YESTERDAY I updated QSPICE, and after the update I received a virus detection type TROJAN, Detection Name: ARTEMIS! C4xxx (some numbers). I want to mention that QSPICE I installed it on my working laptop, laptop that has antivirus/virus detection security system/corporate firewalls.
Were detected three instances of malware, which are listed below:
And after detecting this TROJAN virus, TODAY I had (MANDATORY/URGENTLY) to uninstall QSPICE from my working laptop, forced by IT guys due to this TROJAN/MALWARE virus detection.
Under these conditions I can no longer use QSPICE on my working laptop, due to this virus detection. I can only use QSPICE on a laptop where viruses are allowed to enter.
From what Iāve read and from what I understood so far, this QSPICE is free for everyone, free even for commercial use.
Those are false positives. What you need to do is ask ARTEMIS for your money back. Thereās really the only solution.
The problem is this: Any 3rd party selling anti-virus software needs viruses to exist and they need you to believe you get occasionally infected with them for that party to be in business. During the dot com bubble, there were online scanners that would report false positives so youād buy their product. Today, it remains a low risk for a 3rd party to report false positives as long as they donāt do it on extremely popular software. QSPICE is new, so a 3rd party can tell you itās infected and have you not use it. The perception can be that the virus company saved your day, where the opposite is the fact.
People love to hate Microsoft, but only the Microsoft virus product has a business model that is in your interest. Microsoft(and yourself) are the only parties that donāt want viruses on your computer. 3rd parties all want viruses to exist and occasionally infect your computer. 3rd party virus companies are not your friend.
Two final thoughts (i) There is absolutely no excuse for detecting acmesemi.dll as infected. It is digitally signed with an extended verification authority at the highest level of security and has a SHA256 digest. The C++ source code top acmesemi.dll is even included. (ii) QSPICE is developed on a secure platform in a very secure location whereas virus companies need to have all those viruses to be able to detect them and canāt afford as secure of location as I work in.
I have the same problem but with Avast. If I turn off for 10 minutes, the download starts but rapidely freeze and stay permanentely in that state.
Any explanation for happing this? How can I fix it?
Cornel, which anti-virus program is flagging QSPICE?
Acmesemi.dll is an example model that you can create using QSPICEās C++ compiler. As Mike said, thereās no reason for it to be flagged, except that itās new.
On a Windows 11 Pro machine Norton flagged getqspice.com as āa known dangerous webpageā and quickly removed the installer. On a Win 10 Home the installer appeared as a 0 size file.
Thanks- I submitted the page to Norton. They do not have a whitelist program like Avast or ESET. If you wouldnāt mind clicking that āsubmit a disputeā link, it might also help.
The page itself is flagged as suspicious because it was registered recently (30 June). Hopefully once we get to more than a month out, that will no longer be a concern.
Jeff, I donāt know exactly which anti-virus program/corporate firewalls the company I work for uses (but I saw something called Trellix). The guys from IT and cyber security completely scanned my laptop, they opened for me a ticket (which I hope that this ticket to be closed without problems) and jumped on me after the TROJAN āvirusā generated by the update I made to QSPICE. I can use LTspice without problems, so I thought that I can use also QSPICE without such problems.
Jeff, and also, the IT ad cyber security guys forced me to uninstalled QSPICE from my laptop and they also told me nicely to not install QSPICE (at least until this thing with the TROJAN āvirusā is solved).
I understand- IT Securityās job is to mitigate risk. Weāre going through the whitelisting process with Avast, Norton, and ESET. It will take a few days. When the download serverās URL gets past the 30 day mark (around 31 July), it will also eliminate some false anti-virus flags. I canāt find a way to engage with Trellix as a software developer, so it may need to be whitelisted internally by your IT security team.
Avast has now whitelisted multiple key QSPICE files, including the AcmeSemi.dll sample. If you were having trouble with Avast, Iād appreciate you trying it again.
AVG has the same whitelisting page & process as Avast, so Iām hoping that the Avast whitelist carries over to AVG. If someone is able to check AVG, that would also be helpful.
I havenāt found a way to whitelist with Zscaler. If you, as a user, have a āsubmit sampleā option, weād love to get them to review it.
On a somewhat related note, I have learned that Palo Alto Networks considers domains to be ānewā within 32 days of registration or ownership change. Weāre at 32 days today, so letās see what happens tomorrow. Iām keeping an eye on it.
