Drep detection whenver i download an executable from my own website http://whatsapphubstatus.com . It a clean software i made by own. but why this detection occuring? can any body tell me how to avoid it?
Hi,
DomainRep is a new feature of Avast, so let me explain a bit. It blocks EXE files downloads if these conditions are all met:
The file is not prevalent enough, ie. not enough Avast users launched the file yet,
The domain is not prevalent enough, ie. not enough Avast users downloaded (any) EXE files from the domain yet,
The file is not signed or Avast does not trust the signature.
Once one of these conditions are not met anymore, Avast will stop flagging the download. In other words, just wait until more people try to download the file, or digitally sign your files :-).
Honza
Isn’t this a bit like the chicken and the egg (which came first) - how are you to download the file from the site if it hasn’t met any of the conditions to build up a reputation of avast users.
The only way I can see this happening would be if the file was signed, otherwise the file and or domain name would remain blocked.
That’s a nice feature considering the fact that avast will allow a file when doesnt meet even 1 of those situations even it meets the other two.Hopefully,we will see this being worked on in a week or so.
Metascan is doing the same with an executale download pre-scan but with real scan results, avast classification is a bit like the french law method, scan verdict is malign until proven benign, as suspects are guilty until their innocence has been proven above doubt. FPs could cumulate, on the other hand unknown malign executales are caught before they can infest.
OK. So, what does this mean for sites like portal.nbed.nb.ca (My School Domain) in which Students can transfer files? The idea behind this sounds Fantastic, but there ought to be measures in place (Hopefully) in which I can manually add certain sites (Like that one) to a Whitelist?
Essentially the school domain is more likely to be recognised as in point 2. so the remainder should fall into place as only one condition needs to be met to allow the download to take place.
I don’t know if in placing the school domain in the URL exclusions would achieve that, not scanned.
David, the thing is. That is how I transfer my Projects (Coding Projects) like EXE and .SLN files. There needs to be a way, in which I can have Avast! not auto scan and flag those items.
In case you’re curious to why I do not use USB’s at school. The security there sucks. There is nothing active short of Windows Firewall and Microsoft Security Essentials. (And since MCShield usually flags EXE and VB related files, I’d have to disable any security there).
Even aside from that… Our local Technicians at school know jackcrap about how to remove an infection (Which is, slightly frustrating)…
The file, wouldn’t be recognized by Avast!. (Even as it is now, most of the time they are still “flagged” by something, whether it be Hardened Mode, The Evo-Gen detections of something else)
The portal isn’t very known. Most teachers don’t even know about it, let alone to students.
Lets put it this way, if this function is already in place as appears to be the case given this topic - then simply try downloading some of the files you have up there and see.
I just stumbled upon this “feature” also. And I think it’s stupid. Let me explain why.
I’m a small software business. I create specialized software which will be used only by a small group of people. I also create other software which I either put of as freeware or as shareware. My problem is that all my users who are using Avast are unable to download my software from my website. Because it doesn’t meet any of the requirements:
1. The file is not prevalent enough, ie. not enough Avast users launched the file yet
Of course it’s not prevalent enough. In case of the specialized software, only a handful of people will download it. In case of newly released freeware/shareware, no-one has downloaded it yet.
2. The domain is not prevalent enough, ie. not enough Avast users downloaded (any) EXE files from the domain yet
Same as above.
3. The file is not signed or Avast does not trust the signature.
I’m not going to spend extra money to get a trusted certificate just to satisfy a virus scanner. In fact, it would be easier for me to tell my clients to simply use another virus scanner instead. Which BTW is what I’m doing now.