Sign in to follow this  
Followers 0
alaa777

upx.exe win32:malware-gen

17 posts in this topic

every time i try to compile my script (x86) my anti virus block it

i just noticed that today hmmm latterly now so is my pc infected or something is wrong

post-30827-12738521412425_thumb.jpg

Share this post


Link to post
Share on other sites

THere's a sticky on the main page of this forum ...

Share this post


Link to post
Share on other sites

Complain to your Anti-Virus program developers not to us. Just what do you think the Sticky about infected files is all about?


George

Question about decompiling code? Read the decompiling FAQ and don't bother posting the question in the forums.

Be sure to read and follow the forum rules. -AKA the AutoIt Reading and Comprehension Skills test.***

The PCRE (Regular Expression) ToolKit for AutoIT - (Updated Oct 20, 2011 ver:3.0.1.13) - Please update your current version before filing any bug reports. The installer now includes both 32 and 64 bit versions. No change in version number.

Visit my Blog .. currently not active but it will soon be resplendent with news and views. Also please remove any links you may have to my website. it is soon to be closed and replaced with something else.

"Old age and treachery will always overcome youth and skill!"

Share this post


Link to post
Share on other sites

what made me post is yesterday i just compiled more than one (x86) no problems at all but now i don't know what happend

Share this post


Link to post
Share on other sites

sry for disturbing but really what made me post is yesterday i just compiled more than one (x86) no problems at all but now i don't know what append so i think nothing is wrong my anti virus is become crazy

Share this post


Link to post
Share on other sites

what made me post is yesterday i just compiled more than one (x86) no problems at all but now i don't know what happend

Which would indicate that the provider of your anti-virus has a screwed up definitions update. Let them know about it.

George

Question about decompiling code? Read the decompiling FAQ and don't bother posting the question in the forums.

Be sure to read and follow the forum rules. -AKA the AutoIt Reading and Comprehension Skills test.***

The PCRE (Regular Expression) ToolKit for AutoIT - (Updated Oct 20, 2011 ver:3.0.1.13) - Please update your current version before filing any bug reports. The installer now includes both 32 and 64 bit versions. No change in version number.

Visit my Blog .. currently not active but it will soon be resplendent with news and views. Also please remove any links you may have to my website. it is soon to be closed and replaced with something else.

"Old age and treachery will always overcome youth and skill!"

Share this post


Link to post
Share on other sites

done posting in there forum

http://forum.avast.com/index.php?topic=59747.0

Share this post


Link to post
Share on other sites

How are you compiling the script? I also use Avast and nothing has been flagged with definitions right up to date.


George

Question about decompiling code? Read the decompiling FAQ and don't bother posting the question in the forums.

Be sure to read and follow the forum rules. -AKA the AutoIt Reading and Comprehension Skills test.***

The PCRE (Regular Expression) ToolKit for AutoIT - (Updated Oct 20, 2011 ver:3.0.1.13) - Please update your current version before filing any bug reports. The installer now includes both 32 and 64 bit versions. No change in version number.

Visit my Blog .. currently not active but it will soon be resplendent with news and views. Also please remove any links you may have to my website. it is soon to be closed and replaced with something else.

"Old age and treachery will always overcome youth and skill!"

Share this post


Link to post
Share on other sites

right click compile script (x86) and there is a file trzF80B.tmp are created

Share this post


Link to post
Share on other sites

btw no problems with compiling script x64

Share this post


Link to post
Share on other sites

Again, I just used that method on an au3 file and nothing was flagged. Make sure you have Avast up to date, both the App (updated a few days ago) and the definition files.


George

Question about decompiling code? Read the decompiling FAQ and don't bother posting the question in the forums.

Be sure to read and follow the forum rules. -AKA the AutoIt Reading and Comprehension Skills test.***

The PCRE (Regular Expression) ToolKit for AutoIT - (Updated Oct 20, 2011 ver:3.0.1.13) - Please update your current version before filing any bug reports. The installer now includes both 32 and 64 bit versions. No change in version number.

Visit my Blog .. currently not active but it will soon be resplendent with news and views. Also please remove any links you may have to my website. it is soon to be closed and replaced with something else.

"Old age and treachery will always overcome youth and skill!"

Share this post


Link to post
Share on other sites

up to date still same warning and I'm scanning my pc

lord.au3

post-30827-12738546480597_thumb.jpg

Share this post


Link to post
Share on other sites

some one compile the "lord.au3" (x86) and scan the "lord.exe" with virus total and see if it's the same result (8/41) (i added folder to exclusions then compiled it)

https://www.virustotal.com/analisis/81fba474dd920a4ed7cdc8429f2a9168007eadfaca91deba259525bdc9c8fb6d-1273856069

Share this post


Link to post
Share on other sites

#16 ·  Posted (edited)

~

Edited by Mobius

Share this post


Link to post
Share on other sites

#17 ·  Posted (edited)

ok thx so much tested without upx every thing is fine but i didn't new that is upx is optional cuz i never used "compile script to exe"

Edited by alaa777

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!


Register a new account

Sign in

Already have an account? Sign in here.


Sign In Now
Sign in to follow this  
Followers 0