Comments (14)
HarmVeenstra
commented on July 21, 2024
1
Same goes for Sophos Endpoint Protection
from ventoy.
jimmihenry
commented on July 21, 2024
1
Windows Defender found and kicked the Ventoy.exe, pointing out Trojan:Win32/Phonzy.C!ml. Ver.1.0.58
Cheers
from ventoy.
JinGWme
commented on July 21, 2024
I second this.
McAfee delete main exe file upon download finishes.
from ventoy.
boomschtick
commented on July 21, 2024
The detections on VirusTotal is up to 19. I ran the app in Windows Sandbox and didn't see anything wrong, but the detection rate is concerning for people who care to look.
from ventoy.
xfrankbx
commented on July 21, 2024
Same for Bitdefender. Says it found Trojan.GenericKD.33781261 in the zip file.
from ventoy.
luketanti
commented on July 21, 2024
@ventoy can you please have a look about this please?
from ventoy.
ventoy
commented on July 21, 2024
Currently I have no idea about this.
Ventoy2Disk.exe is open source. You can compile it from the source by VisualStudio.
So I don't known why it is denied by these antivirus software.
Any suggestions?
from ventoy.
boomschtick
commented on July 21, 2024
There has to be some kind of behavior in the code that the AV's don't like to see. Either that or you have used source code that was used previously in some kind of malware.
That's my best guess.
from ventoy.
RudiKlein
commented on July 21, 2024
Hi,
Maybe the message I got from Acronis Active Protection (module of Acronis True Image 2020) could shine some light on this. It blocks the Ventoy2Disk.exe with the message: Possibe ransomware detected. Acronis Active Protection paused the program that tried to modify your Master Boot Record". That might be a hint.
from ventoy.
jsamr
commented on July 21, 2024
@ventoy I dig into support channels. Here is a list, you could submit reports to be whitelisted! I picked all false positive vendors from Virus Total.
- SecureAge APEX: https://www.secureaplus.com/features/antivirus/report-false-positive
- eGambit: https://tehtris.com/egambit_fp.php
EDIT1: I removed the false positives reported by older VT submissions
EDIT2: Only two anti-virus solutions flag the 1.0.12 version as malware
from ventoy.
Riz-waan
commented on July 21, 2024
Hi, what about for windows defender?
from ventoy.
tonyd85
commented on July 21, 2024
Acronis claims it modifies the Master Boor Record. Of which disk, Acronis is yet to say. However, Acronis is kind enough to bug out for 30 minutes before finally blocking it. Edit: Then Acronis actually failed to block it. Better look up my build number before I post on their forums...
from ventoy.
tonyd85
commented on July 21, 2024
yeah the behavior is not using DLL injection to get past AV. lmao
from ventoy.
petrus9
commented on July 21, 2024
Just tested ventoy-1.0.81-windows.zip on virus total and got one flag: Trojan.Malware.300983.susgen by MaxSecure
from ventoy.
Related Issues (20)
- Cannot launch ventoy as root user
- [issue]: 未来会考虑加入支持解压缩功能吗? HOT 1
- [issue]: Unable to boot Lenovo Linux Diagnostics - Bootable CD from Ventoy
- [issue]: 在固态U盘中加载缓慢
- Windows 8.1 on UEFI class 3 along with EfiGuard garbled hdmi display output HOT 3
- [Success Image Report]: WePE_64_V2.3.iso
- Please add ability to integrate into existing GRUB - to use without USB
- [issue]: How do I attach vhd while booting Windows? 请问如何在boot Windows的同时附加vhd HOT 4
- Clean install Windows 10 ISO (Updated June) is now requesting having to connect to the internet and login with a MS account during installation (even without being connected at all) HOT 7
- [issue]: Microsoft Surface Go 4 - Won't Boot From USB Built With Secure Boot Support - Even When Disabled in Surface BIOS
- [Success Image Report]:
- [issue]: livecd stuck on black screen HOT 1
- [issue]: Ventoy refuses to boot with Secure Boot on Dell Latitude HOT 1
- [issue]: After restarting the win10 system, the USB flash drive cannot be recognized, and it directly enters the BIOS
- [Success Image Report]: archlinux-2024.07.01-x86_64.iso
- [Success Image Report]: proxmox-ve_8.2-1.iso
- [Success Image Report]:
- [issue]: Partition Config Causes BSOD!
- [Success Image Report]: AnhkTech WinPE v10
- [issue]: Boot Conf Replace Plugin not working in refind
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from ventoy.