Post by Olav Post by H-Man Post by Olav
ESET NOD32 4 Antivirus reports that a variant of Win32/Kryptik.UT trojan
was found in the creation of an exefile created by PbWin8.
cleaned by deleting - quarantined
REGISTER X&, Counter&
FOR Counter& = 1 TO 300000000
X& = Counter& + Counter& + Counter&
Who talked about cracked Powerbasic and viruses? Powerbasic is a virus
False positive. AV program's problem.
May be so, but one must be allowed to wonder what kind of work the compiler
does behind the scene at the moment of the exe file creation, and so far
why only it is this file which are triggered.
As ESET NOD32 4 Antivirus is signatures based it is entirely conceivable
that portion of your compiled code is shared with the Win32/Kryptik.UT
trojan. As compilers use a finite set of instructions eventually you will
have collisions whereby a portion legitimate code looks like a portion of
the bad code. If the trojan was created using the PB product the liklihood
of a collision of this sort increases substantially. Again, it's not that
the compiler generates anything nefarious spontaneously, the compiler may
have been asked to generate nefarious code known to the AV company, and the
signature the AV company chooses to use to identify the trojan exists in
legitimate code as well. The compiler remains legitimate, the AV company's
job is to find a way to decide which code is okay, and which is not. In
this case, it would seem, the AV company has failed.
This exact situation occurs with most compilers / assemblers out there at
some point in time. PowerBasic is in good company then.