Author Topic: Windows Defender finds Virus in 2.2.3.8 and 2.2.3.8-B  (Read 2082 times)

0 Members and 1 Guest are viewing this topic.

Telorast

  • $upporter
  • Jr. Member
  • *****
  • Posts: 28
  • Karma: 0
    • View Profile
Windows Defender finds Virus in 2.2.3.8 and 2.2.3.8-B
« on: October 13, 2017, 06:04:44 AM »
I downloaded 2.2.3.8 today and Windows Defender claims to have found Trojan:Win32/Azden.A!cl in the file.

https://www.microsoft.com/en-us/wdsi/threats/malware-encyclopedia-description?Name=Trojan:Win32/Azden.A!cl

Is it a false alarm or did some hacker manage to replace the install file?

jitterjames

  • Administrator
  • Hero Member
  • *****
  • Posts: 7714
  • Karma: 116
    • View Profile
    • VoxCommando
Re: Windows Defender finds Virus in 2.2.3.8 and 2.2.3.8-B
« Reply #1 on: October 13, 2017, 08:33:41 AM »
It is definitely a false alarm.  The site has not been hacked and those are the original files.  I have scanned all those files locally with Defender and NOD32.  I scanned both the installers and the installed versions.

This morning I downloaded them from the site again and rescanned them.  Nothing.  I then uploaded 2.2.3.8 to Virus Total.  Here is the report: https://www.virustotal.com/#/file/c7d8512b096ad7c564c203bef0712548aeb192d2c9e7d712d77abd67f8e06768/detection

I also downloaded 2.2.3.8B and uploaded it to virus total and here is that report: https://www.virustotal.com/#/file/47c16a2e1359df073000e8bc7e53904e47a729f06ff3b234d3ec71b7c97d360d/detection

Then I enabled Windows defender's cloud based submission and analysis and it would not let me download the file.  So there is something new in that system is generating the false positive.  Either that or Windows defender got it right and all other anti-virus programs on the planet got it wrong...  :biglaugh :biglaugh :biglaugh :biglaugh :biglaugh

Also of note is that even when I have windows defender's cloud system enabled, it only blocks the file from being downloaded.  If the file is already downloaded and then you scan it (either the installer or the folder after install) it finds zero threats.

I can see I'm in for some fun trying to get them to fix this...
« Last Edit: October 13, 2017, 08:37:18 AM by jitterjames »

nime5ter

  • Administrator
  • Hero Member
  • *****
  • Posts: 2012
  • Karma: 61
    • View Profile
    • Getting Started with VoxCommando
Re: Windows Defender finds Virus in 2.2.3.8 and 2.2.3.8-B
« Reply #2 on: October 13, 2017, 08:38:15 AM »
Hi,

I am on a W7 computer. I just downloaded both files and scanned them with Windows Defender. It did not find anything wrong.
TIPS: POST VC VERSION #. Explain what you want VC to do. Say what you've tried & what happened, or post a video demo. Attach VC log. Link to instructions followed.  Post your command (xml)

jitterjames

  • Administrator
  • Hero Member
  • *****
  • Posts: 7714
  • Karma: 116
    • View Profile
    • VoxCommando
Re: Windows Defender finds Virus in 2.2.3.8 and 2.2.3.8-B
« Reply #3 on: October 13, 2017, 09:02:56 AM »
This is an old article but it really says it all and it's all still true...

http://blog.nirsoft.net/2009/05/17/antivirus-companies-cause-a-big-headache-to-small-developers/

By the way, thanks very much for letting us know about this.  I probably would not have known about it otherwise since I almost never use my Windows 10 machine.  I have submitted a false positive report to Microsoft but it is unlikely to have any effect and even if it does the problem will no doubt return when I release my next version of VoxCommando.  ::confused

jitterjames

  • Administrator
  • Hero Member
  • *****
  • Posts: 7714
  • Karma: 116
    • View Profile
    • VoxCommando
Re: Windows Defender finds Virus in 2.2.3.8 and 2.2.3.8-B
« Reply #4 on: October 15, 2017, 06:57:07 PM »
I don't really know what their reputation is, but Softpedia which relists VoxCommando trial for download has also certified it as 100% clean:

http://www.softpedia.com/get/Multimedia/Audio/Other-AUDIO-Tools/VoxCommando.shtml#status