• All Community
    • All Community
    • Forums
    • Ideas
    • Blogs
Advanced

Not what you are looking for? Ask the experts!

This forum thread needs a solution.
Kudos0

Infostealer found in old Backup file

I have just ran a full system scan which I do often.  It identified Winzip18.0 as containing "Infostealer" and it was quarantined. After spending about one hour with a Norton Rep he finally said it was a false positive.  Has the sensitivity for finding instances of infostealer changed? I do not use Winzip18.0 and have not since I originally downloaded/purchased it in November 2013!  I haven't used it in some time, but I do use Winzip9.0. Has anyone else experienced a false positive in Winzip18.0 in a backup file?

File Attachment: 

Replies

Kudos0

Re: Infostealer found in old Backup file

Hello

You can send the file  to virustotal      .  com and see what the result is there.

Thanks.

Success always occurs in private and failure in full view. Windows 7 Pro 64 bit NSBU 22.16.4.15 Core Firmware 270 I E 11 Chrome
Kudos0

Re: Infostealer found in old Backup file

I tried to Restore the quarantined Winzip18.exe, but Norton immediately grabbed it and sent it back to quarantine. Today while filling out a Norton Survey form Norton was running in the background and identified the original download file from WinZip (WinZip18.zip) as "infostealer" and moved it to quarantine. Thank goodness I have WinZip9.0 that I purchased through the mail from the developer before he sold it to AOL. So far Norton has ignored the download file for WinZip17.5...

Kudos0

Re: Infostealer found in old Backup file

WinZip is version 21 now. But honestly there is no reason to pay for a zip utility where there are several free ones. I myself use Bandizip.I downloaded WinZip 21 and Norton does gave my a thumbs up.

http://www.winzip.com/win/en/index.htm

http://www.winzip.com/win/en/index.htm

Kudos0

Re: Infostealer found in old Backup file

@rbs:

1. Personally, you do not need to bother using Winzip18.0 even the latest version of it (winzip21-home.exe, e6b6ae1ecd03df8e855073d23145a1439483b52f6d060a573dc3a0eff51f151a). The install was huge at time of commenting. Switch (uninstall) Winzip from your programs list and try other better (lightweight) compression tool, like say... 7-Zip, PeaZip.

You may also suffer from its additional "offers" without your knowledge: (WinZip's) File Association Helper, WinZip Preloader and WinZip Update Notifier.

Then, WinZip just updated itself automatically, or without your permission:

I do not use Winzip18.0, but I do use Winzip9.0

FAKE software review was also detected:

2. As you may already know, WinZip bundlED the stubborn Astromenda Search.

Somehow, Norton did its job right when its comes to the aforesaid WinZip 18.

Infostealer is a detection name used by Symantec to identify malicious software programs that gathers confidential information from the compromised computer. 

Please apply the option "Do not use the cloud" in your case.
 

PUP Hunter PRO: Just TRYING to save the world (U) from cyber threats, A single blog post, at a time, and ONCE & FOR ALL. (A fan of Nadia_Kovacs)
Kudos0

Re: Infostealer found in old Backup file

WinZip was popular back in the XP days along with WinRAR. But paying for a zip utility is about as far fetched as paying for a defragger. 

Kudos0

Re: Infostealer found in old Backup file

This "issue" can be removed as I will leave WinZip18 in quarantine!  Thanks for all your comments and suggestions, but Norton did a great job in removing everything that I could find related to WinZip18.  I have had WinZip9.0 forever and I will continue to use it. Thanks again!

Kudos0

Re: Infostealer found in old Backup file

What version of Windows are you running? I highly suggest not running old outdated software cause it can have vulnerabilities that have been addressed through new builds. You can remove WinZip 18 from quarantine since you do not need it. Just clear entries which will completely remove it. WinZip is a thing of the past and not needed. 7-Zip and Bandizip are 100% free and up to date. Check them out for yourself. 

This thread is closed from further comment. Please visit the forum to start a new thread.