From mboxrd@z Thu Jan  1 00:00:00 1970
X-Spam-Checker-Version: SpamAssassin 3.4.4 (2020-01-24) on polar.synack.me
X-Spam-Level: 
X-Spam-Status: No, score=-1.9 required=5.0 tests=BAYES_00,FREEMAIL_FROM
	autolearn=ham autolearn_force=no version=3.4.4
X-Google-Thread: a07f3367d7,435f2ba97ddbe80e,start
X-Google-Attributes: gida07f3367d7,public,usenet
X-Google-NewGroupId: yes
X-Google-Language: ENGLISH,ASCII-7-bit
Path: 
 g2news1.google.com!postnews.google.com!r24g2000yqd.googlegroups.com!not-for-mail
From: =?ISO-8859-1?Q?Hibou57_=28Yannick_Duch=EAne=29?=
 <yannick_duchene@yahoo.fr>
Newsgroups: comp.lang.ada
Subject: MS anti-virus detected a trojan in GNAVI installation files
Date: Mon, 21 Dec 2009 06:09:37 -0800 (PST)
Organization: http://groups.google.com
Message-ID: 
 <1b98d0bf-85ab-4e1d-ba78-a4428e9594f7@r24g2000yqd.googlegroups.com>
NNTP-Posting-Host: 77.198.58.53
Mime-Version: 1.0
Content-Type: text/plain; charset=ISO-8859-1
X-Trace: posting.google.com 1261404577 836 127.0.0.1 (21 Dec 2009 14:09:37
 GMT)
X-Complaints-To: groups-abuse@google.com
NNTP-Posting-Date: Mon, 21 Dec 2009 14:09:37 +0000 (UTC)
Complaints-To: groups-abuse@google.com
Injection-Info: r24g2000yqd.googlegroups.com; posting-host=77.198.58.53;
	posting-account=vrfdLAoAAAAauX_3XwyXEwXCWN3A1l8D
User-Agent: G2/1.0
X-HTTP-UserAgent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1;
	fr),gzip(gfe),gzip(gfe)
Xref: g2news1.google.com comp.lang.ada:8473
Date: 2009-12-21T06:09:37-08:00
List-Id: <comp.lang.ada>

Hello all,

I've just attempted to send a message to the GNAVI team, but simply
get an SQL error syntax message after the form validation and I
founded no mail in gnavi.org. So I post here an exact copy of the
message I was to send, with the hope someone may perhaps forward it to
interested parties.

> To have a look, I wanted to try GNAVI yesterday. I've get gnavi.zip
> from Getting started -> Installation. When I wanted to unzip it, the
> MS Windows anti-virus (the one provided by MS, not a third party
> one), stopped me and warned me about a trojan in the file
> adotest.mdb which is in a subdirectory of gnatcom/samples.
>
> The exact identification given was : Exploit:Win32/Jdrop.gen!A
>
> I've checked the same file with ClamWin, and ClamWin did not found
> anything there, oonly the MS anti-virus did.
>
> I wanted to see what it is, but it seems adotest.mdb is a binary
> file.
>
> Have a nice day
>
> Yannick