Live updates to this issue are being posted at the bottom of this message.
What is the problem?
Due to recent updates by some anti-virus vendors, some ActiLife versions are being incorrectly identified as a virus during and/or after installing or updating. ActiLife does not contain any virus-like components and will absolutely not harm users' PCs. The false virus indications are due to the way ActiGraph protects and licenses ActiLife. Anti-virus vendors use heuristic-based methods to identify potential threats. It appears as though some of the recent virus definition updates have included a characteristic that believes our application contains the "Packed.Win32.Krap.b" virus or the "Trojan.Gen.2" virus.
Again, ActiLife is completely safe and will not harm your PC.
Why did this happen?
Recent updates made by anti-virus vendors suddenly detected ActiLife as a virus. Some vendors have indicated that this was a bug in how they develop their new virus-detection algorithms.
What tools detect ActiLife as a virus?
Customers have reported that the following anti-virus tools have flagged ActiLife as a Virus:
- Symantec Endpoint Protection
- McAfee (all versions)
- Kaspersky Internet Security
- Kaspersky (Corporate)
We are testing the following anti-virus tools to see if they too indicate that ActiLife is a virus:
- Trend Micro
- Microsoft Security Essentials
What are we doing to fix this issue?
We take your work as seriously as you do and we know that this problem can drastically impact schedules and slow down your work. Our entire development team is working on this issue now. Here's what we're doing:
- Contacting all major anti-virus vendors to add our application to their white list (several have already responded)
- Loading and testing multiple anti-virus tools to duplicate the issue
- Modifying our ActiLife code to identify the exact culprit. Once it is identified, we will remove that component and re-test ActiLife to see if this solves the problem.
- While we may identify the cause of the virus flagging using this technique, we will need to create a work-around since removal of such code may be impractical.
- Changing our test-before-release processes to ensure we test our code against anti-virus code bases prior to releasing.
What can I do?
There is a work-around. See Work around for ActiLife being detected as a virus here. IMPORTANT: Be sure to update your virus definitions often and try installing ActiLife. Some vendors have indicated that they have fixed their virus definition databases and are actively updating customers. You can expedite this process by manually checking for updates in your anti-virus application.
[10/24/2013 @ 17:30 UTC] Posted this thread/topic and emailed customers who have submitted tickets. We are currently testing ActiLife on multiple virus scanners. Here are the results thus far:
- Norton 360 version 21.1.0 does not detect ActiLife as a virus.
- Kaspersky Pure 3.0 does not detect ActiLife as a virus after updating to the latest definitions
- Avast does not detect ActiLife as a virus
- McAfee AntiVirus Plus detects ActiLife as the Artemis!8A2C22A582D0 virus
[10/24/2013 @ 20:09 UTC] It appears as if our compression process may be causing virus scanners to falsely flag ActiLife as a virus. Whenever an installable *.exe is built, we compress the files (similar to zipping files). This drops our installer size down from 34MB to 21MB. We are disabling this and re-running scans to see if we can determine if this alleviates the majority of the problems.
[10/25/2013 @ 17:45 UTC] The virus issue has been resolved. The issue was related to an expired security ticket that was being used to create ActiLife builds. We have modified our procedures to prevent this from occurring in the future. Please download ActiLife 6.8.0 from the main ActiLife page (here). If you have any questions or issues, please contact support by visiting http://www.actigraphcorp.com/support/. Thank you again for your patience.