Featured Book

LaTeX Beginners Guide

Who is online

In total there are 2 users online :: 0 registered, 0 hidden and 2 guests (based on users active over the past 5 minutes)
Most users ever online was 1327 on Tue Nov 05, 2013 7:11 pm

Users browsing this forum: No registered users and 2 guests

Partner Sites

BAT.CMDFlood - Possible Spyware

Add tags Information and discussion about TeX Live distribution for all platforms (Windows, Linux, Mac OS X) and the related MacTeX: installing, updating, configuring

BAT.CMDFlood - Possible Spyware

Postby burke on Sat Aug 27th, 2011

Has anyone run across this spyware or whatever it is in TeXLive 2011? BAT.CMDFlood

It was found (on two different machines) using ClamXav:
/usr/local/texlive/2011/texmf-dist/context/data/scite/cont-pe-scite.properties: BAT.CMDFlood FOUND
ERROR: Can't unlink '/usr/local/texlive/2011/texmf-dist/context/data/scite/cont-pe-scite.properties': Permission denied

To elaborate: It is also in the 2010 distribution but not 2009.
Posts: 1
Joined: Sat Aug 27th, 2011

Re: BAT.CMDFlood - Possible Spyware

Postby gefion777 on Thu Sep 15th, 2011

Found BAT.CMDFlood today on my Mac using ClamXav. Viewed the file in a terminal window using the "More" command. At the beginning the file looks similar to the english version (cont-en-scite.properties). Later strange non-latin characters and several Unicode U+200C characters (zero-width non-joiner) show up.

Seems to be either a corrupted or a hijacked language file.

Decided to delete it using a sudo rm cont-pe-scite.properties command.
Posts: 1
Joined: Thu Sep 15th, 2011

Re: BAT.CMDFlood - Possible Spyware

Postby justdeath on Mon Sep 19th, 2011

This is written in Persian language.
The filename is: cont-pe-scite.properties
Obviously pe is short from Persian.

The language is also known as Farsi, that is why google says fa.

You can translate some strings to see for yourself.

User avatar
Posts: 69
Joined: Mon Sep 5th, 2011

Return to TeX Live and MacTeX

Who is online

Users browsing this forum: No registered users and 2 guests