Forums

Registration

Click here to register. Registration is required if you want to post to the forums.

If you register, we can also contact you with news on new module versions, and upgrades to new modules as we make them available. 

Use of your registration information is subject to our privacy policy.

Inventua Forums

Subject: Inventua.DNN.Shared.dll Infected
Prev Next
You are not authorized to post a reply.

Author Messages
Karen Ivy
Posts:16

03 Sep 2012 7:59 PM  

I have a DNN 5.6.3 test site, running on my Win7 Ultimate 64-bit laptop.  I'm starting to upgrade my similar production site to DNN 6, so I rebuilt the test site from a recent production backup.  When I tried to bring it up I got this error:

Server Error in '/osc' Application.

Access is denied. (Exception from HRESULT: 0x80070005 (E_ACCESSDENIED))

Description: An unhandled exception occurred during the execution of the current web request. Please review the stack trace for more information about the error and where it originated in the code.

Exception Details: System.UnauthorizedAccessException: Access is denied. (Exception from HRESULT: 0x80070005 (E_ACCESSDENIED))

I also got a stack trace full of references like this:

Stack Trace:

[UnauthorizedAccessException: Access is denied. (Exception from HRESULT: 0x80070005 (E_ACCESSDENIED))] dependencies. Access is denied.]

System.Reflection.Assembly._nLoad(AssemblyName fileName, String codeBase, Evidence assemblySecurity, Assembly locationHint, StackCrawlMark& stackMark, Boolean throwOnFileNotFound, Boolean forIntrospection) +0

System.Reflection.Assembly.InternalLoad(AssemblyName assemblyRef, Evidence assemblySecurity, StackCrawlMark& stackMark, Boolean forIntrospection) +416

System.Reflection.Assembly.InternalLoad(String assemblyString, Evidence assemblySecurity, StackCrawlMark& stackMark, Boolean forIntrospection) +166

System.Reflection.Assembly.Load(String assemblyString) +35

System.Web.Configuration.CompilationSection.LoadAssemblyHelper(String assemblyName, Boolean starDirective) +190

While I was researching the failure, I got a popup from Norton Internet Security saying it had REMOVED Inventua.DNN.Shared.dll because it was infected with the WS.Reputation.1 threat.

I actually run two Inventua DNN products, the PayPal and TopMenu modules; but the location looks like it's part of .NET:

Full Path: c:\windows\microsoft.net\framework64\v2.0.50727\temporary asp.net files\osc\cae21f75\6aac91d8\assembly\dl3\aceaa19d\00663469_0286cc01\inventua.dnn.shared.dll

Threat: WS.Reputation.1

I wanted to notify you that this file was infected and ask where I can download a clean copy, because I can't even navigate my production site from my laptop without it!

Anthony Glenwright
Posts:10552

03 Sep 2012 8:19 PM  
Hi Karen, Thans for your post.

WS.Infection.1 is not an indication of a virus infection. See http://community.norton.com/t5/Norton-Internet-Security-Norton/Clarification-on-WS-Reputation-1-detection/td-p/232155

And:
http://www.codeandweb.com/blog/2012/06/23/how-symantec-ruins-independent-developers
http://community.norton.com/t5/Norton-Internet-Security-Norton/My-independent-software-business-is-suffering-because-of-WS/m-p/758158#U758158

Your anti-virus software is falsely classifying the relevant file as being "infected".
Anthony Glenwright
Posts:10552

03 Sep 2012 8:19 PM  
PS: You can report this issue to synamtec at https://submit.symantec.com/false_positive/
Karen Ivy
Posts:16

03 Sep 2012 8:56 PM  
Anthony,
Bless your little pink heart, and thank you for the link to the Norton Community page. Just one more reason for getting that product off my systems (going to Microsoft Security Essentials!). I have reported the problem. And when I cleared the Inventua DLL, it blocked another DLL from another DNN plugin from another publisher, apparently on the wonderful basis that no one else was using it...
You are not authorized to post a reply.
Forums > Inventua Forums > DotNetNuke Modules/Components Support > Inventua.DNN.Shared.dll Infected



ActiveForums 3.7