As of this morning we are seeing VSE actively deleting a file QSR.EXE as being a potential threat (Artemis!934AA218BD58)
This EXE file is associated with Quest Toad for Data Analysts 2.5.1 and was actively in use in our environment.
Can you please research/revise your heuristic scan parameters for this file?
Enterprise Desktop Customer Services unit
Additional information from EPO log
"Threat" Target File Path: C:\Program Files (x86)\Quest Software\Toad for Data Analysts 2.5.1\QSR\qsr.exe
Event Category: Malware detected
Action taken: Deleted
Threat handled: True
I have same false positive detectionsin popping up today in my environment. McAfee 8.7, DAT 6577, Engine 5400.1158.
C:\Program Files\Quest Software\Toad for Data Analysts 2.5.1\QSR\qsr.exe
We are being affected by this issue as well. I've opened a case with Platinum support and they state they have suppressed detection via Artemis. They state it may also be detected as another threat. They have provided us with an ExtraDAT for this detection.
We have the same issue and opened up a ticket with support.
Yesterday they had us exclude the path in the high risk, low risk and general on-access policies. That did not work.
Neither did the latest DATs. We just tried excluding just the qsr.exe file and that seems to work, but not a viable permanent solution.
Message was edited by: fbilotta on 1/6/12 8:17:33 AM GMT-06:00
Similiar issue; the QSR.EXE file associated with Quest Toad for Data Analysts 2.5.1 has been identified as detected as "Generic Malware.bj!c" and detection type "Trojan". Please provide feedback or correct product for misidentified signature.