1.9.13 blocked by antivirus #62

New Issue

Closed

opened 2025-10-08 04:44:03 +00:00 by em997nz · 5 comments

em997nz commented 2025-10-08 04:44:03 +00:00

Copy Link

Hi there,

My antivirus was blocking the latest zip file due to the following file:

Trojan:Script/Sabsik.FL.A!ml

I've deleted the zip file and haven't installed 1.9.13 as a result

Hi there, My antivirus was blocking the latest zip file due to the following file: Trojan:Script/Sabsik.FL.A!ml I've deleted the zip file and haven't installed 1.9.13 as a result

ViRGEdx commented 2025-10-08 06:46:29 +00:00

Copy Link

It's not uncommon to have AV suites falsely flag new versions of OF-DL.

What AV suite flagged it?

It's not uncommon to have AV suites falsely flag new versions of OF-DL. What AV suite flagged it?

bmathe51 commented 2025-10-08 08:31:09 +00:00

Copy Link

For me, it was both Windows Defender and NordVPN's Threat Protection

For me, it was both Windows Defender and NordVPN's Threat Protection

ViRGEdx commented 2025-10-08 08:51:07 +00:00

Copy Link

Strange. It comes up clean here on my local Windows machine. And VirusTotal is not showing any hits on anyone's AV scanner.

The SHA1 hash on the main executable is 05c6b85c8356e6fedb8e074991ea9f77b57d0b57. So long as that matches, then I have to assume this is a false positive based on heuristics.

Strange. It comes up clean here on my local Windows machine. And VirusTotal is not showing any hits on anyone's AV scanner. The SHA1 hash on the main executable is `05c6b85c8356e6fedb8e074991ea9f77b57d0b57`. So long as that matches, then I have to assume this is a false positive based on heuristics.

Captain_Koons commented 2025-10-12 09:51:19 +00:00

Copy Link

Same problem here with Norton 360.
It detects "IDP.Generic.632f0bf603ef.3.2"

I had the same issue with some ealier versions of OF-DL too.

Same problem here with Norton 360. It detects "IDP.Generic.632f0bf603ef.3.2" I had the same issue with some ealier versions of OF-DL too.

Captain_Koons referenced this issue 2025-10-13 13:57:54 +00:00

Latest package (.13) shows as containing a virus - false positive? #63

melithine commented 2025-11-12 23:21:57 +00:00

Collaborator

Copy Link

False positives happen frequently, particularly since ofdl.exe controls ffmpeg.exe which seems suspicious to some antivirus software. The code is public and the builds are fully automated and the build logs public, so there's very little cause for concern.

False positives happen frequently, particularly since ofdl.exe controls ffmpeg.exe which seems suspicious to some antivirus software. The code is public and the builds are fully automated and the build logs public, so there's very little cause for concern.

melithine closed this issue 2025-11-12 23:21:57 +00:00

Sign in to join this conversation.

No Branch/Tag Specified

Branches Tags

master

avalonia-gui

already_downloaded_error

ffmpeg_additional_logging

header_update

version_timeout

ffmpeg_version

OFDLV1.10.0

OFDLV1.9.20

OFDLV1.9.19

OFDLV1.9.18

OFDLV1.9.17

OFDLV1.9.16

OFDLV1.9.15

OFDLV1.9.14

OFDLV1.9.13

OFDLV1.9.12

OFDLV1.9.11

OFDLV1.9.10

OFDLV1.9.9

OFDLV1.9.8

OFDLV1.9.7

Labels

Clear labels

bug

Something is not working

code-submitted

Some code has been written to address this issue, but has not yet made it into a release version yet.

duplicate

This issue or pull request already exists

feature-request

New feature

invalid

Something is wrong

needs-documentation

The OFDL documentation needs to be updated for this issue.

needs-info

More information is needed

triaged-and-escalated

This has been triaged and needs help from a specific developer.

wontfix

This won't be fixed

No Label

Milestone

No items

No Milestone

Projects

Clear projects

No project

Assignees

Clear assignees

JIREX melithine whimsical-c4lic0 sim0n00ps

No Assignees

5 Participants

Notifications

Subscribe

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: sim0n00ps/OF-DL#62

No description provided.