I am a fan of Avast (Free Version) since my family loves using it, so I made my own, solo account for needs that are personally satisfying…
Today, I still received (and confirmed it is) a false-positive on a .EXE Decompressor named UNLZEXE for Win32, of which I tried submitting to Avast’s service, but it failed for some reason! UNLZEXE has the same genre of false-positives as [UPX] back then, and wasn’t seen until recently with UNLZEXE!
It should not be detected as anything, on mine it says [Win32:MalwareGen] falsely.
UNLZEXE is, should be, and always clean! Link can be PM’d or Posted if needed
EDIT: See post for more info, since it is now verified as a Backdoor!
EDIT2: Now truely verified as a false positive, so I am right, not a backdoor!
Have you checked it at virus total as you will possibly find that it isn’t only avast finds it at least suspect.
Don’t know how you tried to submit it, from the virus chest, submit to virus lab or using the on-line contact form, http://www.avast.com/contact-form.php?loadStyles or submission to virus (at) avast (dot) com as a possible false positive ?
coud you give us the linj to the scan result?
anyway…it looks as you are doing a URL scan…and not a file scan, is it not a file you have problems with?
Hi Pondus ,
The File cna be run in console , command prompt and result can be seen . There is no malicious behavior seen in the binary . Hence the detection has been removed from the Definitions
FP Case closed. FP Confirmed
consider what you find at the website, and whats written in the readme file the program sure looks OK to me
but then again, i am not the expert :
also uploaded it to Malwarebytes and they have not added detection for it…