ktwb
commented
10 months ago Yup, same here, newest version of pyfa is a problem...
Closed raimondsL closed 10 months ago
ktwb
commented
10 months ago Yup, same here, newest version of pyfa is a problem...
SzymonTomtala
commented
10 months ago Avast says the same: FileRepMalware
DarkFenX
commented
10 months ago More context: https://github.com/pyfa-org/Pyfa/issues/2550
Surprisingly enough, 3 more antiviruses which reported pyfa-v2.57.2-win.zip okay, report pyfa.exe which was just sitting in the zip as malicious (Bkav Pro, SecureAge, Zillya - seems like they just don't check contents of zip?):
Report this as false positive to your antivirus, please. I will try reverting pyinstaller another step, 6.1.0 -> 6.0.0 (thought when it's just Avast/AVG report false positive is ok, but apparently windows defender scan isn't part of virustotal anymore).
DarkFenX
commented
10 months ago Also make a screenshot of what exactly windows defender says.
DarkFenX
commented
10 months ago Also, can people who get windows defender error check that they have no pending updates?
raimondsL
commented
10 months ago
Windows Defender update 08-DEC-2023
DarkFenX
commented
10 months ago Yep. I am waiting for a corpmate to finish windows update to give me exact this info (if it resolves the issue or not).
So, the windows defender issue is solved by windows update.
edit: or am I reading it wrong and windows update didn't exactly help? "Threat restored" is confusing
raimondsL
commented
10 months ago Yep. I am waiting for a corpmate to finish windows update to give me exact this info (if it resolves the issue or not).
So, the windows defender issue is solved by windows update.
edit: or am I reading it wrong and windows update didn't exactly help? "Threat restored" is confusing
It was me restoring the threat.
DarkFenX
commented
10 months ago Ok, so just to confirm, it was detected as a threat despite latest update installed, and "restoring" threat means telling system it's not a virus (= false positive)?
(i am not familiar with terms or interface of windows defender)
raimondsL
commented
10 months ago Ok, so just to confirm, it was detected as a threat despite latest update installed, and "restoring" threat means telling system it's not a virus (= false positive)?
(i am not familiar with terms or interface of windows defender)
It means it's still a threat. I just put it back
DarkFenX
commented
10 months ago Ok thanks.
DarkFenX
commented
10 months ago Changed pyinstaller version in fc436912754bd7d4ef86e6ff038f1eaed5a78cc6, please try this build and see if windows defender complains about it: https://ci.appveyor.com/project/pyfa-org/pyfa/builds/48713422/job/p3y42tsnfi3e3j5w/artifacts
If it doesn't, I will make a release
raimondsL
commented
10 months ago Windows Security is dumb, but it worked for me. i'd recommend at least one more confirmation
DarkFenX
commented
10 months ago There already were reports from pyinstaller side, e.g. this: https://github.com/pyinstaller/pyinstaller/issues/7967#issuecomment-1773906836
And pyinstaller version is all that matters. Windows defender doesn't check pyfa code i think. I will wait for confirmation from my corpmate and will make a release.
DarkFenX
commented
10 months ago Got another confirmation that it works, made a new release: https://github.com/pyfa-org/Pyfa/releases/tag/v2.57.3
AnrDaemon
commented
9 months ago I strongly suggest setting up a file signing. No need for some "well-known" CA, even a local CA rolling out certificates is okay to add a consistency protection and a recognizable mark on the file.
https://www.virustotal.com/gui/file/a1e066ee7c07b7d37b9b2573e7f0aa994ea43c0918b8a6995f8dfa02aac94398/details