Sign in to follow this  
Followers 0
H.J.

Avast 4.8 Anti Virus and Autoit v3.2.12.1 (Trojan Found )

8 posts in this topic

Hi All,

When I'm trying usine Autoit v3.2.12.1 "Compile Script" option from the context menu to to compile my scripts,

the Avast 4.8 Anti virus with the last updating on Jun 27, 2008 giving Warning message saying "A Trojan Horse Was Found"

and giving Malware name is Win32:Spayware-gen[Trj], Malware Type : Trojan Horse.

I start cleaning my computer using Avast 4.8 Anti virus and run the Avast againg no viruses on my pc found, then I tried again

to compile my scripts the Avast Anti-Virus giving the same message "A Trojan Horse Was Found" and not allowing to continue

compiling the scripts. Then I Tried to download Autoit v3.2.12.1 again from Autoit web site then install it on my pc then try again

to compile my script to EXE but the same problem with Avast.

My problem solved by downloading the BETA version of Autoit and installing it and try to use the its Compiler AutoIt3\Beta\Aut2Exe\Aut2exe.exe instead of

AutoIt3\Aut2Exe\Aut2exe.exe. You can see the image i uploaded

What is the reason ?

Best regards

H.J.

post-12423-1214534160_thumb.jpg

Share this post


Link to post
Share on other sites




 

Spoiler

Using OS: Win 7 Professional, Using AutoIt Ver(s): 3.3.6.1 / 3.3.8.1

AutoIt_Rus_Community.png AutoIt Russian Community

My Work...

Spoiler

AutoIt_Icon_small.pngProjects: ATT - Application Translate Tool {new}| BlockIt - Block files & folders {new}| SIP - Selected Image Preview {new}| SISCABMAN - SciTE Abbreviations Manager {new}| AutoIt Path Switcher | AutoIt Menu for Opera! | YouTube Download Center! | Desktop Icons Restorator | Math Tasks | KeyBoard & Mouse Cleaner | CaptureIt - Capture Images Utility | CheckFileSize Program

AutoIt_Icon_small.pngUDFs: OnAutoItErrorRegister - Handle AutoIt critical errors {new}| AutoIt Syntax Highlight {new}| Opera Library! | Winamp Library | GetFolderToMenu | Custom_InputBox()! | _FileRun UDF | _CheckInput() UDF | _GUIInputSetOnlyNumbers() UDF | _FileGetValidName() UDF | _GUICtrlCreateRadioCBox UDF | _GuiCreateGrid() | _PathSplitByRegExp() | _GUICtrlListView_MoveItems - UDF | GUICtrlSetOnHover_UDF! | _ControlTab UDF! | _MouseSetOnEvent() UDF! | _ProcessListEx - UDF | GUICtrl_SetResizing - UDF! | Mod. for _IniString UDFs | _StringStripChars UDF | _ColorIsDarkShade UDF | _ColorConvertValue UDF | _GUICtrlTab_CoverBackground | CUI_App_UDF | _IncludeScripts UDF | _AutoIt3ExecuteCode | _DragList UDF | Mod. for _ListView_Progress | _ListView_SysLink | _GenerateRandomNumbers | _BlockInputEx | _IsPressedEx | OnAutoItExit Handler | _GUICtrlCreateTFLabel UDF | WinControlSetEvent UDF | Mod. for _DirGetSizeEx UDF
 
AutoIt_Icon_small.pngExamples: 
ScreenSaver Demo - Matrix included | Gui Drag Without pause the script | _WinAttach()! | Turn Off/On Monitor | ComboBox Handler Example | Mod. for "Thinking Box" | Cool "About" Box | TasksBar Imitation Demo

Like the Projects/UDFs/Examples? Please rate the topic (up-right corner of the post header: Rating AutoIt_Rating.gif)

* === My topics === *

==================================================
My_Userbar.gif
==================================================

 

 

 

AutoIt is simple, subtle, elegant. © AutoIt Team

Share this post


Link to post
Share on other sites

Thanks,

Way there is no message warning giving from Avast when i used the Autoit BETA Version Compiled Scripts ?

Best regards

Share this post


Link to post
Share on other sites

Way there is no message warning giving from Avast when i used the Autoit BETA Version Compiled Scripts ?

Perhaps the beta by default does not compiling with UPX?

 

Spoiler

Using OS: Win 7 Professional, Using AutoIt Ver(s): 3.3.6.1 / 3.3.8.1

AutoIt_Rus_Community.png AutoIt Russian Community

My Work...

Spoiler

AutoIt_Icon_small.pngProjects: ATT - Application Translate Tool {new}| BlockIt - Block files & folders {new}| SIP - Selected Image Preview {new}| SISCABMAN - SciTE Abbreviations Manager {new}| AutoIt Path Switcher | AutoIt Menu for Opera! | YouTube Download Center! | Desktop Icons Restorator | Math Tasks | KeyBoard & Mouse Cleaner | CaptureIt - Capture Images Utility | CheckFileSize Program

AutoIt_Icon_small.pngUDFs: OnAutoItErrorRegister - Handle AutoIt critical errors {new}| AutoIt Syntax Highlight {new}| Opera Library! | Winamp Library | GetFolderToMenu | Custom_InputBox()! | _FileRun UDF | _CheckInput() UDF | _GUIInputSetOnlyNumbers() UDF | _FileGetValidName() UDF | _GUICtrlCreateRadioCBox UDF | _GuiCreateGrid() | _PathSplitByRegExp() | _GUICtrlListView_MoveItems - UDF | GUICtrlSetOnHover_UDF! | _ControlTab UDF! | _MouseSetOnEvent() UDF! | _ProcessListEx - UDF | GUICtrl_SetResizing - UDF! | Mod. for _IniString UDFs | _StringStripChars UDF | _ColorIsDarkShade UDF | _ColorConvertValue UDF | _GUICtrlTab_CoverBackground | CUI_App_UDF | _IncludeScripts UDF | _AutoIt3ExecuteCode | _DragList UDF | Mod. for _ListView_Progress | _ListView_SysLink | _GenerateRandomNumbers | _BlockInputEx | _IsPressedEx | OnAutoItExit Handler | _GUICtrlCreateTFLabel UDF | WinControlSetEvent UDF | Mod. for _DirGetSizeEx UDF
 
AutoIt_Icon_small.pngExamples: 
ScreenSaver Demo - Matrix included | Gui Drag Without pause the script | _WinAttach()! | Turn Off/On Monitor | ComboBox Handler Example | Mod. for "Thinking Box" | Cool "About" Box | TasksBar Imitation Demo

Like the Projects/UDFs/Examples? Please rate the topic (up-right corner of the post header: Rating AutoIt_Rating.gif)

* === My topics === *

==================================================
My_Userbar.gif
==================================================

 

 

 

AutoIt is simple, subtle, elegant. © AutoIt Team

Share this post


Link to post
Share on other sites

My Other executable files which I compiled it by the previuse Autoit versions no warning message from Avast giving and it's ok.

but only when I compiled it with Autoit V3.2.12.1 giving the problem.

Thanks lot for your help

Best regards

Share this post


Link to post
Share on other sites

I search for the UPX Application in both Autoit V3.2.12.1 and The Autoit BETA Version, I Found there have the same size but there is different

in the Date Modified, The Autoit Beta version using The UPX Application with date modified 5/19/2008 but UPX application in Autoit V3.2.12.1 with date modified 5/9/2008.

Please any solution for the problem with Autoit V3.2.12.1

post-12423-1214544222_thumb.jpg

Share this post


Link to post
Share on other sites

I currently use Avast! 4.8 Home Edition. (Why not, It's free.. along with ClamWin)

AV companies constantly adding signature detections from black hat AutoIt binaries to their database updates

is not going to stop any time soon.

In regards to the differing UPX versions.

UPX included with AutoIt gets updated with new versions from the UPX Author.

as advised in the sticky, either stop using UPX compression or change to another compressor

and add your AutoIt program and script folders to Avasts exclusion list under 'Program Settings' in the tray icon menu.

that will shut it up.

If you don't, you will go through round after round of annoying false positives and AutoIt file deletions by Avast

whenever some asshole distributes an AutoIt compiled binary with whatever version of AutoIt they used that starts a new round of

'let's just use an AutoIt compiled binary detection routine instead of malicious code detection signature in our latest database update' behaviour

from Avast and other anti-virus developers.

enough said.


I see fascists...

Share this post


Link to post
Share on other sites

thanks rover for your replay, but with Autoit Beta version there is no problem with Avast 4.8, may be the upx application came with Autoit beta version

was cleaned by the UPX Author.

Best regards

H.J.

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!


Register a new account

Sign in

Already have an account? Sign in here.


Sign In Now
Sign in to follow this  
Followers 0