Windows 10 flags etesync-dav.exe download as malware

[eggnog-armed]

Hi

Windows 10 flags etesync-dav.exe release 0.20.3 as malware Trojan:Win32/Zpevdo.B automatically when downloaded from https://github.com/etesync/etesync-dav/releases

Please can you see if there is a way to stop it flagging as malware.

Apologies I can't assist much with this but I'm happy to supply more info if needed.

[tasn]

Yeah, we already discussed it in #151 (now closed in favour of this one). I wonder if it's because we are opening the browser on the first run (so it thinks we are executing malicious code), or if it's just because we are using Python/a self-extracting executable. Though either way, non of this changed in 0.20.3. What I can do is try to build it again and see if that makes a difference (maybe it was somehow hitting some signatures).

I just tried a rebuild (haven't actually changed anything other than the version string), does it make a difference for the windows defender? Link: https://stosb.com/~tom/etesync-dav.exe

Though it seems like according to https://www.virustotal.com/gui/file/b7ea64ee5be4608a342bc6091eb6353ac7324ecf03b4218b3cb580c6b5a25a2b/detection MS is still considering it as malware.

[eggnog-armed]

Windows defender does not flag https://stosb.com/~tom/etesync-dav.exe as malware - thanks!

You get the usual smart screen stuff which is totally expected. I mention this in case it comes up with other users.

[tasn]

Thanks! I'm uploading this new version to the release page now, so I consider this ticket closed. Damn random virus scanners...

SmartScreen: yeah, I know. I need to figure out how to get a signing certificate and sign the windows releases. It's the same for Mac.