Monday, August 14, 2017

Delphi programs have too many false positive detections

Most of my Delphi programs are flagged as virus by some antivirus programs. Some of these antivirus programs are really cheap/under-the-table products (such as Baidu and Comodo) other are big (TOP) name like Kaspersky.

In theory you should report a false positive to the antivirus producers so they can fix their bug but if the list is too long and you are lazy here is what you can do to decrease the number of false positive reports:
  • Don't turn on "compiler optimizations" when you release your app. It seems that more false alarms are triggered when this is turned on in the project.
  • If you MUST turn one the "compiler optimizations" you can pack your exe with UPX. This should shut up most antiviruses as they don't know to look inside the UPX
  • If you use WinRar, downgrade to v3.11 as this version does not give false positives (only one out of 64).