Virus Detected by Symantec

[lolotechy]

the executable file is being blocked by Symantec Endpoint Protected for suspecting as a virus.

[mrf345]

Thanks for reporting. I'm using pyinstaller to generate the .exe file for windows. That's a false positive and a known issue as one of the maintainers of pyinstaller has mentioned in this issue pyinstaller/pyinstaller#3802 (comment).

Please contact your anti-virus vendor. There is nothing we can do about this false positive.

If you're still concerned, as you should. Then you could build your own .exe file and examen it. I've went into details on how-to generate a .exe file in a previous issue #7 (comment).

---

Although after some investigation and comparison i've noticed the anti-viruses that have the false positive have increased since the migration to Python 3. I'm comparing the 0.5 to the 0.6 windows release .zip file.

• 0.6 release false positives: https://www.virustotal.com/gui/file/f71ef1c2624fa5707b8d47b809de45d10ff7bbb409e5f4253a381cbb9b000579/detection
  

• 0.5 release false positives: https://www.virustotal.com/gui/file/1687f39b1bf5c39d1a58e1c4acc0d919c2d5740e71ea46038c0ef9d40e52ba32/detection
  

So there might be a hope of reducing it by downgrading my build environment back to an older version of Python 3 or back to Python 2. But most likely that won't be feasible, since the support for Python 2 is soon to be dropped and Python 3.4 is already dropped.

[mrf345]

Good news, I managed to reduce the false positives by compiling the pyinstaller bootloader locally:

I've replaced the old binaries with the new one. However the .exe is still unsigned so Windows Defender will still report it as a malicious software. I looked into signing it, but the lowest cost i found is just unreasonable 59$/year for a free open-source project 😞

[lolotechy]

Thanks a lot.  Best Regards, Jayvee On Tue, 7 Jan 2020 at 11:10 PM, Mohamed Feddad<[email protected]> wrote: Good news, I managed to reduce the false positives by compiling the pyinstaller bootloader locally: I've replaced the old binaries with the new one. However the .exe is still unsigned so Windows Defender will still report it as a malicious software. I looked into signing it, but the lowest cost i found is just unreasonable 59$/year for a free open-source project 😞 — You are receiving this because you authored the thread. Reply to this email directly, view it on GitHub, or unsubscribe.