Well easy to check if they think it is actually a false detection
Submit the file via
The zip has to be less than 10MB if not and do this anyway scan it at www.virustotal.com and post the link to the scan here. Also post the analysis id number you get when You get the reply back immediately to the submission. If not fixed in 3 days ask and I or another mod will escalate the issue to the malware team.
If the file is actually still said by the team to be malware the writer zone better talk to the team.
Ok, I can not do that, as when I go into the folder for, " clientregistry.blob ", which is the file that was quarantined it is not there after i restore it, even though i have it to show hidden files.
It is also not in the Registry.
I did try to use McAfee GetSusp 22.214.171.1241 and sent the xml report file to Mcafee.
Did it mention that file as suspicious?
When you used getsusp did you add your email address to its preferences if so and you had suspicious files you should have gotten an email reply with a workunit id number or some such thing.
Steam stores its files inside a hidden directory
~/.local/share/Steam/unless you have picked a different location for it.
~is a shortcut to mean the user’s home dir, which should be
As such you’ll need to open the file browser, show hidden files, locate .local, and follow that up into Steam and the registry blob will be inside
I thought the file name was moviewriterpro.exe
Ok, yea now i see the file, Thanks! Yes GetSusp mentions that "clientregistry.blob", is suspicious.
When I run moviewriterpro.exe, once I start inputing information, McAfee quarantines the, clientregistry.blob file.
Not sure if my email was already in preferences or not, since i did not hear back I guess it was not so i will run it again.
Ok, I resent the GetSusp file with my email for sure this time and zipped it up with the "infected" password before i sent it.
It is actually showing 10 files as suspicious now, all from both the Steam and OverWolf folders.
No need to send the file it is sent automatically to McAfee labs after each run.
I was confused as the screen capture you posted shows moviewrirerpro.exe as the detected file
I need the workitem id number or whatever to escalate the detection.