Jump to content
Posted 13 May 2008 - 07:47 PM
Posted 13 May 2008 - 08:54 PM
Posted 14 May 2008 - 10:42 AM
avast forum: how to treat false positives
If you encounter alert for which you think that it's a false positive, do the following:
Check the file with this service:
- if file is detected by any other antivirus too (like Kaspersky), than its most probably not a false positive. Treat it with caution.
- false positive files are usually detected as: Win32:Trojan-Gen
(this usually happens because of generic detection)
- if scan still shows that only avast! detects the file, then it could be a virus detected only by avast!. If you think that it's still a false positive,then follow the next step:
Pack the "infected" file into ZIP archive and lock it with password "virus" (without quotes) and attach it to e-mail.
Write the same password inside mail body, so Alwil virus analysts will know the password right away without guessing.
You can also add web address to that file (or webpage of the file/program) if it's on the internet.
Add your own note on why do you think that it's a false positive. Every info helps Alwil staff.
Send the mail to: firstname.lastname@example.org
You'll probably get a reply mail about file info (if it was really a false positve) after some time.
If not, check the file with Explorer extension when new VPS is released.
This way you'll know if the false positive was fixed.
Until then, you can add the "false positive" file into exclusions:...
0 members, 0 guests, 0 anonymous users