Avast deleted half my main projects

I have updated the program and Sandbox is back again. That’s a releif. From reading other posts I was beginning to think the feature had been removed. I also seem to be able to move my PE files around again without them getting flagged. Of course I took precautions making sure I had made all important backups first (not knowing if my settings would remain the same). Now I also can download the file, which will be updated in due course - it is an unfinished program released for assessment purposes. I use it all the time in its unfinished state - hmm.

I apologize if I said some negative things about Avast. I was alarmed at what happened on friday. In a way I have learned some interesting things, but it was also a bit like having hiccups. Making my own file integrity verification utility is now on my ToDo list.

Thank you!

Do not worry
do not thank me
I thank the staff avast team
for the great work to help out
sometimes when it is not resolved until run after.
I’m here to try to resolve anyway. :slight_smile:

Hi czardas,

Good we could help you get to where you wanted to go.
Always code with security in mind
and use these known regular expressions to detect and check what needs checking.
Like /((%3C)|<)((%2F)|)* to find tags to check on!
I wish you many a secure string.
Good you found your way here to our avast! support forums,
and I hope you will come here more often to join our ranks.

polonus aka Damian

I meant to also thank the Avast Dev team, and polonus, you’ve been a great help. I’m not a regexp guru by any stretch of the imagination, but I think they’re really cool to learn. Is that regular expression PCRE?

Hi czardas,

They are HTML-URL and come all nicely lined up here from the SANS reading room, http://www.sans.org/reading-room/whitepapers/logging/detecting-attacks-web-applications-log-files-2074?show=detecting-attacks-web-applications-log-files-2074&cat=logging Author Roger Meyer
Just look up the perl compatibility,

pol

Thanks. that looks like a great place to start. :slight_smile:

The latest upfdate seems to have reverted everything back to an unstable state again. I received 3 options: to block, move to chest or delete my file. I’m pretty sure the file was not being flagged before. Now I’m beginning to get areas of my computer unprotected because I have to add folders to exclusions. I feel vunerable as a consequence. There was no option to take no action, nor was there an option to use sandbox. I don’t know what is happening with updates but they are causing havock for me personally.

I got no option to report my file as a false positive. This was a new window which I haven’t seem before.

Hello,
post the screenshot of the window, please.

Milos

Hi Milos,

Here’s the screen. I’m not sure if it’s a new one, or if I just never saw it before. I was expecting the file to either run or to be given the option to use sandbox. None of the options I am presented with are the choice I wish to make.

Hello,
send the file to virus@avast.com with subject “False positive”.

Milos

Thanks again for your time and concern. I have sent the file which is a simulated wind chime (I hope you like music apps). :slight_smile: