InstallAware

Hello,

We are seeing viruses detected on our installs built using both InstallAware 18.01.0.2013 and InstallAware 19.03.0.2014. When we ran our installs created with the previous installer we used no viruses were reported.

We tested the following:

- One of our current installs created with 18.01.0.2013 - reported TojWare.Win32.TrojanDropper.Agent.PNA found by Comodo.
- The base install for InstallAware 18 (without runtimes) downloaded from our account - reported TojWare.Win32.TrojanDropper.Agent.PNA found by Comodo.

- The License file for version 19.03 we downloaded from our account - reported Win32:Banker-KVL [Trj] found by Avast.
- Our installs built with version 19.03 show the same virus.
- The base install for version 19.03 (without runtimes) did not show a virus.

The virus website we used is https://www.virustotal.com/.

Can you look into this as soon as possible? We can't be giving install programs to our clients that have viruses, or even just look like they have viruses if this is a case of false positives. If we can't get this resolved, as much as I don't want to, we will have to switch installers.

Thanks,

Sheri

Sheri,

I had a false-positive with the X2 installation media recently: viewtopic.php?f=2&t=10173

Bokkie,

I did see that post, thanks. Unfortunately, while Avast has confirmed it as a false positive it is still showing up.

I also have another question - why are none of the files in your install folder digitally signed? In my C:\Program Files (x86)\InstallAware X2\ folder, none of the executables or dll's are digitally signed. Is that not a requirement for the Windows Logo? Is there a reason why you are not digitally signing your own files?

Dear Sheri,

those files are not signed to avoid possible "file Corruption" when distributed with our IA single file installer (w/Runtimes) ... the Microsoft signing tool may corrupt the installer when they are larger than approximately 1.9 GB.

Regards