My Anti-virus program reports that xcdns.dll in the PChat plugins folder is a Trojan DNS program that monitors and steals my information and sends it back to someone.
Can someone test the portableapps PChat and tell me what's going on?
New: DesktopSnowOK (Jan 6, 2025), Platform 29.5.3 (Jun 27, 2024)
1,100+ portable packages, 1.1 billion downloads
No Ads Nov/Dec!, Please donate today
Visit the Community page
Join our forums
Subscribe to our email newsletter
Subscribe with RSS
Follow us on Facebook
Follow us on LinkedIn
Follow us on Twitter
Follow us on Mastodon
Follow us on BlueSky
I'm guessing McAfee since they've been having all kinds of problems lately.
Sometimes, the impossible can become possible, if you're awesome!
Mcafeee and a-squared and Avira have reported that the file is infected with a Trojan.
Are you sure it's false positive from these 3 AV's?
UPDATE: I told a-squared to remove the "infected xcdns.dll" file, and Pchat still seems to load and work.
So what exactly is this file, xcdns.dll, in the plugins?
Some times programs that have code to send information about how the program is running to a server, of some sort (so that they can see what kind of systems their program is being used on), it could be completely annoyious info its sending back to the server, but a lot of cookie cutter virus scanners (specifically sense all three of those scanners use a rip off of Macfee's virus reconization and database system)
Scan it with like avast or something.
If you run it through Virustotal, it says that 4/41 report it as a virus. So it's probably a false-positive.
Judging from the mumbojumbo at the bottom describing what API calls it makes, it doesn't really do much.
Insert original signature here with Greasemonkey Script.
it's definetly a false positive since I compiled it from source myself.
your friendly neighbourhood moderator Zach Thibeau
Zach, before you compiled it, did you read every line of source code? I didn't think so
So we wish to insult him? Did YOU take the time to consult the source before you labeled it as a virus? Nope.
Either read the source, or don't point.
And, I've been using that thing for 2-3 years. Its not a virus.
Too many lonely hearts in the real world
Too many bridges you can burn
Too many tables you can't turn
Don't wanna live my life in the real world
Now now OliverK, no need to get rude. I agree that people should look at themselves before pointing towards others, but you could've worded that a bit nicer
As for the question, PChat is based on XChat's public sources, which have probably been read/looked at more times than I can count. And yes, I can count past 4. If it would've had a virus, someone would've found it by now, I'm sure.
Behold, the DutchLander has arrived.
Grammatical errors are copyrighted.
Sorry for the wording part. I fail when it comes to the social niceties or what ever you call them.
Too many lonely hearts in the real world
Too many bridges you can burn
Too many tables you can't turn
Don't wanna live my life in the real world
you truthseeker are insulting to me, I do infact read everyline of source code, I am not stupid to release something I didn't know what it did, the xcdns plugin allows users to run a dns command that searchs a user's ip address, hostname or nickname by issueing the command.
The /dns plugin handles three situations:
That's it!
now are you done trying shoot your mouth? let's keep this civil please
your friendly neighbourhood moderator Zach Thibeau
digitxp , you used the word "probably a false-positive" that don't sound to confident.
In any case, a-squared removed the file and yet Pchat seems to still connect to Undernet ok.
Are you purposely trying to wind people up?
For argument's sake, assume you and your software are completely right; your computer is infected with a horrible virus. You'd better disconnect from the "undernet" immediately and I'd stay offline for about 2 years just to be absolutely sure.
DISCLAIMER: I HAVE NOT SEEN PCHAT'S CODE, SO THE FOLLOWING IS MERELY A GUESS.
"xcdns.dll" - sounds like "XChat DNS service". I'm not exactly sure why XChat would be making DNS lookups, but it's probably to identify the network you're trying to connect to. It's possible that the DLL in question is only used if you try to connect to a server not in PChat's built-in list.
At any rate, PChat isn't infected. Period.
"The question I would like to know, is the Ultimate Question of Life, the Universe and Everything. All we know about it is that the Answer is Forty-two, which is a little aggravating."