Jump to content
Posted 09 September 2009 - 01:22 AM
Posted 09 September 2009 - 05:14 AM
Posted 09 September 2009 - 05:23 AM
Edited by cathyn, 09 September 2009 - 05:26 AM.
Posted 09 September 2009 - 11:22 AM
AVG Forum: A possible False Positive Detected
If you suspect a file to be a false positive. Test the file at [virusscan.jotti.org]] and if it is a false positive, archive (zip, arc, tar etc) the file using a password and email a copy to email@example.com with a brief description as well as the password you used to archive it with.
If it is a false positive, turn off heuristic scanning for the time being. When Grisoft adjusts the virus definitions you can turn it back on. If turning off Heuristics still doesn't allow access to the file while testing and emailing... disable the resident shield temporarily.
AVG FAQ 1320: AVG detects infection on file that I suppose to be clean
In case AVG Free detects some file on your PC as infected, this file was moved to AVG Virus Vault, and you are sure that this file is correct and clean, it is possible that the detected file is a false alarm. If so, we shall prepare the correction as soon as possible. Unfortunately, false alarms do appear from time to time in every Anti-Virus software.
To solve the problem, please send us this file for analysis directly from the AVG Free program...
AVG FAQ 1318: What to do when I suspect any file it is infected?
Please try to update your AVG Free system and run the whole computer scan again. When the file is not detected and you are still in doubt, put the file into password protected archive using WinZip, WinRar, PowerArchiver etc., attach this archive to an e-mail and send it to firstname.lastname@example.org. Describe why you are sending the file and write the password for the archive into the e-mail.
avast forum [Mini Sticky] False Positives
If you encounter alert for which you think that it's a false positive, do the following:
Check the file with this service:
- if file is detected by any other antivirus too (like Kaspersky), than its most probably not a false positive. Treat it with caution.
- false positive files are usually detected as: Win32:Trojan-Gen
(this usually happens because of generic detection)
- if scan still shows that only avast! detects the file, then it could be a virus detected only by avast!. If you think that it's still a false positive,then follow the next step:
Pack the "infected" file into ZIP archive and lock it with password "virus" (without quotes) and attach it to e-mail.
Write the same password inside mail body, so Alwil virus analysts will know the password right away without guessing.
You can also add web address to that file (or webpage of the file/program) if it's on the internet.
Add your own note on why do you think that it's a false positive. Every info helps Alwil staff.
Send the mail to: email@example.com
You'll probably get a reply mail about file info (if it was really a false positve) after some time.
If not, check the file with Explorer extension when new VPS is released.
This way you'll know if the false positive was fixed.
Until then, you can add the "false positive" file into exclusions:...
Posted 09 September 2009 - 05:52 PM
Posted 10 September 2009 - 05:54 AM
thank you for your e-mail.
Unfortunately, the current virus database version may detect the
mentioned virus on some legitimate applications. We can confirm that
it is a false alarm. We would like to inform you that the false
positive will be removed in the next Definitions update. Please update
your AVG and if a new Definitions update was downloaded, check whether
the file is still detected.
If you need to restore deleted files from AVG Virus Vault you can do
it this way:
- Open AVG user interface.
- Choose "Virus Vault" option from the "History" menu.
- Locate the file that was incorrectly removed and select it (one
- Click on the "Restore" button.
We are sorry for the inconvenience.
Posted 10 September 2009 - 07:09 AM
Posted 10 September 2009 - 02:19 PM
Edited by lol-o, 10 September 2009 - 02:21 PM.
Posted 10 September 2009 - 02:42 PM
Posted 10 September 2009 - 04:10 PM
Posted 11 September 2009 - 01:35 AM
Edited by lol-o, 11 September 2009 - 04:22 AM.
Posted 12 September 2009 - 05:08 AM
Posted 12 September 2009 - 09:42 AM
0 members, 0 guests, 0 anonymous users