Ask Your Question

Application plus malware were downloaded upon getting LibreOffice from your website!

asked 2020-03-08 12:55:14 +0200

Vesta C.R. gravatar image

I have downloaded LibreOffice from your website, I made sure to not download any of the advertized apps/features/extensions that annoyingly pop up at the beginning of App, an antivirus called SAntivirus Realtime was downloaded anyway, and it has gravely affected the performance of my computer. It was like a virus, not allowing me to remove the file in standard boot, telling me "files were locked" and of course I had to reboot in safemode to finally eliminate this application, which I wouldn't be bold to say was more like a virus on my computer as upon it showing up there was also a keylogger bug discovered on the same day!! So, Libreoffice...if you are going to offer clean, and free downloadable files...why possibly harm your customers?

edit retag flag offensive close merge delete



Someone interested in spreading malware/adware/nagware/... may well offer a download site mimicking the official one. Did you thoroughly read the URL? What was it?

Lupp gravatar imageLupp ( 2020-03-08 13:20:58 +0200 )edit

To add to what @Lupp said (and please answer his questions) SAntivirus Realtime is known malware. See link text for example.

LibreOffice does not offer to install any additional software ("apps/features/extensions") and never has.

BigRAl gravatar imageBigRAl ( 2020-03-08 18:21:21 +0200 )edit

It was downloaded from

Vesta C.R. gravatar imageVesta C.R. ( 2020-03-09 10:05:38 +0200 )edit

Your link is which is an unsecure HTTP-link. My browsers do all switch automatically to which is a secure encrypted HTTPS-link, where people can see which certificate is affiliated with the connection. Which browser are you using?

sveinki gravatar imagesveinki ( 2020-03-09 12:48:09 +0200 )edit

@sveinki: OP has just typed without any protocol (and it was automatically linkified by the AskBot). In fact, that was not a proper answer from OP at all, given the detailed instructions from @keme.

E.g., OP could mis-type a character back then when downloading LibreOffice, and be using some malicious site with a similar name; now typing it here, the same typo could not happen. Or some specific mirror hosting packages could get compromised. That's why copy-pasting of the download URL is needed, not some addresses typed anew from memory.

Mike Kaganski gravatar imageMike Kaganski ( 2020-03-09 13:08:14 +0200 )edit

1 Answer

Sort by » oldest newest most voted

answered 2020-03-09 01:07:29 +0200

keme gravatar image

updated 2020-03-09 08:25:57 +0200

Please help the LibreOffice to keep the set of downloads clean!

Share your download link with us if possible. If that shows an address linked from the LibreOffice pages, and the content is not clean, the web admins must be alerted. Also, if you remember how you reached the link (by search, linked from other page, help from a friend), that may be useful information.

To find the download link, open your browser and then view downloads. In some browsers (Firefox and Internet Explorer I know of) ctrl+J is a shortcut keypress to open download history. You may need to click "show all" or similar to have previous downloads listed. Hopefully, your offending download has not been purged from the list yet.

Right click the entry in the downloads history, and select "Copy download link". Paste the copied link in a comment to your question, or a comment to this answer. Click the link "Add a comment" to open a new blank comment entry. Add any other info you have which may be useful in investigating the case.

edit flag offensive delete link more


It was downloaded from

Vesta C.R. gravatar imageVesta C.R. ( 2020-03-09 10:05:15 +0200 )edit

@Vesta C.R.: please read @keme's description of what is needed to identify the problem. LibreOffice site allows you to choose what to download; but the download itself happens from one of multiple mirrors throughout the world (provided by third parties who donate their servers and bandwidths to host the packages: otherwise, The Document Foundation would possibly be unable to serve millions of downloads). All mirrors must give you the same packages. If some mirror became corrupted/compromised, we need the specific URL of the download, not of the page that you used to choose.

Mike Kaganski gravatar imageMike Kaganski ( 2020-03-09 10:48:14 +0200 )edit

I would suggest to post any probably unclean link here always as preformatted text to avoids its calling a site on inadvertent clicks. E.g.

Lupp gravatar imageLupp ( 2020-03-09 13:25:28 +0200 )edit
Login/Signup to Answer

Question Tools

1 follower


Asked: 2020-03-08 12:55:14 +0200

Seen: 110 times

Last updated: Mar 09