I have a program from the US Treasury called "Savings Bond Wizard". Now whether I choose automatic or manual updates, McAfee quarantines the file due to Artemis! (trojan) found supposedly. The file name is sbwcrv.exe and it updates my information in SB Wizard with current info from the treasury or at least it would if McAfee didn't interfere. Please help, thanks.
Moved to Security Awareness > Malware Discussion > Artemis Discussion for better attention. It might help any lab technicians that may be patrolling here to know the Artemis detection number.
Toronto ▪ Canada
Volunteer Moderator - Consumer Products
I CAN'T HELP PRIVATELY - PLEASE POST IN THE FORUMS
Use Advanced Search To Find Answers
I downloaded that file from the US Treasury website and sent it to VirusTotal for checking. VT already had a scan from the 6th showing no detections, and the current scan also comes up with a score of 0/57. The Artemis detection must have been suppressed.
Correction - The file scanned was different - sbwsetup.exe, so I'll need to find the correct file and scan again.
I found the correct file - the new values file, sbwcrv.exe - downloaded okay (no warnings) and passed it to VirusTotal as before. This time the VirusTotal scan shows 6 detections from 57 AV engines including the McAfee Artemis detection.
The VT information about this file identifies it as a "7z Setup SFX (x86)" file from "Oleg N. Scherbakov". I have no idea if this is correct.
This file has been detected as suspicious by other antivirus products in the past and has needed to be whitelisted by those companies.