Hey folks, we have an app that is distributed with an installer, and receives silent updates via the Advanced Installer updater. The package is signed via an EV certificate that has recently expired. We've reissued the certificate and update AI to use the new certificate. However, when we tried to update an existing app (that had the old certificate) to one with the new certificate one of two things occurs:
1. A UAC notification shows up and the installation process occurs in the foreground - since the update should be silent, these shouldn't be showing up
2. An antivirus (AVG in this case) marks the updater as an IDP.Generic threat and quarantines it.
We're not quite sure what to do in this situation, how to resolve it without forcing a manual reinstall on all machines, or how to avoid it in the future. Anyone have any advice?