X2Go Bug report logs - #1485
Virus-Warning in Windows-Client on x2goclient-4.1.2.2-2020.02.13-setup.exe

Package: x2goclient; Maintainer for x2goclient is X2Go Developers <x2go-dev@lists.x2go.org>; Source for x2goclient is src:x2goclient.

Reported by: Simon Riepertinger <simon.riepertinger@veith-system.de>

Date: Mon, 6 Jul 2020 11:45:01 UTC

Severity: normal

Full log


Message #5 received at submit@bugs.x2go.org (full text, mbox, reply):

Received: (at submit) by bugs.x2go.org; 6 Jul 2020 11:40:49 +0000
From simon.riepertinger@veith-system.de  Mon Jul  6 13:40:47 2020
X-Spam-Checker-Version: SpamAssassin 3.4.2 (2018-09-13) on
	ymir.das-netzwerkteam.de
X-Spam-Level: 
X-Spam-Status: No, score=0.1 required=3.0 tests=BAYES_20,HTML_MESSAGE,
	RCVD_IN_MSPIKE_H2,SPF_HELO_NONE,TRACKER_ID,URIBL_BLOCKED autolearn=no
	autolearn_force=no version=3.4.2
Received: from mout.kundenserver.de (mout.kundenserver.de [212.227.17.13])
	by ymir.das-netzwerkteam.de (Postfix) with ESMTPS id EDAC05DAE7
	for <submit@bugs.x2go.org>; Mon,  6 Jul 2020 13:40:35 +0200 (CEST)
Received: from [192.168.1.209] ([46.95.10.230]) by mrelayeu.kundenserver.de
 (mreue108 [212.227.15.183]) with ESMTPSA (Nemesis) id
 1MNso2-1kGgbD0kuG-00OFo2 for <submit@bugs.x2go.org>; Mon, 06 Jul 2020
 13:40:35 +0200
To: submit@bugs.x2go.org
From: Simon Riepertinger <simon.riepertinger@veith-system.de>
Subject: Virus-Warning in Windows-Client on
 x2goclient-4.1.2.2-2020.02.13-setup.exe
Autocrypt: addr=simon.riepertinger@veith-system.de; prefer-encrypt=mutual;
 keydata=
 mQINBFRPTtkBEACV9/aHAwj1xTrs4t175dXe/YtnFUe9kHYvfwRl4S7mqjqrjXTgQ5+JEF3j
 qsf52vj2+j0ib3yveuq1YgrnEb9SLl1WaqF7qmholXd/XpJDbG0CCNDCVZ6Es5E216IXYJDN
 esktGit9lOuGLh7SwkMMnxrRbiOiE5kNGYYWckKAuslm29eFRJih7DU6R9g6NFN1Y8iTrMGt
 LiiyBPV6PdSpxO9/z+oL7TNQWWPQ/BWdRrNJpqjoW7huj/rMqWgo+Q3XwQjINybyj4cKxD+B
 AmNHIanDBKh4fcjuxmQaalCDWV0YDu4tEDf1Y9Jr5ojkeTu+foS4/fKZyz5ClxRReShh7leD
 pxFC71FjCUhRFMXfTiO09KGoW15yfet6V0/2SdhIXjSXYoxuGdfIjB4+nNCXgEEJ6++6zXa9
 RfgBDZjZpg1aKoTzbc8bqrGe95sIeV9B/FiBpn6Vy4RldHA71vB6MvQmXDv+6J2pE+mPbZdu
 mHkDGoJXB7ouPagaUtBw/FU2v9RiU+BfI1D3ye9RRSDYW58hdLdnjXyqrmKLPLTJIMSJQt13
 LmZFXmVMrDcE3SIbOYsSbTbqmmbqtc9ZvtSc9ODBAwm1axdxqlUOersTkYYZpGobK7oGD9aI
 abszxEPKy/QwHDBb94/vWZm1vR9+Y8vDpTzeLCzXTJgaykdx9wARAQABtDdTaW1vbiBSaWVw
 ZXJ0aW5nZXIgPHNpbW9uLnJpZXBlcnRpbmdlckB2ZWl0aC1zeXN0ZW0uZGU+iQI/BBMBAgAp
 BQJUT07ZAhsjBQkJZgGABwsJCAcDAgEGFQgCCQoLBBYCAwECHgECF4AACgkQAxQQcNczNI5u
 ww//QfC05gI8WvKrAmWVSsOGD0i1lQz/hCBQ4L0nHjBpAfjPYMBlwlsUW4MQoYW7XpDj8xs+
 wYkNgNkncnfgLdE29/wDm7/c3XKnbSoARompZ1HBEaJ763i+TczqJBMtkJPj5oIEneUNkpmF
 St4Aawmn3/4o0ZkBfbdtNuPZ7jeOMNr3L93QQx1O+G/RZuskg3Vs0LpwtMUmYyFZaLdrxylx
 f3e7HMz04b3sv1jWsZL1rB4xTdXYbCOi0rBnWJ9V2d9zc9kLpuedJmmDJMeok3wdBEbNNnPh
 HbAjiscc7nyUgDgkfJsKBFpJaOWje/lVi35rsaduhQQCUZl32WurmUButASQYQl6Ku9TNav+
 UE63gqFckCJ3XUCl2X5V94+3leP6ygxuGJRRTvDTAUmXELunI5j37swZTZvGR8VykbevgqNr
 TDKdqDOWDoRT3ecXAkJjgcTJNIYqPhvfKTyRHj183+o3Qw7KbjLDrT7bCWNIbFkuLZWch3CX
 /hcOXQsW4wQqcCs8aTXY94XbX+rAfyRkfgWpbCZKfGL4U6NrhWpjAWLqhqgFKYDmiSoH/dYZ
 w72DYDqPaBfWJnaOwIdrShiEl2SGg5QSYA4OrI21/bU2MNQbPVXXG9gG0Tt/EwUuNiUEnnHO
 TyAcSsotXgJmIoOpW6xRlpBGk90nccZo/51zG5k=
Message-ID: <64fd35e3-11ca-60cd-4899-0f07b9579751@veith-system.de>
Date: Mon, 6 Jul 2020 13:40:34 +0200
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:68.0) Gecko/20100101
 Thunderbird/68.10.0
MIME-Version: 1.0
Content-Type: multipart/mixed;
 boundary="------------805808D0032E905370F67374"
Content-Language: de-DE
X-Provags-ID: V03:K1:sSyq09ZDSMOAOQ0ebpSv4IkhBeXipiSoAIn8fkYaGKgqYi85NH4
 pr8/DELUXFnsr05lRLWG49+juZTMcu2v/L+qt95u9j6Go2ooyjjrgNFYT67gBB72JOVlIwU
 nLYISwa9GHSvIlB+DdgANH2ES3oGdeQloUPDW+nrfmaosgce1SvIUmczvzIsQe/2GB+s0y/
 zm5n3/Y3eQIDNbXPEy5gw==
X-UI-Out-Filterresults: notjunk:1;V03:K0:5YEYmtQ8A+A=:LYqo/tCGFLdl8r2DSZ6a0v
 plQTYAdgGSQ0e2txBzHZqN5f2+XVdQMMP70BSlKqOvoeMX3PhuRkMMXFMZN7JyPZcTMG1ry9S
 GDXj/IC/H8v+2K4aJzulVGixJUGX8pXJBJ4ynAIYYLET90nFgtWa0UTKph7bvjSesM9RUQuH1
 htP3xzoIoXgHaTBrXTgCVIu9qN7Hu1JAoTgTKdjmzPcC+tPSeuhjdbUzlxoJnj6aQHkIau4zy
 LO16FcpJt3VyFIkoL2v+B39dKhr2Cu9Jj1hfEBV0rc2YnRBnKXw69NBLUWfbx6XTBWXyTsGOs
 6kD50PoIV3NOSC+x1ZmOAZlg0K3lt0gHK2LFipyAKt/tShRzHtrjF1wvzB5Phw7ynYkBQvyNY
 tFSL6O3p4lbd/5tsFj3OKpcS01ZgrjFzrmXkiaJOrAILdID/rl8SGwid6z+VraoSatLz8//QO
 uXZMeAKyZnV4JiKRkjUv10UpYcIchekLIux7eKlxE7vkF8U+Ktwz6Z55UgiMnfpAt72Y6Wh32
 yV25ZAZiQcyFgPlClOK3NMXWfGtoRlCf0ufK+X9CrfEGh2surtzbgqGFx/4KcM3RKBk5p2kK5
 aPcdIelOEt/jWic5Ur88npmIQjQn7vQcvRqARAKBe9tCkz5t/YR2jmaDEpQZehxOtq2RkzEw3
 P3eLbwSQPCSqbYYFQishpoyT4AQk9TqjTSPI8JPjmBrTkXqXXIONtdGN2O0EAArYxjTrPGJtv
 EAWMkiTlTsiGPYr4rDEU0UgXbC69IJ3E2qx5IIcOoBYTebRne+8NdqPClhfZ0rZoBhjEoi4kK
 lkQZLu0/Z5Ea1ma46J8ckCZgOo7MuDRfh7pcTKq3ckkFMOMkwcdEMhSAuBukY1Arih1JRvHaJ
 61i6zan95Eda2utEdnmQ==
[Message part 1 (text/plain, inline)]
Package: unknown
Version: x2goclient-4.1.2.2-2020.02.13-setup.exe / X2GoClient_latest_mswin32-setup.exe

After downloading the file in Firefox Firefox tells me, that the file contains a virus/malware.

A quick online-check on virustotal with both files returns:

    No engines detected this URL

but uploading the file yields 4 positive on:

    4 engines detected this file
    227857330e14cf88c88159c5439c914ce2e4170c7aa29149641d5df11d1745f0
    x2goclient

scanning the file manually on my system gave no results.

I'm using:
Firefox ver: 78.0.1
Windows: Version 10.0.18363.900


-- 
Veith System GmbH
Laiming 3
83112 Frasdorf - Germany

Tel: +49-(0)8052-2636
Fax: +49-(0)8052-4019
E-Mail: info@veith-system.de
USt.-IdNr.: DE 131 200 756
Handelsregister: Traunstein B4434
Geschäftsführer: Ulrich Veith, Adrian Veith

[Message part 2 (text/html, inline)]
[simon_riepertinger.vcf (text/x-vcard, attachment)]

Send a report that this bug log contains spam.


X2Go Developers <owner@bugs.x2go.org>. Last modified: Thu Mar 28 12:58:15 2024; Machine Name: ymir.das-netzwerkteam.de

X2Go Bug tracking system

Debbugs is free software and licensed under the terms of the GNU Public License version 2. The current version can be obtained from https://bugs.debian.org/debbugs-source/.

Copyright © 1999 Darren O. Benham, 1997,2003 nCipher Corporation Ltd, 1994-97 Ian Jackson, 2005-2017 Don Armstrong, and many other contributors.