A user of an web application, that export some data into excel, report us this message.
What is it ?
what doses it mean?
What to do with this?
Thanks in advance
that is probably the virus name from the block message the user received when using the web application. The website was scanned by the McAfee Web Gateway and the Antimalware engine classified the application as malicious based on a heuristic detection.
This doesn't mean that there must be a virus in the web application, but web applications that export data into your a desktop program is normally something that you don't want to allow generally. It's a potential security thread and the ProActive part of the engine blocked the web site.
If the web application is an internal script and trusted it could be scanned without the heuristic detection or completely whitelisted. This has to be done in the Web Gateway configuration.
in order to verify if this webpage/file ist misconfigured you may want to submit a sample to our Antimalware Team. We have a KB for that
Web Gateway: How to submit virus and anti-malware samples (false positives or false negatives) for analysis