server icon indicating copy to clipboard operation
server copied to clipboard
verified publisher icon stream-pi

AVG says V2 infected with IDP.Generic. on Win7 64bit

Open justcosmic1 opened this issue 3 years ago • 6 comments

Testing V2 on Win7 64bit and my antivirus flags it: AVG says "We've blocked Stream-Pi Server.exe because it was infected with IDP.Generic."

I looked in the issues but couldn't see this reported already.

justcosmic1 avatar Jan 04 '23 01:01 justcosmic1

PS I am going to delay testing this until I know for certain it's a false positive.

justcosmic1 avatar Jan 04 '23 01:01 justcosmic1

Did you verify the file? We have signatures in the release page to test against

rnayabed avatar Jan 04 '23 03:01 rnayabed

Already had malware bytes test it and it came out 100% clean. Unless you downloaded it from some other source, its a false positive

rnayabed avatar Jan 04 '23 03:01 rnayabed

Sorry I didn't notice the checksum - I will check it and get back to you. I DL'd from the github page.

justcosmic1 avatar Jan 04 '23 03:01 justcosmic1

My apologies but I'm not quite sure how to use this verification method. I have Quickhash on Windows in case that's of use. I looked at the section on authentication on the DL page - but it looks like it's for Linux terminal - but even then I couldn't understand how to reference the downloaded file. BTW I scanned the downloaded .msi file with AVG and that comes up clean - it's just the .exe file once it's installed that reports the infection. But obviously it would be good to be able to double check it. Many thanks

justcosmic1 avatar Jan 04 '23 19:01 justcosmic1

It is definitely a false positive. The automated builds are compiled on GitHub Actions, with source fully transparent on the repo. You can compile yourself and avast would still report it.

गुरु, 5 जन॰ 2023 को 1:05 am बजे को justcosmic1 @.***> ने लिखा:

My apologies but I'm not quite sure how to use this verification method. I have Quickhash on Windows in case that's of use. I looked at the section on authentication on the DL page - but it looks like it's for Linux terminal - but even then I couldn't understand how to reference the downloaded file. BTW I scanned the downloaded .msi file with AVG and that comes up clean - it's just the .exe file once it's installed that reports the infection. But obviously it would be good to be able to double check it. Many thanks

— Reply to this email directly, view it on GitHub https://github.com/stream-pi/server/issues/110#issuecomment-1371337914, or unsubscribe https://github.com/notifications/unsubscribe-auth/AGERF5MJ3RQY766C47PPTOTWQXGJDANCNFSM6AAAAAATQILV7U . You are receiving this because you commented.Message ID: @.***>

rnayabed avatar Jan 05 '23 10:01 rnayabed