Jump to content

ImgBurn Support Forum uses cookies. Read the Privacy Policy for more info. To remove this message, please click the button to the right:    I accept the use of cookies

Photo

malware/bloatware?


Forum Rules

Read the Guides forum if you don't know how to do something. :readbook:
If you have a question or a problem, check the FAQ and use the Search to see if you can find the answer for yourself. :lightbulb:
If you're having trouble burning double layer media, read Here.
Still stuck? Create a new thread and describe your issue in detail.
Make sure you include a copy of the program's log in your post. No log = :chair:


  • Please log in to reply
11 replies to this topic

#1 fpefpe

fpefpe

    ISF Newbie

  • Members
  • Pip
  • 17 posts
  • Location:NYC

Posted 12 February 2018 - 12:02 AM

Hello -- Is there a reason why everytime I download the imgburn setup file  Norton Security (NS) keep deleting it? 



#2 dbminter

dbminter

    ISF God

  • Beta Team Members
  • PipPipPipPipPip
  • 5,832 posts
  • Gender:Male

Posted 12 February 2018 - 03:39 AM

Probably, Norton is flagging it as a PUP (Potentially Unwanted Program) vector.



#3 fpefpe

fpefpe

    ISF Newbie

  • Members
  • Pip
  • 17 posts
  • Location:NYC

Posted 12 February 2018 - 03:51 AM

Hello --  Thanks for the info ...  NS  marks it as high   risk --- here is the info from NS  -- 

 

 

Filename:  setupimgburn_2.5.8.0.exe Threat name:  Trojan.Gen.2Full Path:
c:\users\frank\appdata\local\temp\setupimgburn_2.5.8.0.exe
 
On computers as ofá 2/11/2018 at 10:09:04 AM
 
Last Usedá 2/11/2018 at 10:22:41 AM
 
Startup Itemá No
 
Launchedá No
 
Threat type:  Virus.  Programs that infect other programs, files, or areas of a
computer by inserting themselves or attaching themselves to that medium.
 
 
setupimgburn_2.5.8.0.exe Threat name:  Trojan.Gen.2 Locate
 
Many Users Tens of thousands of users in the Norton Community have used this
file.
 
Mature This file was released 8 months ago.
 
High This file risk is high.
 
Source:  External Media
 
File Created:  setupimgburn_2.5.8.0.exe
 
____________________________
 
File Actions
 
Infected file:  c:\users\frank\appdata\local\temp\ setupimgburn_2.5.8.0.exe
Removed ____________________________
 
 
File Thumbprint - SHA:
d7dea2819edc77bc44db637cd324e61942b54930cb3034f8f1a417b7dd27b514 File Thumbprint
- MD5:  0b4c94f8480f8cd13e160bceaaaa8b29


#4 dbminter

dbminter

    ISF God

  • Beta Team Members
  • PipPipPipPipPip
  • 5,832 posts
  • Gender:Male

Posted 12 February 2018 - 04:06 AM

Where are you downloading it from?  Try one of the mirrors here: http://imgburn.com/index.php?act=download They all can't be corrupt.  If NS still flags each one from all 7 mirrors, it's probably a false positive.  It's not like Norton AV has NEVER had a false positive.  I know that from experience.



#5 fpefpe

fpefpe

    ISF Newbie

  • Members
  • Pip
  • 17 posts
  • Location:NYC

Posted 12 February 2018 - 04:24 PM

Hello -- Thanks for the reply .... I did the download from  from the last  mirror, the imgburn mirror -- in addition  I check the sha1  digest with no issue 

I have kaspersky IS  on another computer and that  a/v has no issue with it 



#6 dbminter

dbminter

    ISF God

  • Beta Team Members
  • PipPipPipPipPip
  • 5,832 posts
  • Gender:Male

Posted 12 February 2018 - 04:31 PM

It seems to be a false positive with NS then.



#7 fpefpe

fpefpe

    ISF Newbie

  • Members
  • Pip
  • 17 posts
  • Location:NYC

Posted 12 February 2018 - 04:38 PM

Hello -- I just did a download from the  first mirror and got this  file 

 

Setup_ImgBurn_2.5.8.0_dlm.exe
 
the sha1 digests DONT match from  the posted value on the download page  -- 6FC013ED5944B13EFC54648699EA80F304E37AD0


#8 dbminter

dbminter

    ISF God

  • Beta Team Members
  • PipPipPipPipPip
  • 5,832 posts
  • Gender:Male

Posted 12 February 2018 - 04:41 PM

LUK fielded another post similar to that about mismatching hashes.  He said they actually were matching.  I never do hash comparisons so it's beyond my expertise to comment any further.



#9 fpefpe

fpefpe

    ISF Newbie

  • Members
  • Pip
  • 17 posts
  • Location:NYC

Posted 12 February 2018 - 04:44 PM

OK -- thx for the info ....  



#10 dbminter

dbminter

    ISF God

  • Beta Team Members
  • PipPipPipPipPip
  • 5,832 posts
  • Gender:Male

Posted 12 February 2018 - 04:51 PM

Yeah, in other words, the author of the software, LUK, will have to address that as I have no knowledge of the hashes.  Sorry.



#11 LIGHTNING UK!

LIGHTNING UK!

    Author of ImgBurn

  • Admin
  • PipPipPipPipPip
  • 29,550 posts
  • Gender:Male
  • Location:United Kingdom

Posted 12 February 2018 - 07:34 PM

To me, dlm means download manager.

That's *not* the ImgBurn setup file.

Perhaps you clicked on an advert by mistake? The do often look like a legitimate download button.
Please don't PM me with questions that should be posted in the forum. I won't reply - Especially if you have post count of 0!!!

Replies to posts belong in the forum where everyone can read them. Please don't PM them.

In fact, don't PM me at all unless it's something I've asked to be told about!

Before asking questions, search the forum to see if someone else already has.

Use the FAQ and Guides forums to your advantage. I don't want to have to tell you to read them!

#12 dbminter

dbminter

    ISF God

  • Beta Team Members
  • PipPipPipPipPip
  • 5,832 posts
  • Gender:Male

Posted 12 February 2018 - 11:26 PM

Yes, that sound like a wraparound.  In fact, if you click the first mirror, like the OP apparently did, you get a page with a Download button that says Download Manager Enabled.

 

 

Try the last mirror, the "official" ImgBurn download mirror, and compare hash info.  The file it distributes is SetupImgBurn_2.5.8.0.exe.






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users