-
-
Notifications
You must be signed in to change notification settings - Fork 57
Antiviruses or browsers download issue
-
The program is not signed (as I can't afford to buy annual certificates to make WinPaletter's executable file not from unknown publisher)
-
WinPaletter is editing Windows Registry in an extensive way
-
So the browser, Windows and antivirus will tell you that the program is from unknown source\organization and may be harmful
-
And this is a false positive in browsers and antiviruses
| Tested antiviruses | Result |
|---|---|
| Avast, Avast One | ✅ safe |
| Kaspersky | ✅ safe |
| Malwarebytes | ✅ safe |
| SmadAV | ✅ safe |
| BitDefender | ✅ safe |
| Windows Security | ✅ safe |
Windows Security after patching imageres.dll to change startup sound |
❌ Win32/Execution.A!ml |
-
Sometimes, you may face that the program is infected with
IDP.Generic,SuspiciusBehavioror something else. If so, open your Antivirus>Updates>Update Definitions and then reopen WinPaletter after restoring it from quarantine -
If it still infected, create a new issue with descriptions in it and I will send this app for antivirus (that has the problem) developers for a deep analysis
- Registry key modification:
HKCU@S-1-5-21-957280099-1924274324-3775045331-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\WinPaletter
- Patching
imageres.dllto change startup sound is considered as a malware action for Windows Security
-
Microsoft deep analysis found it clean
- Submission ID: 90ed38b7-6df9-44fa-aa9f-387b2eb1b7c0
- Analyst comments: At this time, the submitted files do not meet our criteria for malware or potentially unwanted applications. The detection has been removed.
-
Even if Windows Security found WinPaletter clean, a
Win32/Execution.A!mldetection will popup when you patchimageres.dllto change startup sound -
You may need to do extra steps to remove this suspicion:
- Run Command Prompt as administrator and enter the following lines
CD C:\Program Files\Windows Defender MpCmdRun.exe -removedefinitions -dynamicsignatures MpCmdRun.exe -SignatureUpdate- Update your Windows from Settings
- Some browsers like Edge and Firefox will prompt you that the program may harm the computer. It is a false positive and you can download it anyway.
This wiki is consistent with WinPaletter 1.0.8.0 and later
- Main form parts
- Color picker
- Palette generator
- Skeleton of a feature modification
- How to design and apply a theme
- Theme info
- Windows colors and theme
- LogonUI screen
- Classic colors
- Cursors
- Consoles (Command Prompt and PowerShell)
- Windows Terminal
- Metrics and fonts
- Wallpaper
- Windows Effects
- Windows switcher (Alt+Tab appearance)
- Screen Saver
- Sounds
- WinPaletter application theme
- Basics
- Design themes to be uploaded to servers\GitHub repositories
- Upload themes to WinPaletter Store repository to be public to everyone
OptionalCreate your own server\GitHub repository for hosting themesOptionalAdd new themes sources to your current WinPaletter setup
- Disable Explorer restart
- Advanced options to patch PE files
- Theme log verbose level
- Synchronize ExplorerPatcher settings with WinPaletter preview
- Delay applying of Metrics and Fonts
- Apply preferences to all users and LogonUI screen
- Disable cursors rendering or reset them
- Use offline folders as sources for themes in WinPaletter Store