2017-02-01, 22:30
Hello,
Recently I got warnings from windows defender that the kodi RC4 file does contain a trojan. (Trojan:Win32/Gaobot).
That was reported in an earlier thread.
People were just smiling like "false positive" you should use another virus checker.
I am very much shocked by that attitude the more since I think it is true and we have a very serious problem!!
Reason for saying than is that not only defender is hinting in the direction of malware, but there is hard evidence that there is something terrible wrong too.
After defender alerted me, I did a couple of other downloads of the kodi17 rc4 file (windows version), and did calculate the checksums of all those files.
And up to my surprise the checksums of the different downloads did differ. And different checksums for files which are supposed to be identical is defectively not ok!!
So my *** very urgent *** message is:
- Do take virus alerts serious
- Do publish your site file was hacked, that is bad. But much better that not telling because others will run infected computers without knowing it
- Publish the correct checksums, so that downloads can be verified
- Take care that alterative download sites really are providing not tampered files
- Use HTTPS protected sites as download sites
Sincerely,
Louis
Got the same message. Next to that is is very alarming to me that I have downloaded the file multiple times finding different file length and different checksums ....
I did find files with
sha512 42CFA2C8109700673D7D7DBD36B78CF05E952B85E8B1078DEF008107CEF8B8F73FC7019888D12299BDACF4AF8B4369189AB14359D8FF231E43266981ACCAB2D1 (removed by defender)
and file with sha512
0B527AAFD3AC43AA6E5A68AB95CAD58C834D05D7A4AAA2AFBFD16447F73F85F495C10929570A3B26D2C1335CB1B4DA0C6361268F08486DE53C3842350D7A885E
I already installed something on my kodi pc
Recently I got warnings from windows defender that the kodi RC4 file does contain a trojan. (Trojan:Win32/Gaobot).
That was reported in an earlier thread.
People were just smiling like "false positive" you should use another virus checker.
I am very much shocked by that attitude the more since I think it is true and we have a very serious problem!!
Reason for saying than is that not only defender is hinting in the direction of malware, but there is hard evidence that there is something terrible wrong too.
After defender alerted me, I did a couple of other downloads of the kodi17 rc4 file (windows version), and did calculate the checksums of all those files.
And up to my surprise the checksums of the different downloads did differ. And different checksums for files which are supposed to be identical is defectively not ok!!
So my *** very urgent *** message is:
- Do take virus alerts serious
- Do publish your site file was hacked, that is bad. But much better that not telling because others will run infected computers without knowing it
- Publish the correct checksums, so that downloads can be verified
- Take care that alterative download sites really are providing not tampered files
- Use HTTPS protected sites as download sites
Sincerely,
Louis
Got the same message. Next to that is is very alarming to me that I have downloaded the file multiple times finding different file length and different checksums ....
I did find files with
sha512 42CFA2C8109700673D7D7DBD36B78CF05E952B85E8B1078DEF008107CEF8B8F73FC7019888D12299BDACF4AF8B4369189AB14359D8FF231E43266981ACCAB2D1 (removed by defender)
and file with sha512
0B527AAFD3AC43AA6E5A68AB95CAD58C834D05D7A4AAA2AFBFD16447F73F85F495C10929570A3B26D2C1335CB1B4DA0C6361268F08486DE53C3842350D7A885E
I already installed something on my kodi pc