Announcement

Collapse
No announcement yet.

How to report False Positive to us?

Collapse
This topic is closed.
X
This is a sticky topic.
X
X
  • Filter
  • Time
  • Show
Clear All
new posts

  • #31
    Pretty sure my sys is clean...

    IObit Security 360

    OS:Windows 7 (x64)
    Version:0.2.1.75
    Define Version:1078
    Time:7/22/2009 11:19:01 PM

    |Name|Type|Description|ID|
    Hijack.DisplayProperties, Registry Data, HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer Value=NoActiveDesktopChanges, 6-521

    --------------------

    Here's the whole Registry Key:

    Windows Registry Editor Version 5.00

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer]
    "NoActiveDesktop"=dword:00000001
    "NoActiveDesktopChanges"=dword:00000001
    "ForceActiveDesktopOn"=dword:00000000

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]

    ------------------------

    System is 3 weeks old, freshly installed with Windows 7 RC Build 7100 x64
    I've used Panda ActiveScan and AVG Free with a command line AVG scan hitting my primary download folder every 5 hours.

    Is activedesktop disabled in 7 by default via this key? Haven't really looked...
    [COLOR="Blue"]J Cheney
    Technician
    NTRONIC INC.[/COLOR]

    [COLOR="SeaGreen"]My Rig:
    MSI P7N Platinum (Nvidia 750i), Q9650 (Quad @ 2.83GhZ, 12MB, 1333MhZ FSB), 2 2GB Kingston HyperX DDR2 PC2-8500 (1066MhZ, 5-5-5-15), 4 Seagate 750GB (ST3750330AS, RAID 0+1), MSI Nvidia 9800Gx2, Antec TruePower 850W PSU, Antec 900 case, Windows 7 x64 w/ XP virtualization :razz:[/COLOR]

    Comment


    • #32
      Here is the registry entry for:

      HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Policies\Explorer\Run

      in Windows 7 RC 7229 installed yesterday.

      Only IObit products + AVG Pro.




      Cheers.
      enoskype

      - Beauty lies in the eye of the beholder and belongs to the man who can appreciate it. -

      Comment


      • #33
        is it a fale positive?

        Originally posted by Tim Xue View Post
        Before reporting a false positive, please save a scan report first and post it here. This will help us know the detailed information about the scan result.


        OS:Windows XP
        Version:0.2.1.75
        Define Version:1076
        Time:7/24/2009 9:48:19 PM

        |Name|Type|Description|ID|
        Tracking Cookies, Cookies, Cookie:levi@ad.yieldmanager.com/, 7-1548
        Misleading.WinDefender, Registry Key, HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\FwHookDrv, 4-1472

        Comment


        • #34
          False Positive - Logitech

          IObit Security 360

          OS:Windows XP
          Version:0.2.1.75
          Define Version:1081
          Time:2009-07-24 20:40:21

          |Name|Type|Description|ID|

          Keylogger.Snipher, File, C:\Program Files\Logitech\QuickCamWebInstall\techsupt\MiscTools\MSIZap.exe, 9-64568

          Comment


          • #35
            :shock:hi all.IObit Security 360 detects an aplication,"GetSystemInfo",as a trojan.crypt.xpack!this aplication ,when I run it,tells me about my softwares,hardwares and devices and if there are conflicts between them.its like your product "Software Informer". IObit Security 360 has no conflicts with my antivirus,Avira+Comodo suite,but it tells me my firewall is Avira instead Comodo!? I had Avira firewall,now I've,as I said,Comodo.
            Have a nice day ! God bless you!:-D

            Comment


            • #36
              Open office installer?

              This has to be a FP!

              Comment


              • #37
                from Medion P6612 laptop

                IObit Security 360

                OS:Windows Vista
                Version:0.2.2.8
                Define Version:1092
                Time:30/07/2009 11:03:15

                |Name|Type|Description|ID|
                Trojan.Crypt.XPACK, File, D:\TOOLS\MedionHomeCinema_R6\MShow\vcredist_x86.exe, 12-218


                This file is in the back up drive needed to reset the laptop to factory default.
                Is it really a trojan or just a information collector for Home Cinema

                Comment


                • #38
                  Universal USB driver.

                  Could this be a false positive?

                  IObit Security 360

                  OS:Windows XP
                  Version:0.2.2.8
                  Define Version:1092
                  Time:2009-07-30 07:15:37 a.m.

                  |Name|Type|Description|ID|
                  Trojan.Crypt.XPACK, File, C:\Documents and Settings\Escritorio\Escritorio 1\nusb33es.exe, 12-218

                  I use BitDefender Total Security 2009 and it doesn't show it as a threat.

                  Regards.

                  Comment


                  • #39
                    False negative report

                    I have found another false negative:- Here is the report

                    IObit Security 360

                    OS:Windows XP
                    Version:0.2.2.8
                    Define Version:1095
                    Time:31/07/2009 23:47:41

                    |Name|Type|Description|ID|
                    Backdoor.Bifrose, Folder, C:\WINDOWS\system32\win32.exe, 3-2836
                    Tracking Cookies, Cookies, Cookie:paul kronbergs@www.virginmedia.com/, 7-2203
                    Tracking Cookies, Cookies, Cookie:paul kronbergs@virginmedia.com/, 7-2203
                    Tracking Cookies, Cookies, Cookie:paul kronbergs@search.virginmedia.com/, 7-2203

                    Comment


                    • #40
                      Win32.exe is definately not a Windows system file. Check it with http://www.virustotal.com and see what result it comes up with.

                      Comment


                      • #41
                        Hi there,

                        Please have a look at THIS web page.

                        Cheers.
                        enoskype

                        - Beauty lies in the eye of the beholder and belongs to the man who can appreciate it. -

                        Comment


                        • #42
                          IObit Security 360

                          OS:Windows XP
                          Version:0.2.2.8
                          Define Version:1098
                          Time:8/2/2009 2:25:19 AM

                          |Name|Type|Description|ID|
                          Trojan.Crypt.XPACK, File, C:\WINDOWS\ServicePackFiles\i386\aspnet_regiis.exe, 12-562

                          Comment


                          • #43
                            Hi pimpmypc,

                            Please have a look at THIS post.

                            Cheers.
                            enoskype

                            - Beauty lies in the eye of the beholder and belongs to the man who can appreciate it. -

                            Comment


                            • #44
                              False Positives ????

                              IObit Security 360

                              OS:Windows XP
                              Version:0.2.2.8
                              Define Version:1098
                              Time:8/2/2009 9:27:00 AM

                              |Name|Type|Description|ID|
                              Disabled.SecurityCenter, Registry Data, HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center Value=AntiVirusDisableNotify, 6-554
                              Disabled.SecurityCenter, Registry Data, HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center Value=FirewallDisableNotify, 6-555
                              Disabled.SecurityCenter, Registry Data, HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center Value=UpdatesDisableNotify, 6-556
                              Trojan.Crypt.XPACK, File, C:\WINDOWS\$NtServicePackUninstall$\aspnet_regiis.exe, 12-562
                              Adware.Ascentive, File, C:\WINDOWS\system32\SysRestore.dll, 9-10303
                              Misleading.PCSpeedScan, File, C:\System Volume Information\_restore{6D3FBDEF-8C21-4647-9BF3-72176E328E86}\RP288\A0028526.exe, 9-4161
                              Adware.Ascentive, File, C:\System Volume Information\_restore{6D3FBDEF-8C21-4647-9BF3-72176E328E86}\RP288\A0028535.exe, 9-7388
                              Adware.Ascentive, File, C:\System Volume Information\_restore{6D3FBDEF-8C21-4647-9BF3-72176E328E86}\RP288\A0028536.exe, 9-7388
                              Trojan.Crypt.XPACK, File, C:\WINDOWS\ServicePackFiles\i386\aspnet_regiis.exe, 12-562
                              Trojan.Crypt.XPACK, File, C:\WINDOWS\Microsoft.NET\Framework\v1.0.3705\aspnet_regiis.exe, 12-562

                              Comment


                              • #45
                                IObit Security 360

                                OS:Windows XP
                                Version:0.2.2.8
                                Define Version:1098
                                Time:02.08.2009 17:25:35

                                |Name|Type|Description|ID|
                                Trojan.Crypt.XPACK, File, D:\Schutzprogramme\aspnet_regiis.exe, 12-562


                                aspnet_regiis.exe seems to be a false positive, it's part of Microsoft .NET Framework ...

                                Virustotal: http://www.virustotal.com/de/analisi...036-1249227130
                                Every problem has a solution!

                                Comment

                                Working...
                                X