polonus
31
Hi czardas,
Do not go against the advice given. Establish these possibilities of a residing infection of the USB stick. If that is ruled out consider the other options.
I know you are a great coder but try to avert your own assumptions and blind angles until proven to be right. Openness from both sides will bring the desired evaluation results!
Furthermore there is something wrong with the site (http://urlquery.net/report.php?id=5319157), Suricata is not showing that IDS alert just for fun of it, loads of emerging threats rule developers work everyday to sieve the FPs out of there. So if all these possibilities are being ruled out - and our malware removers will be too glad to help in that respect - you can come back and rightfully question avast’s detection and how they treat heuristics. Something is not right from the header response data between that uri on that Internet AG server and the client. We have to rule that possibility out first.
I agree your project code is OK, but not how it lands here with that zip file…
polonus