ProxHTTPSProxy and HTTPSProxy in Windows XP for future use

[Multibooter]

1 hour ago, AstroSkipper said:

The four files are now password protected and stops MediaFire from spreading further untruths.  That's quite enough for me. 

I have a 2TB HDD, labeled "FLAGGED", nearly full with flagged stuff. The flagged stuff is in the subfolders: adware, corrupt, incomplete, infected [=Trojans+viruses], malware, riskware and password-protected. Password-protected installer files require full trust. Your files may enjoy full trust because the source/referring page is msfn.org. The only installer containing pw-protected files which I use is for Beyond Compare, which has my full trust.

[AstroSkipper]

In April of 2022, I already recreated the cacert_Updater.exe due to false positives generated by some scanners. Read more about it here: https://msfn.org/board/topic/183352-proxhttpsproxy-and-httpsproxy-in-windows-xp-for-future-use/?do=findComment&comment=1217288  
Strangely, the archive in this post has not been flagged as malicious by MediaFire although it contains the same cacert_Updater.exe file. 

 

[Multibooter]

1 hour ago, AstroSkipper said:

In April of 2022, I already recreated the cacert_Updater.exe due to false positives generated by some scanners. Read more about it here: https://msfn.org/board/topic/183352-proxhttpsproxy-and-httpsproxy-in-windows-xp-for-future-use/?do=findComment&comment=1217288  
Strangely, the archive in this post has not been flagged as malicious by MediaFire although it contains the same cacert_Updater.exe file. 

 

Your old version of April 2022 gets flagged by my ancient version of Kaspersky, signature of 8Nov2024, as follows:

detected: Trojan program Trojan.Win32.Gamaredon.gj    file: E:\Downloads_5\cacert_Updater_Fixed_Recreated.7z//cacert_Updater.exe

No riskware is detected.

virustotal:

https://www.virustotal.com/gui/file/245eb2147210581ce8965cd1337d1137b48da190e5e5e2dd6627d8eb803dd563

Software which gets flagged has a much shorter life expectancy. A programming job may be considered complete after having ensured that it will not get flagged.

Edited January 14 by Multibooter

[AstroSkipper]

23 minutes ago, Multibooter said:

virustotal:

https://www.virustotal.com/gui/file/245eb2147210581ce8965cd1337d1137b48da190e5e5e2dd6627d8eb803dd563

Software which gets flagged has a much shorter life expectancy. A programming job may be considered complete after having ensured that it will not get flagged.

Only 2 of 62 scanners flag the cacert_Updater_Fixed_Recreated.7z file as malicious. That's a perfect result.  One of these two scanners is Kaspersky. So again, forget about Kaspersky!  It's trash just like Jiangmin. 

Edited January 14 by AstroSkipper

[VistaLover]

1 hour ago, AstroSkipper said:

The four files are now password protected ... That's quite enough for me. 

... FWIW, password-protecting the uploaded archive only takes care of downloading the archive from MediaFire; in the event one's locally installed security solution still flags some of the files contained inside the then extracted 7z archive, it's still a "nuisance", as those files have to be manually put inside an exception list  ...

Let us NOT revisit the whole "K" discussion (beaten to death already), I still respect the views voiced by members here  ; but let's consider that in places of the world where XP is still used (e.g. in ex-USSR states), "K" (v2018 Free?) might be also installed as a local Security Suite ; the best approach (apart from recreating the culprit files) would be to send those unjustly flagged files to Kaspersky Lab themselves, so, hopefully, they could lift their block on them:

https://support.kaspersky.com/common/error/other/1870

https://opentip.kaspersky.com/

@Multibooter, would you consider this? 

Kind regards.

PS: I suppose you're still being able to fetch definition updates after the Sep2024 US ban? 

[AstroSkipper]

10 hours ago, VistaLover said:

... FWIW, password-protecting the uploaded archive only takes care of downloading the archive from MediaFire;

This is of course true, but it is not the only positive effect. Password protection prevents MediaFire's virus scanner from being able to scan these files and therefore from reporting any further nonsense.  My uploaded files should only be downloaded by people who trust me and my information. It works according to the principle Take it or leave it!  Nobody is forced to download anything from me. And if after downloading my files a locally installed antimalware programme reports files as malicious, they should then be excluded from scanning as usual.

Edited January 15 by AstroSkipper
Update of content

[roytam1]

trying to run ProxHTTPSProxy_TLS_1_3_1_5_220717_PopMenu_3V3 on a XP SP3 system, and I get a crash:

Fatal Python Error: initfsencoding: unable to load the file system codec
ModuleNotFoundError: No module named 'encodings'

and a crash in ucrtbase.dll of python37.exe

[AstroSkipper]

18 hours ago, roytam1 said:

trying to run ProxHTTPSProxy_TLS_1_3_1_5_220717_PopMenu_3V3 on a XP SP3 system, and I get a crash:

Fatal Python Error: initfsencoding: unable to load the file system codec
ModuleNotFoundError: No module named 'encodings'

and a crash in ucrtbase.dll of python37.exe

Very strange. Never had any crashes with this release. All Python related modules were ported by me from @cmalex's ProxyMII (20220717) release. Check my main article under the sections 8.3.1 and 9.3! As I said, no problems here with these releases on my Windows XP computer. And you are the very first who reported such issues Did you install it by following my instructions? Maybe, you should completely remove it and perform a reinstallation. Is there anything else in your system which might interfere with the Python modules?

Edited Saturday at 10:22 PM by AstroSkipper