WinRar infected?

When I try to download Winrar 5.01 32bit from the official homepage, my Avast (7.0.1474) detects a Win32:evo-gen in my user account temp directory. The file name is Zr+HosKF.exe.part. The file comes immediately when I press the download link. I don’t like unknown executables in my temp dir, so I block it, and the download fails. Anyone know about this?

Have you tested the file at virustotal ?

I strongly suggest you remove the current avast installation and install the newest version.
Version 7.0.1474 is over a year(!) old.

The official site hosts clean files. I had recently downloaded and it was clean. Are you using any kind of download manager? The file *.exe.part looks to be part of the total file download, a method used by most downloaders to make the download faster.

Sorry, I now updated my definitions and the detection is gone :-[
No, I don’t use a download manager, it is a normal Firefox download.

Don’t only update the definitions, but also the application.
I suggest to use avastclear to remove the current installation and install avast 2014.9.0.2009 RC2
Or at least 2014.9.0.2008

Yes, in the new year I will try it on my old notebook and see if I find it to be an improvement. If yes, it will also find its way to my desktops 8)

And I suggest you do not “update” to the latest version of Avast. Find version 8 and use it. Version 8 works and you don’t have to disable parts of your AV like you do with 2014.

You are totally wrong ram. Please stop giving wrong advise to people.

Agreed Eddy, but advising the RC2 is pushing it a bit for a normal user, 2014.9.0.2008 is going to be a good update. :slight_smile:

No I am not wrong. There are way too many reports of people having problems with 2014. And the usual response is to disable this or that in 2014. The new version is just broken and should not have been released. So no I will not stop telling people to revert back to a working version. And it’s advice not advise. If you are going to criticize someone get your facts straight first.