<p>As you may know&comma; I&&num;8217&semi;m developing SoundSwitch in my free time&period; Lately&comma; it&&num;8217&semi;s been struck as a Trojan by Kaspersky&period; This happens just a couple of month after Symantec did the same with Norton&period; Moreover&comma; it was at the same time that it was featured on <a href&equals;"https&colon;&sol;&sol;www&period;howtogeek&period;com&sol;301290&sol;how-to-switch-windows-sound-outputs-with-a-hotkey&sol;">How to Geek<&sol;a>&period;<&sol;p>&NewLine;<p>This detection coincides with the update of my IDE from VS 2015 to VS 2017 and the usage of the new compiler&period; It seems the new compiler generated the signature of a Trojan for Kaspersky&period; SoundSwitch have two important parts&comma; the first one is the AudioEndPoint library that I created in C&plus;&plus; to use the WinAPI with on top a wrapper CLR to interface with C&num;&period; The second part is SoundSwitch itself which is the interface and the configuration tool in C&num; for the library&period;<&sol;p>&NewLine;<p>SoundSwitch has two important parts&comma; the first one is the AudioEndPoint library that I created in C&plus;&plus; to use the WinAPI with on top a wrapper CLR to interface with C&num;&period;<&sol;p>&NewLine;<p>The second part is SoundSwitch itself which is the interface and the configuration tool in C&num; for the library&period;<&sol;p>&NewLine;<p>I&&num;8217&semi;m guessing the C&plus;&plus; lib triggered the false positive&period;<&sol;p>&NewLine;<h1>How to report false positive<&sol;h1>&NewLine;<p>Kaspersky provides an Online antivirus to check for files&comma; the problems with it&comma; is the lack of feedback when reporting a false positive&colon; <a href&equals;"https&colon;&sol;&sol;virusdesk&period;kaspersky&period;com&sol;">https&colon;&sol;&sol;virusdesk&period;kaspersky&period;com&sol;<&sol;a><&sol;p>&NewLine;<p>You get an automated email telling you they&&num;8217&semi;ll look into it&period; But after multiple days&comma; I never received any other email&period; This is the opposite of my experience with Symantec where a couple of hours after the report of false positive&comma; I had a human asking for more details and information about my report&period; The issue then got resolved rapidly&period;<&sol;p>&NewLine;<h2>The better way<&sol;h2>&NewLine;<p>In the end&comma; I decided to create an account on the Kaspersky portal to report my false positive&colon; <a href&equals;"https&colon;&sol;&sol;my&period;kaspersky&period;com&sol;en">https&colon;&sol;&sol;my&period;kaspersky&period;com&sol;en<&sol;a><&sol;p>&NewLine;<p>There I was able to submit my false positive&comma; get a direct answer from the support and a confirmation that the false positive was confirmed and their database will be updated in the following days&period;<&sol;p>&NewLine;<p>Two days later&comma; Kaspersky stopped telling its user that SoundSwitch is a trojan&period;<&sol;p>&NewLine;<h1>For the future<&sol;h1>&NewLine;<p>From now on&comma; I&&num;8217&semi;ll delay the release of SoundSwitch&comma; I&&num;8217&semi;ll use <a href&equals;"https&colon;&sol;&sol;www&period;virustotal&period;com">Virus Total<&sol;a> to check for any possible false positive and then when clean&comma; I&&num;8217&semi;ll release the program&period;<&sol;p>&NewLine;