R-2.7.2 infected?
could this be an intentional attack to compromise a very popular download, and infect thousands of people.....what could be the motivations...i hope its not some corporate thug here What exactly does the Win32/Adclicker.JO trojan do ??? Ajay www.decisionstats.com www.iwannacrib.com
On Tue, Sep 23, 2008 at 9:11 AM, Duncan Murdoch <murdoch at stats.uwo.ca> wrote:
Dave DeBarr wrote:
I tried downloading R-2.7.2 (http://cran.cnr.berkeley.edu/bin/windows/base/R-2.7.2-win32.exe, both from Berkeley and cran) and both times I got a warning from Computer Associates eTrust Antivirus (version 7.1.710) that the Win32/Adclicker.JO trojan was detected: The Win32/Adclicker.JO was detected in C:\USERS\USER\APPDATA\LOCAL\MICROSOFT\WINDOWS\TEMPORARY INTERNET FILES\LOW\CONTENT.IE5\61HAYRTG\R-2.7.2-WIN32[1].EXE. Has anyone else seen this?
You're the first to report it, and 2.7.2 has been out for almost a month, so I think it's likely that the CRAN copy is uninfected. Did you check the md5 checksum on it? It matches on the original, so if it doesn't match at your end, you've got a bad download. If it matches and you still get the virus checker reporting, please let me know the details about that infection, and I'll try to do a manual inspection for it. Duncan Murdoch
______________________________________________ R-help at r-project.org mailing list https://stat.ethz.ch/mailman/listinfo/r-help PLEASE do read the posting guide http://www.R-project.org/posting-guide.html and provide commented, minimal, self-contained, reproducible code.
Regards, Ajay Ohri http://tinyurl.com/liajayohri