- Jun 23, 2015
- 198
hello people, Today i was updating my Xvirus Firewall free version and avast detecting it .. someone has the same problem?
Regards,
Anker_by
Regards,
Anker_by
Avast detects Xvirus Personal Firewall?
- Thread starter Anker_by
- Start date
Please provide comments and solutions that are helpful to the author of this topic.
- Status
- Jan 6, 2017
- 91
Hello,
you can send to avast that file here : False Positive File Form
They will remove it from the blacklist
Bye
you can send to avast that file here : False Positive File Form
They will remove it from the blacklist
Bye
- Jun 3, 2014
- 1,136
Probably they don't have The program whitelisted. Most Av software nowadays blocks every file that isn't whitelisted. Can you tell me which file was blocked?
- Jun 23, 2015
- 198
thats true, i just downloaded it and Detected by dropper
Just FP
Just FP
- Jun 23, 2015
- 198
It's just a False Positive so don't worry about it like others have already said; Xvirus Personal Firewall was probably recently updated which would explain the false positive detection, and since it had been updated it means the checksum hash was changed and clearly Avast didn't know about this update to re-white-list it.
Since the firewall is not making use of code signing authenticity (digital signature) it means the publisher cannot be white-listed which would prevent future FP detection's, so the white-list must remain based on the checksum hash or removal of the generic signature which caused the FP detection.
Xvirus Personal Firewall is completely safe and not even that bad, I like it also... try it out and see if you like it!
Since the firewall is not making use of code signing authenticity (digital signature) it means the publisher cannot be white-listed which would prevent future FP detection's, so the white-list must remain based on the checksum hash or removal of the generic signature which caused the FP detection.
Xvirus Personal Firewall is completely safe and not even that bad, I like it also... try it out and see if you like it!
- Jun 3, 2014
- 1,136
That's nice for security, but you will be missing a lot of good software
If a program is digitally signed it doesn't make it any more genuine than software that isn't signed, and malware can still be digitally signed also... All the malware author needs is some money (they can get cheap code signing from around under £100), and if someone is developing malware which is actually sophisticated (therefore they have the skill-set to do so) then they will surely have money for this... That being said, Adware is usually digitally signed (and while it may not be under the nickname of malware ("malicious software"), it's still troublesome and will cause some pain one way or another (advertisements, browser hijacking, wasting your time to clean it off your system, etc.).
As @Dani Santos said, you'll be missing out on a lot of good software - there's some great software out there that isn't digitally signed and this may be for a number of reasons. As a main point, not all developers are providing software in exchange for money (free software) or may not have enough attention to actually afford a digital signature, or others don't put their money where their mouth is and they use their money for more useful resources, such as actual product development... thus providing better software.
At the end of the day, you should review each software on it's own individual basis; do the research and perform checks to make sure it's: clean and not malicious, and comes from a vendor who is trusted and respected and does not use any shady tactics (because shady tactics are unethical and a gray line and you can never really trust a company that does things unethically).
Thanks for reading
Last edited by a moderator:
- Jun 3, 2014
- 1,136
Can you send a screenshot? And tell the resolution of your screen
Omg that is so small on your screen
Well the solution would be for @Dani Santos to make it so it is re-sizable, or just check the resolution and re-size accordingly... Since it's .NET, he could use the Anchor property so the controls move to where they should be when it's resized
See the part: "Gen:Heur" - the detection was not manually added by an analyst who believes that Xvirus Personal Firewall is malicious, however they have a generic signature (based on the bytes in the executable) which triggered the detection, which is done to help detect malware they have not yet seen.
Xvirus Personal Firewall is obviously known to Emsisoft, even two employees from Emsisoft are on this forum... Plus, if any Xvirus products were really not clean then it wouldn't be allowed on this forum, period.
Digital signatures are not an indicator as to whether a program is clean or not, it's there to help prevent people from pretending to provide software while claiming it's owned by someone who it isn't owned by. For example, if you made a fake version of Avast, then we would know it's not the genuine version just by checking the digital signature (unless the Avast certificate had been stolen and then used of course). It's essentially verification for the owner of the software - if you downloaded Xvirus Personal Firewall from the official website then you know it's the genuine copy, since the website was not breached and then hijacked by an attacker... Even then, you can do hash checksum checks to make sure it's the genuine copy.
You can rely on unsigned programs, it isn't about whether it's digitally signed or not... It's about if the program is genuinely clean or not. FP detection's happen all the time, not always with non-digitally-signed software, it's a natural thing with security software...
- Status
Similar threads
