|
Post by bigwhale on Jan 19, 2020 10:06:20 GMT -6
Hi guys,
it is really annoying how often new Updates detected as Virus. If you knew that your DRM System triggers this behavior you should rethink your DRM System!
It is not normal that a "normal" software triggers the AV scanner so many times.
And no - Exclusions are not an solution - correct software which do not trigger the scanner is the solution! Everything else is potential security risk!
So please: Change your DRM with a better one ore remove it!
Thanks Big
|
|
|
Post by brygun on Jan 19, 2020 10:56:12 GMT -6
|
|
|
Post by orkel on Jan 19, 2020 12:44:55 GMT -6
This seems like just your antivirus program being bad. Contact the AV developers so they can patch the issue, or use a different AV that isn't so trigger-happy.
|
|
|
Post by williammiller on Jan 19, 2020 23:46:16 GMT -6
Hi guys,
it is really annoying how often new Updates detected as Virus. If you knew that your DRM System triggers this behavior you should rethink your DRM System!
It is not normal that a "normal" software triggers the AV scanner so many times.
And no - Exclusions are not an solution - correct software which do not trigger the scanner is the solution! Everything else is potential security risk!
So please: Change your DRM with a better one ore remove it!
Thanks Big
Can you let us know which anti-virus is doing this? I will contact then and let them have a sample for clearing. Bear in mind we do this with all major AV engines every time before we post an update, but a very few AV engines will have a false positive of heuristic 'generic' detection no matter how may times we send them a sample...why? I have no idea.... Thanks.
|
|
|
Post by bigwhale on Jan 20, 2020 8:27:19 GMT -6
Can you let us know which anti-virus is doing this? I will contact then and let them have a sample for clearing. Bear in mind we do this with all major AV engines every time before we post an update, but a very few AV engines will have a false positive of heuristic 'generic' detection no matter how may times we send them a sample...why? I have no idea.... Thanks.
Update 1.15 is detected as malware by McAfee Virus Scan Enterprise. But i think your DRM is doing something special which other DRM does not. Several posts in this forum about 'generic' detections with several av-products points at your DRM and not at "trigger-happy" scanners...
|
|
|
Post by williammiller on Jan 20, 2020 10:24:31 GMT -6
The protection system we utilize is used by hundreds of companies, including major companies such as IBM, Sony, HP, Kodak, 3M, Google, Western Digital, and others...it is not some home-brew cooked-up protection system.
I am sending another sample to McAffee and I am also filing a report with them to hopefully pre-process and whitelist the product in the future.
|
|
|
Post by rimbecano on Jan 20, 2020 23:11:42 GMT -6
Update 1.15 is detected as malware by McAfee Virus Scan Enterprise. But i think your DRM is doing something special which other DRM does not. Several posts in this forum about 'generic' detections with several av-products points at your DRM and not at "trigger-happy" scanners...
DRM and malware both try to get a computer to obey someone other than its owner. In the case of DRM, the purpose of the divided allegiance is to say "no" when the owner says "let me play this bootleg game", in the case of a virus, the purpose is to do criminal things with plausible deniability, or to do computationally intensive things without paying for hardware and electricity. DRM does it for a societally acceptable purpose with the consent (if often grudgingly given) of the computer's owner and the backing of the law, viruses do it for nefarious purposes, without asking permission, in flagrant violation of the law. But in either case, since the core of what they're doing is reducing the owner's control over the machine, they need to do similar things to accomplish that, which means that any DRM scheme risks being detected as malware without the scanner in question having to be especially trigger happy. Because what it's doing is considered socially and legally acceptable, AV developers try to make sure that DRM isn't detected as malware, but sometimes, inevitably, given the nature of DRM, they slip up. For my part, I object on principle to any kind of DRM, but until we can find a way that developers can feel confident of being paid for their labor other than "selling copyrighted software on a dollars-per-copy basis", it's something we're going to have to deal with on at least some software, because computers make violating copyright on un-DRMed work trivial, and, depending on the scruples of the average end user of a given piece of software, that can make un-DRMed software uneconomical to produce.
|
|
togo
New Member
Posts: 4
|
Post by togo on Jan 27, 2020 10:55:43 GMT -6
Vipre is stopping install of the 1.15 patch. Previous versions have not been a problem.
edit: Vipre won't let me play the patched game at all.
|
|
|
Post by williammiller on Jan 28, 2020 9:59:07 GMT -6
Vipre is stopping install of the 1.15 patch. Previous versions have not been a problem. edit: Vipre won't let me play the patched game at all. I have submitted a false positive report directly to Vipre, so hopefully they will whitelist it soon. Thanks.
|
|
|
Post by williammiller on Jan 29, 2020 15:00:18 GMT -6
Vipre is stopping install of the 1.15 patch. Previous versions have not been a problem. edit: Vipre won't let me play the patched game at all. I received the following message from Vipre this morning: --------------------------------- Thank you for your patience. The analysis of the file(s) has been completed. The file is clean and no longer detected under current definitions of 81140-7.83638. Product name: VIPRE for Home --------------------------------- Thanks.
|
|
togo
New Member
Posts: 4
|
Post by togo on Jan 29, 2020 15:27:13 GMT -6
Vipre is stopping install of the 1.15 patch. Previous versions have not been a problem. edit: Vipre won't let me play the patched game at all. I received the following message from Vipre this morning: --------------------------------- Thank you for your patience. The analysis of the file(s) has been completed. The file is clean and no longer detected under current definitions of 81140-7.83638. Product name: VIPRE for Home --------------------------------- Thanks. Excellent. I must say that I am very impressed with the speed with which this was resolved. The above referenced update is out and working so far. Thank you!
|
|