search

Const-me / Whisper

High-performance GPGPU inference of OpenAI's Whisper automatic speech recognition (ASR) model
Mozilla Public License 2.0
7.67k stars 665 forks source link

Virus False Positive? #159

Open kd0frg opened 10 months ago

kd0frg commented 10 months ago

hi, I was trying to use your whisperdesktop.exe off of GitHub on Windows, but my Bitdefender anti-virus flags it

I'm unsure if it's a false positive or not, I checked it here

https://www.virustotal.com/gui/file/241e5d64de4c10377fb3f87da2da0a428069e3b268fa357b6d13bb8a634de9c7

but bit Defender does try to block your git page now, and wants to quarantine whisperdesktop.exe

I can't find anything else quite as good as Whisper desktop

it does what I need it to do, make subtitles and really fast! and it can use the large v2 model!

however the timings aren't quite accurate, for instance, language will show up or text will show up on the video, well before the actual speech is even spoken, I can adjust this manually but to do it on a massive scale for tons of videos is a problem.

i love your software and want to continue using it, but I just want to be sure its safe to use is all and bring this to your attention

keep up the awesome programming man!

cheers!

AlmostHuman34 commented 10 months ago

image I wouldn't consider it as false positive.

Const-me commented 10 months ago

The complete source code of the software is published here on github.

Please install Visual Studio 2022. On the installation wizard, check “Desktop development with C++” and “.NET desktop development” workloads. Then follow the build instructions, submit the WhisperDesktop.exe binary you have built on your computer to virustotal, and see what happens.

emcodem commented 10 months ago

I wouldn't consider it as false positive.

Hm the Virustotal results above says 15/70 for the same MD5 while yours says 12/71. I wouldn't trust the scan results if i was you ;-) In Fact, A/V vendors these days are pretty crazy: they are aware that they detect nearly exclusively false positives and still they don't fix their stuff but instead they rely on this expensive application signing and a few other stupid ideas like vendors sending each and every single exe to them for whitelisting, community scores etc...

Whenever you use a free tool that is not used by then thousands of others, you cannot really trust your antivirus.