Author Topic: Driver\cx88vid.sys false positive (Read 5484 times)

magna86 · « **on:** June 24, 2010, 10:42:09 PM »

Hello avast team

avast5 AV were reported to me that this file is malware.

C:\Windows\System32\drivers\cx88vid.sys
Of course it is a false positive.
I send cx88vid.sys to virustotal.

Virustotal link:
http://www.virustotal.com/analisis/3745895e431ff3dcbe7182446589827195d552e4803f98bce13c25302383ab48-1277313745

Screen Shot of avast which were report:

if you need a copy of the file...just asc

OS is Windows7

Greeting

DavidR · « **Reply #1 on:** June 24, 2010, 11:25:54 PM »

I would say it is highly unlikely that a VT scan would find anything wrong as it isn't doing the same anti-rootkit scan as you can see from the VT results even avast doesn't detect it on a conventional scan.

The file should be uploaded (or details about the detection) to avast as is suggested you allow it to be sent. I think this happens automatically during update checks if you have enabled the Community participation, see image.

magna86 · « **Reply #2 on:** June 25, 2010, 12:05:53 AM »

Hi...

this option has already been activated.
I sent a copy of that file to your mail for examples of malware.

Code: [Select]

virus@avast.com Is this Ok?

DavidR · « **Reply #3 on:** June 25, 2010, 12:22:26 AM »

It isn't my email, I'm just an avast user like yourself

However, that is the correct email address, ideally the file should be zipped in a password protected archive and attached to the email with the password in the email and false positive in the email subject.

magna86 · « **Reply #4 on:** June 25, 2010, 01:22:09 AM »

Quote

It isn't my email, I'm just an avast user like yourself

i know...english is not my home language...sow i made mistake...

i put password on archive...they know password
thx for everything

DavidR · « **Reply #5 on:** June 25, 2010, 02:17:26 AM »

You're welcome.

Milos · « **Reply #6 on:** June 25, 2010, 07:43:49 AM »

Quote from: magna86 on June 24, 2010, 10:42:09 PM

Hello avast team

avast5 AV were reported to me that this file is malware.

Code: [Select]
C:\Windows\System32\drivers\cx88vid.sys
Of course it is a false positive.
I send cx88vid.sys to virustotal.

Virustotal link:
http://www.virustotal.com/analisis/3745895e431ff3dcbe7182446589827195d552e4803f98bce13c25302383ab48-1277313745

Screen Shot of avast which were report:

if you need a copy of the file...just asc
OS is Windows7

Greeting

Hello,
it is detected by antirootkit module, not by VPS (so it's not detected on VT), I'll resent it to our antirrotkit developers.

Milos

magna86 · « **Reply #7 on:** June 25, 2010, 02:03:31 PM »

I think...this is a driver for TV card ... $:-\$
or...
http://www.runscanner.net/lib/CX88Vid.sys.html

pls ...If you are not a problem let me know what you found.

Thanks

Author Topic: Driver\cx88vid.sys false positive (Read 5484 times)

magna86

Driver\cx88vid.sys false positive

DavidR

Re: Driver\cx88vid.sys false positive

magna86

Re: Driver\cx88vid.sys false positive

DavidR

Re: Driver\cx88vid.sys false positive

magna86

Re: Driver\cx88vid.sys false positive

DavidR

Re: Driver\cx88vid.sys false positive

Milos

Re: Driver\cx88vid.sys false positive

magna86

Re: Driver\cx88vid.sys false positive