Login not secured. Program infected!!!

[Andre]

1).  Your login-screen is not secured.  Everyone can see the password that I filled in.
(So I didn't want to log in, but I had to, because I wanted to tell you this).  (see attachments).

2).  I like MultiCommander, but I can no longer use Multicommander, because it is put in quantaine by my virus scanner.
"Avast" says:  it is infected with:  IDP.ALEXA.51 .      (see attachment).

Please, what is your reaction on this two points?

[Mathias (Author)]

1. No! Everybody can't see it.. Only if somebody do a man in the middle attack they possible can.
Also SMF also do some encryption before sending it so that should not be an issue.. 
Also the password is not stored in the forum system. only a hash of it.

2. That is a false positive. If you got the executable from my site.
It is called AV Hell, AV software these day create lot of havoc and report more false reports then real. And there is nothing small developers can do about that.
So often when something is reported you need to go to https://www.virustotal.com/  and check. and if not a lots of the AV there are reporting it, It should be safe.
The problem is that you can not trust the reports of a single AV software because it is so easy to get flagged even for clean apps.

[MrPapaya]

There is no virus in MultiCommander that I can find. I've ran it through 5 different scanners.

[AlanJB]

FYI: https://www.virustotal.com/gui/file/befff251a1ddf71aaf7a2c65522a947e4ae80feff740a01ada0247f2fb20c521/detection

Only one false positive and Avast! scanner is happy with the file