I'm trying to submit two (2) samples which I believe are false positives for "Artemis!FBACDA67D595" and "Artemis!95951D40A2F0". Ironically these are some files related to WinZip (which the McAfee product I'm running won't let me install on an off-line machines) and I am using Windows 7 on this computer, which appears to have removed the password feature on compressed files. Unfortunately I don't have the local rights to install the other tool that is downloadable for submissions on the machine I have which is connected to the internet - I'm in a multi-network Gov environment. How else can I submit these files so presumably the false positive will get corrected and pushed out in an update?
Thanks for any help offered.
MarkMessage was edited by: Ex_Brit on 01/03/13 6:55:47 EST PM
I altered your header to include the Artemis numbers which means that the department concerned is much more likely to spot this thread and deal with it without you having to submit anything.
Meanwhile I published a small tutorial on submitting false positives here: https://community.mcafee.com/thread/2016
I'm surprised that Winzip is being stopped by McAfee though. Are you downloading it from source or from a 3rd party?
.Message was edited by: Ex_Brit on 01/03/13 6:59:28 EST PM
These falses won't trigger unless you've set Artemis levels to VERY HIGH or HIGH sensitivity.
I've escalated this internally and these should get suppressed soon.
Artemis!FBACDA67D595 & Artemis!95951D40A2F0 are now suppressed. Kindly allow up to two hours for this update to reflect in GTI system.