Detected as Exploit (K7 AntiVirus) W32/Ramnit.C (Avira), virus.bat.startmuch.a (Qihoo) and JS/Redirector.BB (Total Defense) #577

article10 · 2015-08-06T23:59:21Z

Hello,

I was wondering if you knew about these detections for the Firefox version:
http://www.herdprotect.com/knowledgebase_resource.aspx?sha1=279b38622cf9efed492806e1d5244ffa37c6cd60&u=e66b5d90-c1b2-4751-86fa-4f6d4abeba7b&s=scanner&v=1.0.3.9

You can report false positives here: http://www.herdprotect.com/false_positive.aspx?sha1=279b38622cf9efed492806e1d5244ffa37c6cd60&u=e66b5d90-c1b2-4751-86fa-4f6d4abeba7b&s=scanner&v=1.0.3.9

Kind regards,

gorhill · 2015-08-07T04:36:39Z

uBlock ships with filter lists, including the malware ones, so this can lead to false positives (as long as you install from reliable sources: AMO, Chrome/Opera store, or GitHub). For example, #199.

gorhill · 2015-08-14T12:34:17Z

Looks like someone filed a false positive report, the file is now marked as "clean", with the following comment:

A number of engines detected this file but were erroneous detections (false positives).

gorhill closed this as completed Aug 14, 2015

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Detected as Exploit (K7 AntiVirus) W32/Ramnit.C (Avira), virus.bat.startmuch.a (Qihoo) and JS/Redirector.BB (Total Defense) #577

Detected as Exploit (K7 AntiVirus) W32/Ramnit.C (Avira), virus.bat.startmuch.a (Qihoo) and JS/Redirector.BB (Total Defense) #577

article10 commented Aug 6, 2015

gorhill commented Aug 7, 2015

gorhill commented Aug 14, 2015

Detected as Exploit (K7 AntiVirus) W32/Ramnit.C (Avira), virus.bat.startmuch.a (Qihoo) and JS/Redirector.BB (Total Defense) #577

Detected as Exploit (K7 AntiVirus) W32/Ramnit.C (Avira), virus.bat.startmuch.a (Qihoo) and JS/Redirector.BB (Total Defense) #577

Comments

article10 commented Aug 6, 2015

gorhill commented Aug 7, 2015

gorhill commented Aug 14, 2015