[R] R-2.7.2 infected?
Ajay ohri
ohri2007 at gmail.com
Tue Sep 23 06:17:54 CEST 2008
could this be an intentional attack to compromise a very popular
download, and infect thousands of people.....what could be the
motivations...i hope its not some corporate thug here
What exactly does the Win32/Adclicker.JO trojan do ???
Ajay
www.decisionstats.com
www.iwannacrib.com
On Tue, Sep 23, 2008 at 9:11 AM, Duncan Murdoch <murdoch at stats.uwo.ca> wrote:
> Dave DeBarr wrote:
>>
>> I tried downloading R-2.7.2
>> (http://cran.cnr.berkeley.edu/bin/windows/base/R-2.7.2-win32.exe, both from
>> Berkeley and cran) and both times I got a warning from Computer Associates
>> eTrust Antivirus (version 7.1.710) that the Win32/Adclicker.JO trojan was
>> detected:
>> The Win32/Adclicker.JO was detected in
>> C:\USERS\USER\APPDATA\LOCAL\MICROSOFT\WINDOWS\TEMPORARY INTERNET
>> FILES\LOW\CONTENT.IE5\61HAYRTG\R-2.7.2-WIN32[1].EXE.
>>
>> Has anyone else seen this?
>
> You're the first to report it, and 2.7.2 has been out for almost a month, so
> I think it's likely that the CRAN copy is uninfected. Did you check the md5
> checksum on it? It matches on the original, so if it doesn't match at your
> end, you've got a bad download.
>
> If it matches and you still get the virus checker reporting, please let me
> know the details about that infection, and I'll try to do a manual
> inspection for it.
>
> Duncan Murdoch
>
> ______________________________________________
> R-help at r-project.org mailing list
> https://stat.ethz.ch/mailman/listinfo/r-help
> PLEASE do read the posting guide http://www.R-project.org/posting-guide.html
> and provide commented, minimal, self-contained, reproducible code.
>
--
Regards,
Ajay Ohri
http://tinyurl.com/liajayohri
More information about the R-help
mailing list