Forum > Windows (32/64)
virus with lazarus-3.0RC2-fpc-3.2.2-win32.exe
fyh:
I have downloaded the installer lazarus-3.0RC2-fpc-3.2.2-win32.exe. When I run it, I saw red Virus Windows pop up. What's Wrong? Really?
My computer is WIN7 Windows PC 64bit. And for 32bit Twain Scanner Driver my project need,I think I should use 32bit installer.
rvk:
Those are all heuristic detections. Those are NOT (by any means) certain to be actual virus detections.
(These are almost certain faulty, defective and invalid detections by your virusscanner.)
You should contact your virusscanner software maker and supply them with these executable to be scanned more intensively.
For example:
https://support.avira.com/hc/en-us/articles/360000819265-What-is-a-HEUR-virus-warning-
--- Quote ---Heuristic refers to a "preliminary detection" feature that can also detect unknown viruses. It involves a complex analysis of the affected code and scanning for virus-specific functions. If the analyzed code does meet such characteristics, it is reported as suspect.
This does not mean, however, that the code is a virus for sure; false positives may occur. Please send us the files that were heuristically detected for further analysis.
--- End quote ---
You can also put the executables in https://www.virustotal.com/ to see if they contain actual viruses.
wp:
It is my impression that antivirus software nowadays is more annoying for developers than the virusses themselves...
I always white-list the Lazarus folder and my project root folder in the AV scanner (including subfolders, of course).
Uploaded lazarus-3.0RC2-fpc-3.2.2-win32.exe to virustotal, and it reported that "no security vendors and no sandboxes flagged this file as malicious" (59 AV engines were used).
Martin_fr:
For the installer itself we provide checksums https://www.lazarus-ide.org/index.php?page=checksums
They can be verified (on Windows) using powershell or Microsoft fciv.exe (should be available from Microsoft website).
The installers have been tested on virustotal:
win64 installer E512089EC5ECAC42E2AA41E28DA4288B3DDB6AD3 lazarus-3.0RC2-fpc-3.2.2-win64.exe
https://www.virustotal.com/gui/file/57dfcf38682ebcc624e98b14a9ce9eb87e837f75c4edb280b0bbc0501d868229
And yes, sometimes there are 1 or 2 heuristics.
If you have an AV tool, the manufacturer may offer an upload for reported files, that you think are false positive. Then they will check it out, and update their signatures
rvk:
--- Quote from: wp on December 04, 2023, 12:31:23 pm ---Uploaded lazarus-3.0RC2-fpc-3.2.2-win32.exe to virustotal, and it reported that "no security vendors and no sandboxes flagged this file as malicious" (59 AV engines were used).
--- End quote ---
And TrendMicro (maker of Antivirus One, the one in the images) is one of those 59 AV engines ;)
But the companies themselves determine the settings in virustotal
When there are a lot of false heuristic detections you probably want to disable the heuristic scan-part (which you should be able to do) or change to a better antivirusscanner.
Whitelisting the Lazarus and project folder is advised too because a antivirusscanner can really slow down things.
Navigation
[0] Message Index
[#] Next page