microsoft.com/en-us/sysi ... s/bb896649

_________________

| Scripts: Monitor processes | RFC1213 MIB | DOCSIS Stats | Dell PowerEdge | Speedfan | APC UPS | DOCSIS CMTS | 3ware | Motorola Canopy |
| Guides: Windows Install | [HOWTO] Debug Windows NTFS permission problems |
| Tools: Windows All-in-one Installer |


Top
 Profile  
 
 Post subject: Re: Virus infected downloads for manage plugin?
PostPosted: Tue Nov 13, 2012 4:59 pm 
Offline
Developer
User avatar

Joined: Thu Feb 20, 2003 10:16 am
Posts: 1630
Location: Canada
I concur.

_________________
--
Live fast, die young
You're sucking up my bandwidth.

J.P. Pasnak,CD
CCNA, LPIC-1
http://www.warpedsystems.sk.ca


Top
 Profile  
 
Display posts from previous:  Sort by  
Post new topic Reply to topic  [ 3 posts ] 

All times are UTC - 5 hours


Who is online

Users browsing this forum: No registered users and 3 guests


You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum

Search for:
Jump to:  

Protected by Anti-Spam ACP Powered by phpBB © 2000, 2002, 2005, 2007 phpBB Group