Note- Online customer support form with no attachment, have to send complaint first, then respond to email they send. Need to specifically clarify that you are reporting a false-positive. Note- Russian based company with English support. I want fkernel.exe removed from your list. This file, fkernel.exe, has been falsely detected as malware by F-Prot or Cyren. "I think is falsely classified as malware" Misclassification Reason* Note- With F-Prot or Cyren you also have to specifically clarify that you are reporting a false-positive. F-Prot or Cyren Online Submission for False-Positives: This file, fkernel.exe, has been falsely detected as malware by F-Secure. "I want to give more details about this sample and to be notified of the analysis results" click check box Note- With F-Secure you also have to specifically clarify that you are reporting a false-positive. F-Secure Online Submission for False-Positives: This file, fkernel.exe, has been falsely detected as malware by Sophos. "Why do you want to send this sample?" section. Note- With Sophos, you have to specifically clarify that you are reporting a false-positive. Also known for controversies over certification and it's detection engine. Qihoo or 360 Safeguard Online Submission for False-Positives: Rising Anti-virus Online Submission for False-Positives: Note- They may ask for more details or follow-up questions. eGambit Online Submission for False-Positives: And it's best to put "False Positive: file being detected by K7" for "Subject" Note- Choose False Positive under "Category". K7 or K7AntiVirus Online Submission for False-Positives: Note- Taiwan based company on Google's VirusTotal list, where you might have to add an exception (at least temporarily) for their SSL certificate Aegislab Online Submission for False-Positives: Note- You must fill out their form, which has multiple questions before the submission step Norton or Symantec or Blue Coat Online Submission: Note- These products are tied to Cisco, so their impact should not be underestimated. ClamAV and Immunet Online Submission for False-Positives: VIPRE or ThreatTrack Online Submission for False-Positives: G DATA or G-Data Online Submission for False-Positives: Spybot Search & Destroy Online Submission for False-Positives: Trend Micro Online Submission for False-Positives: AVG Online Submission for False-Positives: Bitdefender Online Submission for False-Positives: Avira Online Submission for False-Positives: Avast Online Submission for False-Positives: Comodo Online Submission for False-Positives: Will give tracking of Microsoft's decision. Note- Most people will need to select "Home customer" and then "Continue". Microsoft Online Submission for False-Positives: exe is falsely identified, we can rapidly submit to many major Anti-Virus companies to have it properly tested and cleared. Google's VirusTotal list uses these major players. To combat this situation, here are a list of Anti-Virus online false-positive submission sites (and some e-mail addresses). False-positives decreases customer confidence in the quality of the product and validity of scan results False identification does a disservice to the entire Anti-Virus industry, and can arguably be a form of fraud or a bad business practice Falsely identifying clean or non-dangerous files as malware to artificially boost Anti-Virus sales or give unsuspecting customers false confidence Wholesale importing hash and database signatures from online sources, without doing proper analysis or verification This is an ongoing issue that more exotic or less mainstream scripting languages have to face, where they can be targeted by poor practices within Anti-Virus companies or where proper research isn't being done. Here is a list of actions that will help you find some answers, and take the proper actions
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |