Hi everybody,...
When I try to use "CustomRUU.exe" for Flashing my device, I get an Trojan Warning (Kaspersky2010):
"Trojan.Win32.Regrun.gjd"
The CustommRUU.exe is the one from the RTT-Roms...
Anybody knows something about that?
Charlos_OOO said:
Hi everybody,...
When I try to use "CustomRUU.exe" for Flashing my device, I get an Trojan Warning (Kaspersky2010):
"Trojan.Win32.Regrun.gjd"
The CustommRUU.exe is the one from the RTT-Roms...
Anybody knows something about that?
Click to expand...
Click to collapse
when flashing always disable yr firewall/antivirus
Charlos_OOO said:
Hi everybody,...
When I try to use "CustomRUU.exe" for Flashing my device, I get an Trojan Warning (Kaspersky2010):
"Trojan.Win32.Regrun.gjd"
The CustommRUU.exe is the one from the RTT-Roms...
Anybody knows something about that?
Click to expand...
Click to collapse
If you get a virus warning from a customruu.exe then just use *THIS* one in the roms folder and it will go through fine. There shouldnt be any need to disable antivirus programs when flashing a rom, thats only required if having problems when installing HardSPL. I have a similar virus warning when using the customruu file included with certain custom roms. Nothing to worry about you arent under attack but if you are unsure then use the one I have provided and it will be fine
Charlos_OOO said:
Hi everybody,...
When I try to use "CustomRUU.exe" for Flashing my device, I get an Trojan Warning (Kaspersky2010):
"Trojan.Win32.Regrun.gjd"
The CustommRUU.exe is the one from the RTT-Roms...
Anybody knows something about that?
Click to expand...
Click to collapse
Same here. However it seems to be a false positive, as i read somewhere here. I've tried to put customRuu on Kaspersky's whitelist but to no avail. In order to flash my device, I had to disable Kaspersky.
beware mskip, the customruu contained in the link is also infected - see print screen attached
you can flash using romupdateutility.exe, check link below:
http://forum.xda-developers.com/showthread.php?p=5619714&highlight=romupdateutility#post5619714
mskip said:
If you get a virus warning from a customruu.exe then just use *THIS* one in the roms folder and it will go through fine. There shouldnt be any need to disable antivirus programs when flashing a rom, thats only required if having problems when installing HardSPL. I have a similar virus warning when using the customruu file included with certain custom roms. Nothing to worry about you arent under attack but if you are unsure then use the one I have provided and it will be fine
Click to expand...
Click to collapse
Hi,
I also use Kaspersky and it does kill your CustomRUU - not really a problem as all one has to do is disable the anti virus while you flash.
Regards,
J
antaed said:
beware mskip, the customruu contained in the link is also infected - see print screen attached
you can flash using romupdateutility.exe, check link below:
http://forum.xda-developers.com/showthread.php?p=5619714&highlight=romupdateutility#post5619714
Click to expand...
Click to collapse
The virus warning is just detecting the packer that was used to make the customruu file. Its not a virus, kaspersky has a habit over detecting everything rather than just actual threats which is a good thing but can get anoying sometimes.
ok mskip, i trust you are right
I had never suffered this untill today after reading this page.
In KIS2010 i just added customruu to the exclusions list and all is fine now.
avast also does false positive for it.
Mcaffee does not.
Seems a particular version got affected may be and not all.
Got one from another cook along with his ROM and was detected as trojan by my Norton.
But, the another one i found in XDA was not.
Iam attaching the one seems good.
Those who have problem, try this and lemme know
TartanArmy said:
I had never suffered this untill today after reading this page.
In KIS2010 i just added customruu to the exclusions list and all is fine now.
Click to expand...
Click to collapse
Same here mine only started today, after flashing Smabergs "Touch X DISCOVERY v1.3" maybe it was the customruu with his ROM, I don't know, but I deleted the customruu and the problem has gone.
i prefer the chefs put in the folder .nbh file than customruu.exe
skr_xd said:
Seems a particular version got affected may be and not all.
Got one from another cook along with his ROM and was detected as trojan by my Norton.
But, the another one i found in XDA was not.
Iam attaching the one seems good.
Those who have problem, try this and lemme know
Click to expand...
Click to collapse
still the same mate,it says is infected
well when i downloaded the same CustomRUU.exe few days ago kaspersky did not do anything to me but when i downloaded it again it says is inffected,i think is the new stoopid update of theirs
turborider said:
well when i downloaded the same CustomRUU.exe few days ago kaspersky did not do anything to me but when i downloaded it again it says is inffected,i think is the new stoopid update of theirs
Click to expand...
Click to collapse
I think you may be right saying it's Kaspersky's updates. I don't use Kaspersky anti-virus, I use Virgin Media PC Guard, which I was told is powered by Kaspersky so maybe I get the same updates. Also I had lots of custom ROM's on my PC with customruu's in each folder and I have just ran a full virus scan and it detected them as having a trojan. I don't know what the answer is, maybe just close the anti-virus when flashing a ROM.
skr_xd said:
Seems a particular version got affected may be and not all.
Got one from another cook along with his ROM and was detected as trojan by my Norton.
But, the another one i found in XDA was not.
Iam attaching the one seems good.
Those who have problem, try this and lemme know
Click to expand...
Click to collapse
Kaspersky shows up the Trojan on this one too!. Like others have mentioned this has started showing up today. I, like the others, had to turn off Kaspersky to get it to work.
Well as per EULA flashing roms is not exactly legal now is it? Maybe microsoft is instructing companies to add customruu as trojan so standard user gets scared and does not flash.
just noticed it today..anyway i put it under exclusion threat..save the hassle of turning off and on kaspersky
Yeah I added it to exclusions. There is no virus in the ruu. It is a recent update from Kaspersky that thinks this a threat. It's happened in the past and I'm sure it'll happen again. Sooner or later the antivirus vendors will put out another update which will exclude these files again (marking them as safe)
Related
I'm testing various tools on ROMs I've managed to break apart using various toolsets found on this very site - many thanks to the architects of these, by the way.
I'm at the stage where I have a ROM split into SYS/OEM/XIP and I'm trying to run BuildOS.exe on it - the process stops at "Creating Registry" and shows a dialog box saying "The system could not find the file specified" ...what file am I missing?
Anybody...please...!
andrew_green said:
I'm testing various tools on ROMs I've managed to break apart using various toolsets found on this very site - many thanks to the architects of these, by the way.
I'm at the stage where I have a ROM split into SYS/OEM/XIP and I'm trying to run BuildOS.exe on it - the process stops at "Creating Registry" and shows a dialog box saying "The system could not find the file specified" ...what file am I missing?
Anybody...please...!
Click to expand...
Click to collapse
I found the answer to this myself....it was because I was missing the "TOOLS" folder.
Kitchen Trojan?!
My virus software just popped this up on me after I tried to do a fresh re-install because I noticed that it seemed like one of the files dissappeared on me... What's going on here?
derekstaroba said:
My virus software just popped this up on me after I tried to do a fresh re-install because I noticed that it seemed like one of the files dissappeared on me... What's going on here?
Click to expand...
Click to collapse
perhaps your anti-virus software can negatively react to the files 'customRUU'. This is a known fact
Hakim Rahman said:
perhaps your anti-virus software can negatively react to the files 'customRUU'. This is a known fact
Click to expand...
Click to collapse
Yea. I'm not too good at computers but I always try to learn, so anything anyone would be willing to teach me would be awesome
But I don't see how the virus would call it a trojan. OUt of all things the virus software could identify it as that seems a bit strange to me. I was hoping maybe someone more advanced might be able to check it out or clarify for me?
derekstaroba said:
Yea. I'm not too good at computers but I always try to learn, so anything anyone would be willing to teach me would be awesome
But I don't see how the virus would call it a trojan. OUt of all things the virus software could identify it as that seems a bit strange to me. I was hoping maybe someone more advanced might be able to check it out or clarify for me?
Click to expand...
Click to collapse
I never thought at all as you say, we were both studying here...!!
try this [ WM Kitchens ] OsKitchen v1.33.5 Zero: The Complete Kitchen & easiest by airxtreme you can get in http://forum.xda-developers.com/showthread.php?t=628948
if still indicated the virus by your anti virus then you should disable your anti- virus running during the cooking process rom
I'm getting crazy over here...
from one moment my G'reloc does give me errors when applying.
It says:
Can not open file C:\Kitchen\SYS\***\***
*** = a different map/file each time
I tried different G'Reloc.exe files and used different SYS-folders (even ones that worked before without any problems)
Can not cook roms anymore because they will not boot somehow...
Please help me with this weird error..
What are the files it's trying to access?
Also check out the IRC room they have, if it's still up at least.
TheChampJT said:
What are the files it's trying to access?
Also check out the IRC room they have, if it's still up at least.
Click to expand...
Click to collapse
It's a different file each time....beats me...
But often it is one of the bluetooth related files....
Maybe the files you downloaded were corrupted. Try manually replacing the files, or just uninstall and reinstall the kitchen.
TheChampJT said:
Maybe the files you downloaded were corrupted. Try manually replacing the files, or just uninstall and reinstall the kitchen.
Click to expand...
Click to collapse
Ok I know a little bit more...:
I formatted my laptop and did a clean install of windows...
After that g'reloc worked again.
I installed all programs I always use on my pc again.
And today when I used G'reloc again I get the same error each time. Even if I use different locations or diffirent SYS folders (also ones I know they work!)
Which program or setting interacts with G'reloc???
Merten i don't use that program because i don't know what it does.
But i tryed to open it but i think i got the same error as you got.
Is it something like this: cannot open file (root\dir\imageinfo.bin).
And then you only have one option to click the ok button (this will exit the program)?
Know i tryed some other g'reloc programs what i got and the all gived me the same error pointing to the imageinfo.bin and then give me one option to click the ok button.
But there was one g'reloc program what did work and gived me no error.
I send a email to you with g'reloc.exe so it could be that it will give your virusscan some trouble because it is a .exe file I hope it will work for you.
I will back in some hours so i can't respons to your questions so fast.
menomenic said:
Merten i don't use that program because i don't know what it does.
But i tryed to open it but i think i got the same error as you got.
Is it something like this: cannot open file (root\dir\imageinfo.bin).
And then you only have one option to click the ok button (this will exit the program)?
Know i tryed some other g'reloc programs what i got and the all gived me the same error pointing to the imageinfo.bin and then give me one option to click the ok button.
But there was one g'reloc program what did work and gived me no error.
I send a email to you with g'reloc.exe so it could be that it will give your virusscan some trouble because it is a .exe file I hope it will work for you.
I will back in some hours so i can't respons to your questions so fast.
Click to expand...
Click to collapse
Thanx man for the effort. But I did not receive a thing... did you mail to:
[email protected]?
If your back maybe you can upload to rapidshare?
Thanx anyway!!
Well, I came across two things in PPCGeeks forum. People reported errors when they were running G'reloc on FAT32 en fixed it by changing to NTFS.
The other thing was that people reported a fix by just disabling their antivirus program. This might explain why it worked before you started installing all your programs on a clean windows install. I hope it works for you as well because I really like your roms
Maart84 said:
Well, I came across two things in PPCGeeks forum. People reported errors when they were running G'reloc on FAT32 en fixed it by changing to NTFS.
The other thing was that people reported a fix by just disabling their antivirus program. This might explain why it worked before you started installing all your programs on a clean windows install. I hope it works for you as well because I really like your roms
Click to expand...
Click to collapse
WOOHOOOO!!!! the Virusscanner was the problem!!!! I use kaspersky for a year but probably since a recent update it messes up g'reloc....
I will be cooking again.....!!!!
Thanks for the great tip!!!!!
Next time, please post questions in the Q&A section.
thank you
I may be being a little slow this morning but my system is telling me that CustomRUU is not a valid windows .exe and so I can't flash anything.
Anyone with any idea what's going on?
...I had this problem this other day... Try turning off your virus protection, my Kaspersky recognizes the custom RUU loader as a trojan and blocks it... took me hours to figure out what the hell was going on. Not sure if this is your problem, but it was the message windows gave me... so hey!! Hope this helps.
-C
Element_01303 said:
...I had this problem this other day... Try turning off your virus protection, my Kaspersky recognizes the custom RUU loader as a trojan and blocks it... took me hours to figure out what the hell was going on. Not sure if this is your problem, but it was the message windows gave me... so hey!! Hope this helps.
-C
Click to expand...
Click to collapse
Anti virus was off when I was checking what was happening!
No version of Custom RUU is working.
pa49 said:
Anti virus was off when I was checking what was happening!
No version of Custom RUU is working.
Click to expand...
Click to collapse
I had the same problem but I added the file and kitchen directory to the exclude list in my Anti Virus program and then it started working again. It seems like once it detects it it locks the file from use.
Helo everyone. I'm new to the forum and to Windows Mobile. I hope this question is in the correct place....don't want to get bashed on my first post. I have searched for about an hour now for the answer to my question but I can't find anything that relates to my problem. I am trying to install a converter..."Pocket Converter 1.50" on my TMobil USA HTC HD2. After downloading the cab file into a folder...a screen pops up that says "installation of Pocket Converter 1.50 was unsuccessful". OK...I then tryed one called "MSS Converter 1.08. Same thing happened with it too. I have successfully installed other apps so I was wondering what might be the problem.
I have had the same issue a couple of times. I think sometimes the download gets corrupted. I just redownload and usually the app will install.
Thanks for replying......I've downloaded these 2 apps numerous times and on different days but still no luck. Do you think I could download them to my computer then copy them over to the phone and install?
That may be a good idea, other than that maybe try and download from another source. I think also some apps have issues with the hd2.
signman, do you have links to the exact cabs you tried, so I can test them on mine?
What kind of converter program are those? If they're for converting units of measurement, I use the uConvert app which works great on the HD2, and was developed by an xda member...I've attached the cab here for you to try if that's what you're looking for.
i used to have this happen to me all the time when i downloaded the cab directly from my hd2. Try using a pc to download it then transfer via usb and install. Hope it works!
jfmckenna said:
i used to have this happen to me all the time when i downloaded the cab directly from my hd2. Try using a pc to download it then transfer via usb and install. Hope it works!
Click to expand...
Click to collapse
I have it happen alot with opera on the phone, but when I goto the same link with IE it works fine .... I guess IE still has its uses..
sirphunkee said:
signman, do you have links to the exact cabs you tried, so I can test them on mine?
What kind of converter program are those? If they're for converting units of measurement, I use the uConvert app which works great on the HD2, and was developed by an xda member...I've attached the cab here for you to try if that's what you're looking for.
Click to expand...
Click to collapse
Sorry for taking so long to post back...as I couldn't find my post!
The links to the apps I am trying to download are as follows...
Well since I'm a new user....I can't post the links..I got them from freewarepocketpc.net
I finally got the MSS Converter downloaded and installed from another website. Can't remember where I got it. I'm going to try to get your posted cab directly to my phone and try that one. Well that didn't work. Installation says it was unsuccessful. Maybe I have to do it like jfmckenna has suggested. Thanks for helping me out guys...I really appreciate it.
Signman1123 said:
Sorry for taking so long to post back...as I couldn't find my post!
The links to the apps I am trying to download are as follows...
Well since I'm a new user....I can't post the links..I got them from freewarepocketpc.net
I finally got the MSS Converter downloaded and installed from another website. Can't remember where I got it. I'm going to try to get your posted cab directly to my phone and try that one. Well that didn't work. Installation says it was unsuccessful. Maybe I have to do it like jfmckenna has suggested. Thanks for helping me out guys...I really appreciate it.
Click to expand...
Click to collapse
If all these installs are failing, I'm guessing you're either missing the NetCF 3.5, or the sdkcerts cab, both are attached below. These are necessary to run many of the apps/cabs you'll find here and at other sites like freewarepocketpc.net. Just put the cabs on your SD card (I recommend just putting all the ones you install in a folder there for easy reference later), and run each one, then you'll probably be able to install the stuff that was giving you issues.
cab files
I've downloaded the cab files you posted but the NetCFv35 says I have to first remove the older version. How do I remove the older version? I know nothing about Windows Mobil...sorry.
sirphunkee said:
If all these installs are failing, I'm guessing you're either missing the NetCF 3.5, or the sdkcerts cab, both are attached below. These are necessary to run many of the apps/cabs you'll find here and at other sites like freewarepocketpc.net. Just put the cabs on your SD card (I recommend just putting all the ones you install in a folder there for easy reference later), and run each one, then you'll probably be able to install the stuff that was giving you issues.
Click to expand...
Click to collapse
I thought HD2 did have NetCF 3.5 preinstalled
I got a Telstra Hd2
do i need to install these to cabs
Thank you
Signman1123 said:
I've downloaded the cab files you posted but the NetCFv35 says I have to first remove the older version. How do I remove the older version? I know nothing about Windows Mobil...sorry.
Click to expand...
Click to collapse
ilordvader said:
I thought HD2 did have NetCF 3.5 preinstalled
I got a Telstra Hd2
do i need to install these to cabs
Thank you
Click to expand...
Click to collapse
Right...I forgot that it was already loaded on the stock ROM, you can skip that signman.
m'lord, I would suggest installing the sdkcerts...it will probably be necessary for you at some point if you're installing any homebuilt apps. I suspect that most custom ROM's would have it built in.
sirphunkee said:
Right...I forgot that it was already loaded on the stock ROM, you can skip that signman.
m'lord, I would suggest installing the sdkcerts...it will probably be necessary for you at some point if you're installing any homebuilt apps. I suspect that most custom ROM's would have it built in.
Click to expand...
Click to collapse
Humm...if it is the same version I already have on the phone...wonder why it is telling me to remove the older version first. Where can I look to see what version I have on the phone?
sirphunkee said:
Right...I forgot that it was already loaded on the stock ROM, you can skip that signman.
m'lord, I would suggest installing the sdkcerts...it will probably be necessary for you at some point if you're installing any homebuilt apps. I suspect that most custom ROM's would have it built in.
Click to expand...
Click to collapse
where can i get the sdkcerts cab for hd2
please
cab file
Check post #9 above.
Flash Lite
Sirphunkee. I managed to get your uConvert installed but it is trying to install Flash Lite. That install does not work...I get a "error installing Flash Lite". Is there anything else I can do? I downloaded Flash Lite to my computer and copied it to my phone. Still won't work.
I used a Flash Lite cab file posted on the forum for my fix. Thanks everybody for your help.
Signman1123 said:
I used a Flash Lite cab file posted on the forum for my fix. Thanks everybody for your help.
Click to expand...
Click to collapse
Ok good, I'm glad you got it working (I'd forgotten it wants flash light installed to get it to work). Does uConvert cover everything you need then?
Hello,
Tried to install all SDkCerts (which are having not expired dev certs) but still I get same error.
Also searched forum and got some info about below keys and changed still no help .
[HKEY_LOCAL_MACHINE\Security\Policies\Policies]
"0000101b"=dword:00000001
"0000101a"=dword:00000001
"00001001"=dword:00000001
"00001005"=dword:00000040
"00001017"=dword:00000090
Also tried to install Security Configuration Manager on my PC (Win7 x64), but unfortunately the Security Configuration Manager does not start and crash on start .
How can I install other unsigned Cabs?
I Appreciate your help .
Thanks.
Patch your kernel.
here is the tip
Nice thread , thanks AndrewSh for the pointer... I will try that.
Thanks.
Thanks for this information Thanks for this information
I would add that patching nk.exe helps not only to install unsigned cabs.
With unpatched kernel your device always spoils system time to check digital signature of EVERY system library or executable which is going to be started during operation time. So patching kernel you definitely speed up your system saving check-up time...
Yes absolutely AndrewSh .
But will that also not lead to open the system for some software that may try to exploit the system? We should be careful enough before we install any software.
I think here we should choose between speed or vulnerable one. I will go for speed as I know what software I install on device. Also it is BAD that every time the system check for all DLL/EXE for signature in a protected system.
Thanks.
prabhat, sure but I've never met real viruses or dangerous exploits for WP. All the "antivirus protection" programs for WP (or WM) is bull**** inspired by antivirus companies to suck your money....
nk patching doesn't kill all signature checks for wceload...
ultrashot said:
nk patching doesn't kill all signature checks for wceload...
Click to expand...
Click to collapse
As always, Mr. ultrashot ruins all hopes But anyway it's better to listen to his opinion, than to mine one.
I really appreciate that he took part in the discussion, because he's one of the biggest authorities for me....
At least I have to sign all cabs with drivers/services, otherwise they won't install at all.
AndrewSh said:
prabhat, sure but I've never met real viruses or dangerous exploits for WP. All the "antivirus protection" programs for WP (or WM) is bull**** inspired by antivirus companies to suck your money....
Click to expand...
Click to collapse
Yes I agree. As long as we know what we are installing is safe our device is safe .
ultrashot said:
nk patching doesn't kill all signature checks for wceload...
Click to expand...
Click to collapse
Thanks ultrashot for the input. So do you will prefer not to patch nk and sign all dlls/exe and install or leave the nk patched
Also for "At least I have to sign all cabs with drivers/services, otherwise they won't install at all."
So if I have a cab that will replace some system driver/dll and the cab is signed (I dont know where and how - need to learn ) the ROM will allow the cab to replace the file(s)?
Thanks.
Thanks.
If you want to install a driver with a cab, I think you need to use chainfire's driver-wiz to sign the cab file. I think that's what it's called.
Patching the nk makes the most sense; it does seem to speed up .exe launches. And I agree with AndrewSh. I've never heard of any winmo viruses, or bad cabs or malware at all. Now that the platform is fading out, I really doubt that there's anything to worry about.
Farmer Ted said:
If you want to install a driver with a cab, I think you need to use chainfire's driver-wiz to sign the cab file. I think that's what it's called.
Patching the nk makes the most sense; it does seem to speed up .exe launches. And I agree with AndrewSh. I've never heard of any winmo viruses, or bad cabs or malware at all. Now that the platform is fading out, I really doubt that there's anything to worry about.
Click to expand...
Click to collapse
Thanks for the details .
Cheers!!!
Farmer Ted said:
If you want to install a driver with a cab, I think you need to use chainfire's driver-wiz to sign the cab file. I think that's what it's called.
Click to expand...
Click to collapse
Yes, DriverWiz helps.
//offtop: some drivers on some devices (wavedev.dll on x2, for example) can't be replaced in runtime even with DW signature. Signature doesn't really matter in this case, though.
So now I have patched my nk using the "autopatcher01" by cmonex.
What all are the ways to check if everything is good & nk is patched?
I have check most of work in device and all seems to be working and for nk I have installed some taskbar mod/icons (dlls etc in cab) and those got installed so I hope all good? Thoughts...