Update: Readers reported that some antivirus tools detected a trojan in this tool. The AV software I am currently using (AVG) and a few others didn't detect anything though. Thus it might be a false positive. But just to be sure, I removed the links to GiPo@FileUtilities. I think the tool is not worth the risk.
- Poll: How reliable are ChatGPT and Bing Chat? - Tue, May 23 2023
- Pip install Boto3 - Thu, Mar 24 2022
- Install Boto3 (AWS SDK for Python) in Visual Studio Code (VS Code) on Windows - Wed, Feb 23 2022
The GiPo@FileUtilities is a collection of useful file management tools. It has the following functions:
- GiPo@MoveOnBoot - copying/moving/renaming/deleting files and folders on the next system boot
- GiPo@DirMonitor - monitoring changes in the file system
- GiPo@Mount - local folders substitution and local/remote drive mounting
- GiPo@Hardlink - UNIX-like (POSIX) hardlinks for NTFS creation
- GiPo@ReadTest - checking files and folders for read errors
GiPo@MoveOnBoot can be useful in situations where a file can't be moved or deleted because it is opened by an application. GiPo@Mount enables you to mount a folder to a drive letter. You could use this feature if you want to access a CD or DVD from a hard drive. Hard links are quite common in the UNIX world, but even though they have been supported since Windows 2000, they are still not very popular among Windows admins. GiPo@ReadTest could be helpful when you suspect that an application isn't working properly because one of its files is inaccessible.
Subscribe to 4sysops newsletter!
I think that GiPo@DirMonitor is the most interesting tool of the GiPo@FileUtilities. It allows you to monitor a folder, along with its subfolders, for any kind of changes. The windows user interface displays if a file was added, changed, deleted, renamed, etc. DirMonitor can also create an HTML report that lists all of the changes made since you started the tool. It is also possible to launch a program whenever a change occurs.
Received 2 trojan detections from Endpoint from the download.
Maybe false alert
Symantec Endpoint Protection 11 report it is a trojan house
Thanks for the info. What trojan horses did it detect? AVG didn’t detect anything.
McAfee also reports trojan
ANTI-VIRUS DETECTION ALERT
The anti-virus scanner was triggered by this file. The file was not cleaned and has been removed.
Context: ‘fileutil.exe’
Detection(s): ‘Generic.dx (trojan)’
Thanks! It seems to me that in both cases it is just the heuristics that triggered the alarm.
VirusTotal reports 50% score:
http://www.virustotal.com/analisis/63e9403562f011002c7cec8813c6e107
Thanks, I didn’t know VirusTotal. This is a very useful service.
ESET confirms a false positive detection in the NOD32 antivirus.
With what appears to be suspect viral implications, has anyone actually used GiPo@Utilities? If so, your thoughts. I like what I read about the DirMonitor, but if the app is a virus waiting to happen….
Petr, thanks. I already suspected that it is just a false positive. I am still not 100% sure though. What exactly did the EST support say?
Ronin, I think there are other tools with similar capabilities out there. If I ever stumble across one, I will blog about it.
I think it is a false positive, since I’ve used the tool for a while before formatting, and it works like a charm, and serves it’s purpose with removing things impossible to remove without administrator privileges otherwise. I didn’t have a virus protection, but my computer didn’t have problems either. So I don’t know if it’s a virus or not, but if it is, the software benefits outweighed the virus status.
RAwr, just keep in mind that not every malware harms your PC. You probably wouldn’t like it if your computer belongs to a botnet. I don’t want to imply that the GiPo@FileUtilities contain such malware.
Just installed the GiPo Fileutild. Kaspersky reports a Trojan on the installer only. The installed tools are reported as clean. A complete scan of the computer after installation shows no infections (except the installer). So I would say it is a false alarm about the used installer.
Thanks, Juergen!
I too have had the same problem. I on the other hand have been using this tool for many years and I haven’t had an issue with it.
FYI, the results now (over a year later) on VirusTotal have gotten worse, not better (now 29/42 = 69%), so I am skeptical about this really being a ‘false positive’. Will skip this one. 🙁
Thanks. I will leave this article online as a warning.