Ruby DevKit install has Trojan virus [closed]

Question

It's difficult to tell what is being asked here. This question is ambiguous, vague, incomplete, overly broad, or rhetorical and cannot be reasonably answered in its current form. For help clarifying this question so that it can be reopened, visit the help center.

Closed 8 years ago.

I am new to Ruby DevKit, and recently exposed to use this package for some integration work with CloudFoundry systems. Unfortunately, after I finished installing the Ruby Devkit, my antivirus software caught it to contain a trojan virus - which is tragic. I really need Ruby DevKit team to look into this because it is dangerous for any unsuspecting people out there to get their machine infected by this virus and suffer some damage accordingly.

1. How I got my Ruby DevKit install package: http://rubyinstaller.org/downloads/ >> DEVELOPMENT KIT >> DevKit-tdm-32-4.5.2-20111229-1559-sfx.exe

2. What my antivirus found in this package after install: [RubyDevKit]/mingw/bin/gcc.exe Detected: HEUR:Trojan.Win32.Generic

Answer 1

I'm pretty sure you're OK. But I'll give you a couple reasons to feel better.

First: I uploaded the packaged gcc.exe to VirusTotal and it returned a clean bill of health.

Second: The HEUR flag means that it's from a Heuristic algorithm. Send it into the company that provides your Anti-Virus definitions so it can be examined. Once the provider does that and updates their definitions it should be fixed.

Third: The Devkit is date stamped. 20111229 means that this version of the Devkit was built on December 29 2011. So this version has been in use for over a year and I haven't noticed any other reports like this.

If you want any more information you are more than welcome to email the RubyInstaller Google Group as there are probably people who could help you out more there.