Hello I am from development team of uGet.
I want to report false positive.
When we start the latest version of uget, Avast detects a virus (“Win32: Evo-gen [Susp]”).
After we checked the difference between two versions of uGet we realized that the problem occurs because of the recently
added strings in the program (used for language translation).
These are the links from where the last two versions of the program can be downloaded:
1.False-positive - http://www.uget.in/files/uGet-false-positive.exe
2.No False-positive - http://www.uget.in/files/uGet-no-false-positive.exe
Can you tell us why this problem occurs and how to avoid it?
Hello polonus,
Are you from avast support ?
Both files have not a strong reputation among avast users.
The difference between the two files is only a few strings added.
There’s no difference in the behavior of both versions but one is suspicious. Why is one of the files look suspicious?
No I am not with avast support, we users are all volunteers here on the avast forum.
But I just described what interaction I experienced upon downloading from your link with the avast av solution active…
This behavior of avast is while it is brand new to it and unknown, and under certain conditions avast will sandbox such executables first so the user can decide he has “the real McCoy.”. The rest of the matter should be taken up with avast team members really, so file a FP report and they will act on the basis of that accordingly…