Author Topic: Win32:Evo-gen [Susp] false positive (Read 2700 times)

mrapi · « **on:** September 11, 2013, 07:45:19 AM »

CCleaner potable repacked with Nsis installer:
https://www.virustotal.com/en/file/0bc46a0dc66ee1e0d8c52f02f52d46b6ee5aa3ed59f2754f2cadec1eb7b27060/analysis/1378878089/
also sent using av interface
I'm using free avast version 2014 9.0.2001.87 Beta

Milos · « **Reply #1 on:** September 11, 2013, 09:11:47 AM »

Hello,
we didn't receive such sample, are you sure, that you send us the same file as you uploaded to virustotal? Or did you updated your virus database? I think that the samples are submited during the update. You can also try emailing the sample to virus@avast.com and put "False positive" to email subject.

Milos

mrapi · « **Reply #2 on:** September 11, 2013, 09:36:54 AM »

Now I send it via email too,also update to submit file.

mrapi · « **Reply #3 on:** September 12, 2013, 12:22:43 PM »

After latest update seems solved!

Trinu · « **Reply #4 on:** September 12, 2013, 09:10:27 PM »

I'm getting the same situation from the file system shield with Tor 0.2.4. The URL of the download is https://www.torproject.org/dist/win32/tor-0.2.4.17-rc-win32.exe

mrapi · « **Reply #5 on:** September 13, 2013, 02:24:08 PM »

Indeed is detected,seems there is something wrong with installers build with NSIS,as that one.

Author Topic: Win32:Evo-gen [Susp] false positive (Read 2700 times)

mrapi

Win32:Evo-gen [Susp] false positive

Milos

Re: Win32:Evo-gen [Susp] false positive

mrapi

Re: Win32:Evo-gen [Susp] false positive

mrapi

Re: Win32:Evo-gen [Susp] false positive

Trinu

Re: Win32:Evo-gen [Susp] false positive

mrapi

Re: Win32:Evo-gen [Susp] false positive