Windows AV blocking opening zen.exe due to virus/trojan found in the executable. #37
Comments
|
virus detection websites dont detect anything so I dont know why is windows AV complaining... |
|
I might try to whitelist the exe. I'll get back with an update. |
|
Update: Just tried again without adding an exception and it works flawlessly. TLDR: Windows is weird. |
|
Windows is weird. Thanks a lot for trying it out!
|
|
No worries! Found it on Reddit and was actually very impressed. I have my own browser but I'm not forking it off of anything, so it's cool to see an indie browser thriving like this! |
|
In the last 30 minutes, while I was accessing a site, using version 1.0.0-a.29 (64-bit), Windows Defender terminated the App and deleted the core executable. |
|
Same happened to me. Admittedly my Defender is very weird and Windows Security crashes when I try to open it, so I can't open the UI to add exclusions or inspect things that way, but a.28 works |
|
It happened to me too, mine Zen was flagged by Kaspersky when I tried to import data from another browser. |
|
Windows 11 Zen was installed directly from the website. https://www.zen-browser.app/ Windows Defender Picked it up as soon as I opened Zen.exe Trojan Name = "Wacatac.B!ml" I dont want to be excluding something with that name, a quick google search will show you this is a popular one. |
|
I have the same problem, first the core executable was deleted and then a can't download the installer :/ |
|
Maybe it is an issue that will fade once Zen gets a signature, but as it stands, its normal operations are being flagged as Malware/Trojan like. I think I'll look into Zen again once it gets a little less alpha or beta-ish. |
|
The Generic Version does not pick up as a Trojan. It's just the Optimized Version. |
|
Virustotal is also showing it as some trojan script. Are all of these just false positives? |
|
Check this information: and try also analyzing the file in other places like: https://internxt.com/virus-scanner https://opentip.kaspersky.com/
|
|
Getting blocked for me too. |
|
Exactly the same problem as others are having. Also the installer is detected as PUA:Win32/Packunwan.
|
|
|
|
Same here (Windows 11 Pro 23h2) |
|
Just wanted to report that this is still happening. System: Windows 11 Pro 22H2 Build: 22621.3880 |
|
I also get this same trojan script, this made me uninstall zen immediately |
|
Could this maybe have a connection to the new windows defender update? 1.0.0-a.29 was released 2 days ago, but this problem only started about 9 hours ago. EDIT: The latest update I've installed (defender version 1.417.317.0), doesn't include anything about |
|
Just tried to install the Zen browser on a Windows 10 and it blocks it claiming that there's a "PUA:Win32/Packunwan" virus |
|
I am on Win 10 Pro, and after the core executable was annexed, I attempted to uninstall. The uninstall would not function, which did surprise me. Maybe the missing file was causing the uninstaller to fail. |
|
|
@FeraltCode just updated to 1.0.1-a.6 and here is
|
still getting unsigned DLL's |
|
Which dll ? If is |
All three of these files are unsigned. |
Used the installer and the installer on it's own is fine but the bundled / extracted files are the issue here. |
|
@jgonzales20 how is it possible that the same file |
|
I see non of the files are signed on the installer... Hmmm |
It's coming from the installer. |
|
Latest Update: |
|
Had to reinstall 1.0.1-a.8 from setup. None of the files are signed. And the blocking started again... |
|
Same by Kaspersky Hoy, 15/10/2024 21:55:12;Se detectó un objeto malicioso;Zen Browser;zen.exe;C:\Program Files\Zen Browser;26164;MENTE\josue;Iniciador;Detectado: PDM:Trojan.Win32.Generic;Detectado;PDM:Trojan.Win32.Generic;Troyano;Alta;Exacta;zen.exe;zen.exe;C:\Program Files\Zen Browser;Proceso;Análisis de comportamiento |
|
a. 10 is receiving the following detections. |
|
@mauro-balades a.12 still has two unsigned files in the installer. Virus total: https://www.virustotal.com/gui/file/90cb7c445fd7a99c05f8aae60fb49ea4e7a84f69449b5a4a9b10c4af3d441cb5/relations |
|
AV flagged Zen once more, I ran the Installer (Executable, Optimized, downloaded through website) through VirusTotal and there are 5 unsigned files |
|
|
|
Pallo Alto XDR has been flagging it too on occasion, today was this alert: |
|
I believe these false positives will occur until this goes to stable as you can't get a signing cert until you are in production / out of alpha |
|
I got this problem with v1.0.1-a.21 in my PC just now, while intalled in my laptop correctly. PC information: |
|
its because the windows exe file needs to singed as per microsoft's protocol. I guess only the production version will have it |
|
Im still investigating into how I can properly fix this issue for once and for all. I think there's a slight issue when signing the executables inside the installer |
and others
The text was updated successfully, but these errors were encountered: