Cyberduck Mountain Duck CLI

#6695 closed defect (invalid)

Trojan found in uninst.exe

Reported by: Ytserman Owned by: yla
Priority: normal Milestone:
Component: core Version: 4.2.1
Severity: minor Keywords: trojan
Cc: Architecture:
Platform: Windows 7



As of today F-Secure Anti Virus software has been reporting a generic trojan infection in the uninstaller of CyberDuck installation.

Software recognizes it as Trojan.Generic.7491360 and is located on my machine at D:\Program Files (x86)\Cyberduck\uninst.exe

Can you confirm if this is a false positive? Cyberduck has been downloaded and installed from the official webpage.

Change History (4)

comment:1 Changed on May 24, 2012 at 3:17:45 PM by dkocher

  • Owner set to yla

comment:2 Changed on May 29, 2012 at 12:35:54 PM by yla

This is most likely a false positive. To be sure I've sent a copy of uninst.exe to their Sample Analysis System. Waiting for feedback now.

comment:3 Changed on May 29, 2012 at 1:55:32 PM by yla

  • Resolution set to invalid
  • Status changed from new to closed

F-Secure confirmed this file to be clean. They will update their database.

comment:4 Changed on May 29, 2012 at 1:58:03 PM by dkocher

From: F-Secure Security Labs <>
Subject: Re: SAS:46394 : Malware : [FS-T837304]
Date: May 29, 2012 15:52:46GMT+02:00


Thank you for your submission.

The file you submitted is indeed clean. A database update will be released to resolve this issue.

For the meantime, you may exclude this file from Real-time Scanning. Instructions for exclusions can be found here:

Internet Security 2008 and 2009:

Internet Security 2010, Internet Security 2011, Client Security 9:

For the latest database updates please visit this page:

We apologize for any inconveniences that this may have brought you. Should you have further questions, please do not hesitate to email us again.
Note: See TracTickets for help on using tickets.