I am confident that none of those files are malware. They are 32-bit executables that I compiled with a reputable compiler, PowerBASIC, published by a commercial software developer that has been in business for a long time,
http://powerbasic.comIniForm.exe is a utility that JAWS scripts called to create dialogs via configuration files in ini format, since the JAWS scripting language does not include support for user-created dialogs. SayLine.exe and SayFile.exe are utilities that speak text via any screen reader, part of the SayTools package that is available at
http://EmpowermentZone.com/saysetup.exe with documentation at http://EmpowermentZone.com/SayTools.htmI suggest that you replace your anti malware program with a better one. It has unnecessarily disparaged a good application (EdSharp). I know you did not intend that to happen. In fact, it is understandable that you would be concerned about such warnings from a program that was claiming to protect you.
Jamal On 8/5/2011 8:59 PM, Andre Williams wrote:
From the MB scan results:Files Infected: c:\program files (x86)\EdSharp\webclient\IniForm.exe (Spyware.Banker) -> No action taken. c:\program files (x86)\EdSharp\webclient\SayFile.exe (Spyware.Banker) -> No action taken. c:\program files (x86)\EdSharp\webclient\SayLine.exe (Spyware.Banker) -> No action taken. I'm running the Pro version of MB. Most probably run the free version which does not run in background and therefore probably doesn't generate this warning. A-W ----- Original Message ----- From: "Jamal Mazrui"<empower@xxxxxxxxx> To:<programmingblind@xxxxxxxxxxxxx> Cc: "Andre Williams"<andre.williams.1965@xxxxxxxxx> Sent: Friday, August 05, 2011 5:47 PM Subject: Re: EdSharp has problems with Malwarebytes I mmay have missed something, but what are the three files that are reported as suspicious? I found a reference to IniForm.exe in one of your messages. That is an executable I compiled with PowerBASIC. I would be shocked if it contained malware. There about 36 web client utilities that perform various tasks via the web. It actually does not surprise me that an over zealous malware detector would flag a few of them. Since this is the first that anyone has reported this to me, I doubt that other anti malware products are finding them suspicious. I run Nortin, myself. Jamal On 8/5/2011 6:45 PM, Andre Williams wrote:You're actually right when you convey your experience with multiple warnings. I ran a more targeted search on the c:\program files Ed sharp\webclient folder and received warnings about 3 webClient files just as you described. Though I'm thinking of putting these files on the ignore list, it would be interesting to know what they are and why they trigger malware to want to quarantine. A-W ----- Original Message ----- From: "Littlefield, Tyler"<tyler@xxxxxxxxxxxxx> To:<programmingblind@xxxxxxxxxxxxx> Sent: Friday, August 05, 2011 3:28 PM Subject: Re: EdSharp has problems with Malwarebytes I got about 3-4 malware warnings on edsharp when I ran it. kind of scarry. On 8/5/2011 1:42 PM, Andre Williams wrote:Hi. Received this warning from Malwarebytes regarding EdSharp. What should one do about this problem? Malwarebytes' Anti-Malware Malwarebytes' Anti-Malware has detected a malicious process attempting to start and has blocked the execution attempt. Please select an option below. C:\PROGRAM FILES (X86)\EDSHARP\WEBCLIENT\INIFORM.EXE (SPYWARE.BANKER) Disable Protection Ignore Quarantine A-W __________ View the list's information and change your settings at //www.freelists.org/list/programmingblind__________ View the list's information and change your settings at //www.freelists.org/list/programmingblind
__________View the list's information and change your settings at //www.freelists.org/list/programmingblind