[issue46452] Possible false detection of Windows LZMA library as a malware by Avast

Change by Terry J. Reedy : -- resolution: -> third party stage: -> resolved status: open -> closed ___ Python tracker ___ ___

[issue46452] Possible false detection of Windows LZMA library as a malware by Avast

Nathan/Eilisha Shiraini added the comment: Thanks for the quick response. It seems Avast was just as quick, I updated my AV's databases a few minutes ago and now it doesn't repost the files as malware. Same for the VirusTotal scans. -- ___ Python

[issue46452] Possible false detection of Windows LZMA library as a malware by Avast

Steve Dower added the comment: I don't think we've changed anything here in years, so I'd be very surprised if something new was in there. More likely somebody PyInstaller'd some malware and the scanners picked up a generic part of it as the signature. Reporting it as a false positive

[issue46452] Possible false detection of Windows LZMA library as a malware by Avast

Nathan/Eilisha Shiraini added the comment: Also I should have added: I have already reported the file to Avast as a possible false positive, and I'm working on an app that heavily relies on LZMA so this has a high impact for me. -- ___ Python

[issue46452] Possible false detection of Windows LZMA library as a malware by Avast

New submission from Nathan/Eilisha Shiraini : Sending this here for information mostly On Windows, a recent (2022-01-21) Avast update makes it target the binary LZMA module embedded in Python 3.9 and 3.10. I'm talking about this file: \DLLs\_lzma.pyd I've run a VirusTotal scan of the 3.10