Hello,
We are seeing viruses detected on our installs built using both InstallAware 18.01.0.2013 and InstallAware 19.03.0.2014. When we ran our installs created with the previous installer we used no viruses were reported.
We tested the following:
- One of our current installs created with 18.01.0.2013 - reported TojWare.Win32.TrojanDropper.Agent.PNA found by Comodo.
- The base install for InstallAware 18 (without runtimes) downloaded from our account - reported TojWare.Win32.TrojanDropper.Agent.PNA found by Comodo.
- The License file for version 19.03 we downloaded from our account - reported Win32:Banker-KVL [Trj] found by Avast.
- Our installs built with version 19.03 show the same virus.
- The base install for version 19.03 (without runtimes) did not show a virus.
The virus website we used is https://www.virustotal.com/.
Can you look into this as soon as possible? We can't be giving install programs to our clients that have viruses, or even just look like they have viruses if this is a case of false positives. If we can't get this resolved, as much as I don't want to, we will have to switch installers.
Thanks,
Sheri
Virus Detected in Installs built with IA 18/X2
-
Sheri_Steeves
- Posts: 124
- Joined: Mon Oct 22, 2012 2:14 pm
Re: Virus Detected in Installs built with IA 18/X2
Peter. Smartly dressed, he still resembles an unmade bed.
InstallAware MVP
InstallAware MVP
-
Sheri_Steeves
- Posts: 124
- Joined: Mon Oct 22, 2012 2:14 pm
Re: Virus Detected in Installs built with IA 18/X2
Bokkie,
I did see that post, thanks. Unfortunately, while Avast has confirmed it as a false positive it is still showing up.
I also have another question - why are none of the files in your install folder digitally signed? In my C:\Program Files (x86)\InstallAware X2\ folder, none of the executables or dll's are digitally signed. Is that not a requirement for the Windows Logo? Is there a reason why you are not digitally signing your own files?
I did see that post, thanks. Unfortunately, while Avast has confirmed it as a false positive it is still showing up.
I also have another question - why are none of the files in your install folder digitally signed? In my C:\Program Files (x86)\InstallAware X2\ folder, none of the executables or dll's are digitally signed. Is that not a requirement for the Windows Logo? Is there a reason why you are not digitally signing your own files?
-
FrancescoT
- Site Admin
- Posts: 5361
- Joined: Sun Aug 22, 2010 4:28 am
Re: Virus Detected in Installs built with IA 18/X2
Dear Sheri,
those files are not signed to avoid possible "file Corruption" when distributed with our IA single file installer (w/Runtimes) ... the Microsoft signing tool may corrupt the installer when they are larger than approximately 1.9 GB.
Regards
those files are not signed to avoid possible "file Corruption" when distributed with our IA single file installer (w/Runtimes) ... the Microsoft signing tool may corrupt the installer when they are larger than approximately 1.9 GB.
Regards
Francesco Toscano
InstallAware Software
White Papers (HowTos) - http://www.installaware.com/publication ... papers.htm
Publications - http://www.installaware.com/publications-review.htm
InstallAware Help -F1 anywhere in the InstallAware IDE
InstallAware Software
White Papers (HowTos) - http://www.installaware.com/publication ... papers.htm
Publications - http://www.installaware.com/publications-review.htm
InstallAware Help -F1 anywhere in the InstallAware IDE
Who is online
Users browsing this forum: No registered users and 87 guests
