Check Point and WildFire (6.0 and later) can report multiple notifications for the same file, each from a different analysis environment.
The Analysis Environment field is especially useful in this case since it provides information about the test environment(s) in which the file was detonated or analyzed, allowing you to determine whether or not the file was found malicious in each environment. For notifications based on detonation of a file, the environment includes not only the base operating system, but also other key software. For example, one notification might show the following Analysis Environment: Windows 7, Adobe Reader 11, Flash 11, Office 2010.
For WildFire notifications that involved static analysis, the type of analyzer is reported in this field; for example: DOC/CDF Analyzer.