Author Topic: How to prevent "This file might be dangerous" whenever I release software?  (Read 1333 times)

0 Members and 1 Guest are viewing this topic.

Offline teasipper

  • Newbie
  • *
  • Posts: 5
I'm an independent developer and every time I release software (as a .exe, downloadable from my site), my users using avast are faced with the CyberCapture system saying "This file might be dangerous", "It's been submitted for interrogation at the Avast Virus Lab", etc, and basically prevents my users from ever installing unless they remember to come back in 45+ minutes. Also, either Avast or CyberCapture causes numerous problems with the installation process, including making the installer think its running on a pre-Windows-7 OS.

My software is not malware and every AV engine (even avast) agrees, according to virus total.

I read this link: https://support.avast.com/en-us/article/160?option=ftpwhitelisting and subsequently went to https://www.avast.com/whitelist-program-registration to register for the whitelisting program, but that page asks me to immediately upload by file, which I cannot because it is larger than 50mb. Is this program actually active, and if so how do I get access? Also, would the whitelisting program prevent CyberCapture from launching?

My installers are built with NSIS (using electron-builder, an installer builder for the Electron.js framework). They are properly signed with a hardware EV certificate.

Any help is appreciated.
« Last Edit: July 25, 2019, 02:42:48 PM by teasipper »

Offline Asyn

  • Avast √úberevangelist
  • Certainly Bot
  • *****
  • Posts: 70226
    • >>>  Avast Forum - Deutschsprachiger Bereich  <<<
W 8.1 [x64] - Avast PremSec 21.4.2462.B3 [UI.617] - EEK - Firefox ESR 78.10.1 [NS/uBO/PB] - TB 78.10.1
Avast-Tools: Secure Browser 90.0 - Cleanup 21.1 - SecureLine 5.11 - Driver Updater 21.1 - CCleaner 5.78
Avast Wissenswertes (Downloads, Anleitungen & Infos): https://forum.avast.com/index.php?topic=60523.0

Offline teasipper

  • Newbie
  • *
  • Posts: 5
Yes, please read my post. I tried registering for the whitelisting program and the link given https://www.avast.com/whitelist-program-registration takes me to a page that asks for email, description, and a file to upload. My file is above the file limit and therefore I cannot submit. Please advise.Is there an email address or phone number where I can talk to a human being?

Offline Pondus

  • Probably Bot
  • ****
  • Posts: 37012
Quote
My file is above the file limit and therefore I cannot submit. Please advise.Is there an email address or phone number where I can talk to a human being?

Quote
My software is not malware and every AV engine (even avast) agrees, according to virus total.
Can you give them the virustotal link .... then they can see the MD5/SHA and fetch file from VT


or upload to FTP
Uploading files to the Avast FTP server
https://support.avast.com/en-eu/article/160/







Offline teasipper

  • Newbie
  • *
  • Posts: 5
I would love to give them my virus total link and whatever else they need, do you know what email/form I should be using?

The FTP server listed at  https://support.avast.com/en-eu/article/160/ is password protected, which goes back to my initial problem: I cannot register.

Offline Pondus

  • Probably Bot
  • ****
  • Posts: 37012
Quote
I would love to give them my virus total link and whatever else they need, do you know what email/form I should be using?

Does it work with this one?

Report a false positive (select file or website)
https://www.avast.com/false-positive-file-form.php



Offline teasipper

  • Newbie
  • *
  • Posts: 5
Quote
I would love to give them my virus total link and whatever else they need, do you know what email/form I should be using?

Does it work with this one?

Report a false positive (select file or website)
https://www.avast.com/false-positive-file-form.php

Thanks, I haven't seen that particular submission form where I can submit a link. I think that may work... If I submit a VT link, it will be analyzed by the threat lab so CyberCapture doesn't mess with the installer? Is it acceptable to write a script to automatically submit files using that form, after every build?

Also, I'd still like an email address or other way to contact the threat lab / developers somehow. It seems the CyberCapture system interferes with my installer, regardless of whether or not it has been analyzed by Avast, and I'd really like to get it sorted out. It is an issue that probably affects everyone who uses electron-builder, which is sizeable.

Offline Pondus

  • Probably Bot
  • ****
  • Posts: 37012
Quote
Thanks, I haven't seen that particular submission form where I can submit a link.
More here  >>  https://forum.avast.com/index.php?topic=14433.msg1289438#msg1289438


Quote
Also, I'd still like an email address or other way to contact the threat lab / developers somehow.
The forms are what we are told to use .... no mail



Offline teasipper

  • Newbie
  • *
  • Posts: 5
Okay, thanks, I will use the form. But, if I submit a file (or URL to file) using the forms, does that get my file whitelisted? As I said, my files are not detected as malware, but they ARE prevented from installed by CyberCapture? From reading this forum, it is my understanding that whitelisting helps me with this?

Offline Pondus

  • Probably Bot
  • ****
  • Posts: 37012
I dont work for avast, only the guys at avast lab can answer