![]() And while I don't know this Bavarian, I assume that she is not paying an upgrade to get a static IP address just because you demand it. So this "someone from Bavaria" is most likely not shifting IP addresses actively but her internet provider is forcing new IP addresses upon her once every 24 hours. In Germany, IP addresses usually change automatically at least every 24h (or more often). Guy Macon ( talk) 05:06, 5 February 2018 (UTC) Reply You are misinterpreting effects of DSL in Germany. If indeed he no longer bundles OpenCandy with FreeFileSync we should discuss how that claim can be verified by a reliable third-party source so we can correct this article as needed. I would encourage Zenju to stop edit warring and shifting static IP addresses, register a Wikipedia account, and join this discussion. It may very well be that he no longer bundles OpenCandy with FreeFileSync, but it is pretty clear from the virustotal results (and the attempt to hide the malware from virustotal - see section above) that he is still bundling some kind of malware - possibly PlugX (RAT) or FusionCore - unless you pay him for a malware-free version. The IP is, most likely, Bavarian developer ZenJu. Someone from Bavaria who keeps shifting IP addresses keeps claiming that FreeFileSync no longer bundles OpenCandy, but despite repeated requests is unable to provide a source that verifies that claim. ![]() ![]() "Although FreeFileSync claims that the installer "never contains malware or viruses", the free version contains OpenCandy adware, " Obviously, the installer wasn't ad-free before so what point are you trying to make? If you run FreeFileSync 10.0 through Virustotal you'll notice that the alerts have gone and now 65 of 67 scanners report the installer to be clean, see this analysis result of the installer I downloaded and ran through Virustotal (127.0.0.1) ( talk) 20:50, (UTC) Reply version 9.7) when the release notes of the current version 10.0 state that the installer is now ad-free. Guy Macon ( talk) 16:46, 6 February 2018 (UTC) Reply Maybe you only misinterpreted your observations? The "partial weirdness" is explained here: You didn't happen to use IE to download FreeFileSync? Additionally, why are you checking an old version of FreeFileSync (i.e. It really does look like the FreeFileSync website sends a smaller, malware-free file to online virus scanners and a larger, malware-infected file to anyone who downloads the installer. Notice that both Wikipedia files have the same file size and the same SHA-256 hash but the two FreeFileSync files don't, and the one that is flagged as having malware is much larger. ![]() I did the same test with the file at (I know that file has no malware because I created it and have personally inspected every byte of it) and didn't see the ".partial" weirdness. plus at least three other virustotal users have uploaded the exact same file and commented on it. This made me suspect that I had tested a partially-downloaded file, so I double checked by downloading it again and checking that the filename I downloaded did complete and was indeed "FreeFileSync_9.7_Windows_Setup.exe". Guy Macon ( talk) 04:35, 2 February 2018 (UTC) Reply More weirdness: virustotal gives the filename "FreeFileSync_9.7_Windows_" for the file I downloaded. It looks like they send a malware-free copy to virustotal (and presumably other antivirus websites) but send malware to users who download the installer. When I download the installer and run the file through virustotal, I get several alerts: īut when I instruct virustotal to go to the url and download the file it comes up clean.
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |