Help - Search - Members - Calendar
Full Version: avast & SecureWeb Gateway Detect mbam-setup.exe
Malwarebytes Forum > News and Suggestions > Malwarebytes News
TeMerc
Nov 10 2008, 07:49 AM
One of my users alerted me to this one while he was clicking a link on my site. He said his avast went off, so I told him to upload it to VT:
File Download_mbam-setup.exe received on 11.10.2008 08:26:13 (CET)
Result: 1/36 (2.78%)

SecureWeb-Gateway 6.7.6 2008.11.10 Win32.Malware.dam (suspicious)

My avast went off when I downloaded it and the following is in the log report.
11/10/2008 12:34:59 AM 1226302499 SYSTEM 1480 Sign of "Win32:Downloader-BVO [Trj]" has been found in "C:\Documents and Settings\TeMerc\Desktop\Download_mbam-setup.exe" file.

avast info:
v4.8 Home Edition, compilation date of 11/09 with file version 081109-0

I've just posted @ the avast forum about it. Not sure where to go for SecureWeb, but figure you guys will know who to contact.


TeMerc cool.gif
YoKenny1
Nov 10 2008, 01:38 PM
QUOTE
I've just posted @ the avast forum about it. Not sure where to go for SecureWeb, but figure you guys will know who to contact.
I do not see the post?

Do you have a reference for the post?
TeMerc
Nov 10 2008, 05:04 PM
QUOTE (YoKenny1 @ Nov 10 2008, 06:38 AM) *
I do not see the post?

Do you have a reference for the post?
It's not a 'public' forum, but one that avast personnel have access to.
JeanInMontana
Nov 10 2008, 08:59 PM
This has gone beyond F/P they are all aware that file is not malware.
Tarun
Nov 10 2008, 09:09 PM
QUOTE (JeanInMontana @ Nov 10 2008, 03:59 PM) *
This has gone beyond F/P they are all aware that file is not malware.

Oh please. Overreact much? It's a false positive and it's not the first time a company has made a false positive. rolleyes.gif

Both jotti and VirusTotal report it's clean. Doesn't take long to check into these things.
Click to view attachment
Click to view attachment
JeanInMontana
Nov 10 2008, 10:19 PM
QUOTE
Oh please. Overreact much? It's a false positive and it's not the first time a company has made a false positive.


That's my point Tarun and FYI I was not the first to take note. And it was checked on the other site. There should be a time they stop finding a well known program as malware, but they don't. Save your sarcasm.
Tarun
Nov 11 2008, 12:34 AM
QUOTE (JeanInMontana @ Nov 10 2008, 05:19 PM) *
That's my point Tarun and FYI I was not the first to take note. And it was checked on the other site. There should be a time they stop finding a well known program as malware, but they don't. Save your sarcasm.

Considering how heuristics are made to detect all kinds of new malware it makes perfect sense that recurring false positives occur. Many AV applications try to use new detection algorithms in order to stay ahead. They change all the time and as such they can often detect some legit files falsely. They really don't have much control over it but will try to fix things as soon as possible.

You can even see it with MBAM and how it has had false positives before. Bruce quickly corrects them as does Marcin, but they can still recur. So are you saying that once they fix the issues, despite advancing the technology of MBAM it should never happen again and as such you are also criticizing the dynamic duo? wink.gif
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.
Invision Power Board © 2001-2010 Invision Power Services, Inc.