红伞误报收集站

ccc-a

ear Sir or Madam,

Thank you for your email to Avira's virus lab.
Tracking number: INC00224246.



A listing of files alongside their results can be found below:

File ID  Filename Size (Byte) Result
25184148  lib_VoiceEngine_dll.dll  48 KB  FALSE POSITIVE


Please find a detailed report concerning each individual sample below:

Filename Result
lib_VoiceEngine_dll.dll  FALSE POSITIVE

The file 'lib_VoiceEngine_dll.dll' has been determined to be 'FALSE POSITIVE'. In particular this means that this file is not malicious but a false alarm. Detection will be removed from our virus definition file (VDF) with one of the next updates.


Alternatively you can see the analysis result here:
http://analysis.avira.com/sample ... p;incidentid=224246

An overview of all your submissions can be found here:
http://analysis.avira.com/sample ... QbqwgwHfXgDM0O6HBrk


Please note: The detection of Spy/Adware is not available in the product "AntiVir PersonalEdition Classic". Please address specific questions to support@avira.com

Kind regards
Avira Virus Lab

---------------------------------------------
Avira GmbH
Lindauer Str. 21, D-88069 Tettnang, Germany
Phone: +49 (0) 7542-500 0
Fax: +49 (0) 7542-525 10
Internet: http://www.avira.com

CEO: Tjark Auerbach
Headquarter: Tettnang
Commercial register: AG Ulm HRB 630992
---------------------------------------------
------------误报“暴风影音2008 BETA3 ”里面的“lib_VoiceEngine_dll.dll  "文件

atomic888

Thank you for your email to Avira's virus lab.
Tracking number: INC00225143.



A listing of files alongside their results can be found below:

File ID  Filename Size (Byte) Result
25185576  NEWordAddin2.dll  4.89 MB  FALSE POSITIVE


Please find a detailed report concerning each individual sample below:

Filename Result
NEWordAddin2.dll  FALSE POSITIVE

The file 'NEWordAddin2.dll' has been determined to be 'FALSE POSITIVE'. In particular this means that this file is not malicious but a false alarm. Detection will be removed from our virus definition file (VDF) with one of the next updates.

henmy168

文件名/软件名index
误报名HTML/Infected.WebPage.Gen
下载地址/链接地址（如有的话） http://www.dlgs.gov.cn/main/index.html
附件（方便上传的话）
是否上报：已上报

上报分析结果

File ID Filename Size (Byte) Result 25186833 index.html 61.29 KB MALWARE Please find a detailed report concerning each individual sample below: Filename Result index.html MALWARE The file 'index.html' has been determined to be 'MALWARE'. Our analysts named the threat HTML/Infected.WebPage.Gen.The term "HTML/" denotes a script-virus that is able to infect the system using a HTML script.This malware is detected by a special detection routine from the engine module. Please note that you will receive an email which will contain theresults shown above. In case the final outcome of the analysis is notyet finished for all files the notification will be sent once ready.

[ 本帖最后由 henmy168 于 2008-11-12 20:20 编辑 ]

shmily1147

一键ghost的gho_cfg.exe
误报名：TR/Dropper.Gen
未上传

pazh3336

文件名/软件名屏幕截图.exe
误报名HEURCrypted - Heuristic
附件
是否上报：已上报
上报分析结果

Subject	Submitted on	Answer sent on
[#227975] Upload via Website	19 Nov 2008 09:51 +0100	Pending...

不会看啊

pazh3336

文件名/软件名屏幕截图.exe
误报名HEURCrypted - Heuristic
附件
是否上报：已上报
上报分析结果

结果Thank you for your email to Avira's virus lab.
Tracking number: INC00227982.



We received the following archive files:

File ID	Filename	Size (Byte)	Result
25192049	????.rar	243.56 KB	OK

A listing of files contained inside archives alongside their results can be found below:

File ID	Filename	Size (Byte)	Result
25192022	########.exe	252.41 KB	FALSE POSITIVE

Please find a detailed report concerning each individual sample below:

Filename

Result

########.exe

FALSE POSITIVE

The file '########.exe' has been determined to be 'FALSE POSITIVE'. In particular this means that this file is not malicious but a false alarm. Detection will be removed from our virus definition file (VDF) with one of the next updates.

Alternatively you can see the analysis result here:
http://analysis.avira.com/samples/details.php?uniqueid=jph7hV07jSXrwrhHUKHAF69scQ6k0s04&incidentid=227982

An overview of all your submissions can be found here:
http://analysis.avira.com/samples/details.php?uniqueid=jph7hV07jSXrwrhHUKHAF69scQ6k0s04

Please note: The detection of Spy/Adware is not available in the product "AntiVir PersonalEdition Classic". Please address specific questions to support@avira.com
Kind regards
Avira Virus Lab

08红伞威点

Pending... (等待分析中。。。）
----------------------------------------------
回复 166楼 pazh3336 的帖子
The file '########.exe' has been determined to be 'FALSE POSITIVE'. In particular this means that this file is not malicious but a false alarm. Detection will be removed from our virus definition file (VDF) with one of the next updates
------------------------------------------------------------------------------------
（误报，下次更新修正）

http://bbs.kafan.cn/viewthread.p ... %26amp%3Btypeid%3D6

具体：在2楼有个回复对照。

nbnbsbsb

fphelper.dll
fine plus  qq插件

08红伞威点

C:\Documents and Settings\***\桌面\fphelper.zip
    [0] Archive type: ZIP
      --> fphelper.dll
          [DETECTION] Contains HEUR/Crypted suspicious code
    [NOTE]      A backup was created as '498fc91b.qua'  ( QUARANTINE )
    [NOTE]      The file was deleted!
----------------------------------------------------------------------------------------------------
启发报。

上报回复如下：
File ID  Filename Size (Byte) Result
25099568  fphelper.dll  4.36 KB  FALSE POSITIVE


Please find a detailed report concerning each individual sample below:

Filename Result
fphelper.dll  FALSE POSITIVE

The file 'fphelper.dll' has been determined to be 'FALSE POSITIVE'. In particular this means that this file is not malicious but a false alarm. Detection will not be removed due to the fact that the file does not belong to a regular piece of software. This software can be used for an evasion of security protections in several computer programs. If we will find some malicious code inside the suspicious file anyway, we will integrate the pattern recognition in one of our next updates. In case AntiVir can detect this file we will not change or remove our detection.

mhx681105

误报qq游戏（围棋）