Skip to main content
To Customer Support To Customer Support
I am a software developer, writing java code for distribution to my companies customers boxes.

 

To convert our executable jar files to Windows executable files, we download launch4j-3.8-win32.exe from the SourceForge website at:  http://sourceforge.net/projects/launch4j/files/launch4j-3/3.8/

 

We scan the launch4j-3..8-win32.exe file with Webroot and Webroot reports no problems.

 

We then open launch4j-3.8-win32.exe, and during installation, we see Webroot scan errors which indicate that the file launch4jc.exe contains the malware W32.Adware.Gen.

 

So, we are faced with the following questions:

 

1.  Does the launch4j-3.8-win32.exe file come from SourceForge with the malware already attached?

2.  Or, does my development box have the malware, and the malware attaches itself to Launch4j during the install?

3.  Or, are we seeing a false positive for W32.Adware.Gen in the Webroot scan?

 

Until we know what is really happening on the box, we can't risk deploying our app to our customer boxes.

 

 

 
Honestly i would say get in contact with support & open a ticket. If you are planning to use a file you can't fully trust to make executables which will be used by your customers then it's better to have the file checked decently.

Do you have a sandboxed environment where you can install the file and let it run and then monitor the behavior of that machine? As a developer i suppose your sysadmin skills are not proficient enough to do this yourself.

Therefor i rest my case with the statement "Contact support for your own sake".

If you don't and you distribute your built exe's and it proves there's something bad attached to the files your customers won't be happy returning customers to your company.

Reply


Terms & Conditions