|
Title: Bunch of virii found in chainstate files Post by: th3joker on April 17, 2014, 02:30:53 PM Just downloaded the latest bootstrap.dat file via the bitcoin.org website.
After recreating the chainstate folder these files show up: /Users/username/Library/Application Support/Bitcoin/chainstate/049205.sst: Boot.Gen.10past3 FOUND /Users/username/Library/Application Support/Bitcoin/chainstate/049261.sst: Peace.1 FOUND /Users/username/Library/Application Support/Bitcoin/chainstate/050791.sst: Stoned.1 FOUND /Users/username/Library/Application Support/Bitcoin/chainstate/050795.sst: Italian.1 FOUND /Users/username/Library/Application Support/Bitcoin/chainstate/050797.sst: Chren-4016 FOUND /Users/username/Library/Application Support/Bitcoin/chainstate/050838.sst: Gergana.9 FOUND /Users/username/Library/Application Support/Bitcoin/chainstate/050876.sst: Gen.805 FOUND /Users/username/Library/Application Support/Bitcoin/chainstate/050887.sst: Vienna-645.A FOUND Title: Re: Bunch of virii found in chainstate files Post by: Schleicher on April 17, 2014, 03:51:32 PM Just tell your antivirus program to ignore the folder /Users/username/Library/Application Support/Bitcoin
Title: Re: Bunch of virii found in chainstate files Post by: Rannasha on April 17, 2014, 04:09:14 PM Some people like to embed signatures of known malware (note: just the signatures, the parts that antivirus software triggers on, not the actual virus itself) in the blockchain. Just exclude the Bitcoin folder from your antivirus software.
Title: Re: Bunch of virii found in chainstate files Post by: elbandi on April 17, 2014, 05:21:50 PM Just tell your antivirus program to ignore the folder /Users/username/Library/Application Support/Bitcoin This is a huge mistake!Just imagine: a unknown virus download some viruses to this directory. The folder is ignore by the virus scanner, so _valid_ viruses are not recognized, they can do whatever they want to do. And you do not realize that your wallet is stolen. So the devs sould somehow handle this! Elbandi Title: Re: Bunch of virii found in chainstate files Post by: Rannasha on April 17, 2014, 05:50:36 PM Just tell your antivirus program to ignore the folder /Users/username/Library/Application Support/Bitcoin This is a huge mistake!Just imagine: a unknown virus download some viruses to this directory. The folder is ignore by the virus scanner, so _valid_ viruses are not recognized, they can do whatever they want to do. And you do not realize that your wallet is stolen. So the devs sould somehow handle this! Elbandi The 'devs' can't handle this as the signatures are part of the blockchain. And they're there to stay. Title: Re: Bunch of virii found in chainstate files Post by: Klestin on April 18, 2014, 02:14:56 AM Just tell your antivirus program to ignore the folder /Users/username/Library/Application Support/Bitcoin This is a huge mistake!Just imagine: a unknown virus download some viruses to this directory. The folder is ignore by the virus scanner, so _valid_ viruses are not recognized, they can do whatever they want to do. Elbandi A valid concern, although if a virus is writing to your system, you've already caught it. A better solution is to set your scanner to ignore sst files, which are not executable and cannot catch a virus. Setting a virus scanner to scan all files is a recipe for a variety of problems including corrupted files/downloads, blocked programs, and significantly reduced performance. You may wish to set it to scan executable/scriptables only. |