system
1
In the few years of using Avast! I’ve never had to submit a false positive so I’m not sure how. I was looking online for a virus encyclopedia to learn more about file infectors like Ramnit, Virut, and Sality. The best one I found from Google was F-Secure’s. However, when I searched for Sality on their site, on the results page, when I clicked on one, Avast! blocked the page and said it had a trojan. Since it is F-Secure’s site I’m highly sceptical.
Because of that I want to submit the URL: wxw.f-secure.com/v-descs/virus_w32_sality_aa.shtml
Substituted x for w so it can’t be clicked. Strangely if I paste it into the address bar and put http:// in front of it, the page will load but the alert still appears.
system
2
Pondus
3
I was looking online for a virus encyclopedia to learn more about file infectors like Ramnit, Virut, and Sality.
Virut and other File infectors - Throwing in the Towel?
http://miekiemoes.blogspot.com/2009/02/virut-and-other-file-infectors-throwing.html
DavidR
4
I would want to know why there is a compressed obfuscated script file being loaded with that shtml page, see images and extract of the contents.
There is a chance that this could be the use of an example of exploit code being picked up, but it certainly seems strange. So yes it needs further investigation as only avast and gdata detect anything (same engine/signature).
http://www.virustotal.com/file-scan/report.html?id=d1dd70db377ba663219a6947dc5ed6355f1c1931e1586ac04efb8c5d068ce46a-1315313142