« previous next »
Pages: [1]   Go Down

Author Topic: Report false positives?  (Read 2351 times)

0 Members and 1 Guest are viewing this topic.

AndrewGearhart

  • Guest
Report false positives?
« on: December 12, 2006, 05:07:12 PM »
I got a false positive today on a program that does hot-key/keyboard shortcuts:
Active Keys: http://www.softarium.com/activekeys/

We tested it on a freshly downloaded version of the software and it detected as being infected:
"Sign of "Win32:Dialer-DB[Trj]" has been found in "C:\Program Files\Active Keys\activekeys.exe\[UPX]" file.

The infections started popping up in the most recent update of the program/definitions:
VPS: 0657-1, 12/12/2006
Avast Home Edition Build: Oct2006 (4.7.892)

I searched and searched... and didn't find a place to report false positives, so.... I figured I'd report it here and see if 1) somebody knew where to report these and 2) something might be done about it.

Currently, I've disabled scanning of this file... but obviously this isn't the best scenario as it could get infected with something else and cause a problem.

Thanks in advance!

Sincerely,
AndrewGearhart
Logged

Offline DavidR

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 89186
  • No support PMs thanks
Re: Report false positives?
« Reply #1 on: December 12, 2006, 05:24:09 PM »
You could also check the offending/suspect file at: VirusTotal - Multi engine on-line virus scanner
Or Jotti - Multi engine on-line virus scanner if any other scanners here detect them it is less likely to be a false positive. You can't do this with the file in the chest, you will need to move it out.

If it is indeed a false positive, add it to the exclusions lists (Standard Shield, Customize, Advanced and Program Settings, Exclusions) and periodically check it (scan it in the chest), there should still be a copy in the chest even though you restored it to the original location. When it is no longer detected then you can also remove it from the Standard Shield and Program Settings, exclusions.

If you are getting a virus warning that you believe is a false positive, then if you can zip and password protect ('virus', will do) the suspect file and send it to virus @ avast.com (no spaces), or send from the chest (after adding it to the User Files section of the chest).

Give a brief outline of the problem (possibly a link to this thread), the fact that you believe it to be a false positive and include the password in the body of the email. Some info on the avast version and VPS number (see about avast {right click avast icon}) will also help.
Logged
Windows 10 Home 64bit/ Acer Aspire F15/ Intel Core i5 7200U 2.5GHz, 8GB DDR4 memory, 256GB SSD, 1TB HDD/ avast! free 24.4.6112 (build 24.4.9067.762) UI 1.0.803/ Firefox, uBlock Origin, uMatrix/ MailWasher Pro/ Avast! Mobile Security
Pages: [1]   Go Up
« previous next »