<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
</head>
<body>
<p>Hi,</p>
<p><a class="moz-txt-link-freetext" href="https://www.nirsoft.net/utils/nircmd.html">https://www.nirsoft.net/utils/nircmd.html</a></p>
<p>As you can see, it could be very useful to use if one wanted to
hack a computer. My guess is that it gets flagged because the
company also does Windows Password Recovery tools...</p>
<p>Nicolas<br>
</p>
<div class="moz-cite-prefix">On 2020-05-14 3:00 p.m., Bob and Deb
wrote:<br>
</div>
<blockquote type="cite"
cite="mid:CAHEX0wxGhfCupX9L+2SY2grXsT3mRqr8fvE=1wwm88emaL5qhg@mail.gmail.com">
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
<div dir="auto">
<div>Oops, forgot another "qgis". It's <a
href="https://github.com/qgis/qgis/issues/32247"
moz-do-not-send="true">https://github.com/qgis/qgis/issues/32247</a></div>
<div dir="auto"><br>
</div>
<div dir="auto">I now know what is happening, but I will send a
post to the developers.</div>
<div dir="auto"><br>
</div>
<div dir="auto">-Bob<br>
<br>
<div class="gmail_quote" dir="auto">
<div dir="ltr" class="gmail_attr">On Thu, May 14, 2020,
11:53 AM Nicolas Cadieux <<a
href="mailto:nicolas.cadieux@archeotec.ca"
moz-do-not-send="true">nicolas.cadieux@archeotec.ca</a>>
wrote:<br>
</div>
<blockquote class="gmail_quote" style="margin:0 0 0
.8ex;border-left:1px #ccc solid;padding-left:1ex">
<div>
<p>Hi,</p>
<p>I cannot find your issue. The link does not work.
Normally these are false positive and normally they
happen when virus database are updated. Send an email
to the developer list if you have questions. I have
been using Qgis since version 0.8. I have never seen
a virus. I am not on the developers list. <br>
</p>
<p>Nicolas<br>
</p>
<div>On 2020-05-14 2:06 p.m., Bob and Deb wrote:<br>
</div>
<blockquote type="cite">
<div dir="auto">
<div>Hi Nicolas,
<div dir="auto"><br>
</div>
<div dir="auto">I just noticed <a
href="https://github.com/qgis/issues/32247"
target="_blank" rel="noreferrer"
moz-do-not-send="true">https://github.com/qgis/issues/32247</a>
that was just posted today. It seems that Trend
just updated their virus database, so there
could be troubles ahead for QGIS users.</div>
<div dir="auto"><br>
</div>
<div dir="auto">I was afraid our IT department
would blacklist QGIS. This ticket was greatly
needed!</div>
<div dir="auto"><br>
</div>
<div dir="auto">Bob</div>
<br>
<br>
<div class="gmail_quote">
<div dir="ltr" class="gmail_attr">On Thu, May
14, 2020, 10:19 AM Nicolas Cadieux <<a
href="mailto:nicolas.cadieux@archeotec.ca"
target="_blank" rel="noreferrer"
moz-do-not-send="true">nicolas.cadieux@archeotec.ca</a>>
wrote:<br>
</div>
<blockquote class="gmail_quote" style="margin:0
0 0 .8ex;border-left:1px #ccc
solid;padding-left:1ex">
<div>
<p>Probably false positive.<br>
</p>
<p>Scan my version of the file. I am
running QGIS 3.12. Windows Defender does
not find anything (not surprising). If
mine is ok and your not, you may have a
problem. If both are problematic, this
probably a false positive.</p>
<p>Nicolas<br>
</p>
<div>On 2020-05-14 12:53 p.m., Bob and Deb
wrote:<br>
</div>
<blockquote type="cite">
<div dir="ltr">
<p class="MsoNormal" style="margin:0in
0in
0.0001pt;font-size:11pt;font-family:Calibri,sans-serif">Hello
All,</p>
<p class="MsoNormal" style="margin:0in
0in
0.0001pt;font-size:11pt;font-family:Calibri,sans-serif"> </p>
<p class="MsoNormal" style="margin:0in
0in
0.0001pt;font-size:11pt;font-family:Calibri,sans-serif">One
of our computers has been getting many
alerts by Trend saying there is an
issue caused by “<a
href="https://smex-ctp.trendmicro.com:443/wis/clicktime/v1/query?url=http%3a%2f%2fHacktool.Win64.NirCMD.SM&umid=d7fa987b-5f06-40a1-946b-6430a7223233&auth=44d5c7213adeed633b42437d873f0cd41ec0ce6b-8b54c1215904be65c9beb4e32b9e4c9fab8472d0"
rel="noreferrer noreferrer"
target="_blank"
moz-do-not-send="true">Hacktool.Win64.NirCMD.SM</a>”
on the command nircmd.exe. And this
is a description: of that alert: <a
href="https://www.trendmicro.com/vinfo/us/threat-encyclopedia/malware/HackTool.Win64.NirCMD.SM"
style="color:rgb(5,99,193)"
rel="noreferrer noreferrer"
target="_blank"
moz-do-not-send="true">https://www.trendmicro.com/vinfo/us/threat-encyclopedia/malware/HackTool.Win64.NirCMD.SM</a></p>
<p class="MsoNormal" style="margin:0in
0in
0.0001pt;font-size:11pt;font-family:Calibri,sans-serif"> </p>
<p class="MsoNormal" style="margin:0in
0in
0.0001pt;font-size:11pt;font-family:Calibri,sans-serif">Is
this a false positive virus alert?</p>
<p class="MsoNormal" style="margin:0in
0in
0.0001pt;font-size:11pt;font-family:Calibri,sans-serif"> </p>
<p class="MsoNormal" style="margin:0in
0in
0.0001pt;font-size:11pt;font-family:Calibri,sans-serif">Thank
you,</p>
<p class="MsoNormal" style="margin:0in
0in
0.0001pt;font-size:11pt;font-family:Calibri,sans-serif">Bob</p>
<p class="MsoNormal" style="margin:0in
0in
0.0001pt;font-size:11pt;font-family:Calibri,sans-serif"> </p>
</div>
<br>
<fieldset></fieldset>
<pre>_______________________________________________
Qgis-user mailing list
<a href="mailto:Qgis-user@lists.osgeo.org" rel="noreferrer noreferrer" target="_blank" moz-do-not-send="true">Qgis-user@lists.osgeo.org</a>
List info: <a href="https://lists.osgeo.org/mailman/listinfo/qgis-user" rel="noreferrer noreferrer" target="_blank" moz-do-not-send="true">https://lists.osgeo.org/mailman/listinfo/qgis-user</a>
Unsubscribe: <a href="https://lists.osgeo.org/mailman/listinfo/qgis-user" rel="noreferrer noreferrer" target="_blank" moz-do-not-send="true">https://lists.osgeo.org/mailman/listinfo/qgis-user</a></pre>
</blockquote>
</div>
</blockquote>
</div>
</div>
</div>
</blockquote>
</div>
</blockquote>
</div>
</div>
</div>
</blockquote>
</body>
</html>