search

Bluegrams / Vividl

Modern Windows GUI for youtube-dl/ yt-dlp
https://vividl.sourceforge.io
BSD 3-Clause "New" or "Revised" License
642 stars 54 forks source link

virus #6

Closed rocky53204 closed 4 years ago

rocky53204 commented 4 years ago

virus detected upon download!

alxnull commented 4 years ago

Could you add some details to this? Does this happen when downloading the software from the download page? Or when downloading a video? What exactly is flagged as malicious?

You should download Vividl from the official download page at https://sourceforge.net/projects/vividl/ and not from any third-party sites. All projects an SourceForge.net are automatically scanned for malware: https://sourceforge.net/blog/is-sourceforge-net-safe/.

The binaries on SourceForge are directly built from the source here on GitHub. If you don't trust these binaries, you may want to build the software yourself from source using Visual Studio.

As the binaries of Vividl are unsigned and the software internally calls two external executables (youtube-dl.exe and ffmpeg.exe) there still is a possibility that your antivirus software falsely flags Vividl as malware.

rocky53204 commented 4 years ago

Edition: Windows 10 Home Version: 1909 OS build: 18363.778 Windows 10 and windows security... upon download I get this message: "VividlSetup.msi contained a virus and was deleted." came from cfhcable.dl.sourceforge.net

I have used this program in the past without issues.

alxnull commented 4 years ago

I have used this program in the past without issues.

Since you used this software previously, are you still able to download older versions without issues? Or does downloading the portable Zip version instead of the msi installer work?

You could also check if downloading different software or using a different browser for downloading works without issues.

rocky53204 commented 4 years ago

The portable zip version downloaded and ran without issues! Thanks!

alxnull commented 4 years ago

Great. Meanwhile, I submitted the installer file as a false positive to Microsoft's malware analysis system, so Windows Defender shouldn't detect the file as malicious anymore.

Here is a quick check of the file on VirusTotal (including Microsoft anti-virus), verifying the file is clean: https://www.virustotal.com/gui/file/d47fa6f72cb3be9c354610f78f21dc8ee0f7161b67e5f7b4b10fb4dfbc8fd008/detection

P.S.: If this helped you, please consider updating your one-star rating on SourceForge saying the software is malicious. Thanks!

alxnull commented 4 years ago

Closing with release of v.0.2.2 (check).