This content has been marked as final. Show 5 replies
You should be getting the email notification from the AVERT team regarding the analyzing report. If you haven’t then you can also submit the file through the Email
Document ID: TS100095
Email: All files submitted via email must be packaged in a .ZIP archive. The archive must be less than 3 megabytes in size and can contain no more than 30 files. Additionally, you must password-protect the archive with the password infected. Failure to follow these guidelines will cause your submission to be rejected.
NOTE: If you are submitting a Spyware sample, the subject of the email must be MAS Content.
Email submissions should be sent to email@example.com. If you submit a sample via email, include the additional information below to help speed the sample review process:
o A list of all files contained in the sample submission, including a brief description of where or how the files were found.
o What symptoms cause you to suspect that your computer is infected.
o Whether any products detected a virus or spyware (version number, company, virus/spyware name given).
o Your McAfee Product information (Product, Engine and DAT versions).
o System details that may be relevant (Operating System, Service Packs).
o Your name, company name, phone number and email address if possible.
You can send the sample to the global address at firstname.lastname@example.org, or you can send the sample to one of the regional addresses below:
Thank you for your reply, Bala.
It's good to know that I will get the analysis report from the Avert team for the quarantined files submitted to the Avert lab via the Security Center GUI.
I will wait a few days for the email notification from the AVERT team. And if I do not get the notification e-mail after a few days, then I will send the files by different way like you instructed (although I feel reluctant to restore the quarantined files in order to submit to the Avert lab, since those were alerted as Trojan.)
Thank you and regards
If they were only just identified as trojans after being installed for some time then the chances are it's a false positive. "Artemis" in the detection tells you that it's only a possible infection, basically unknown at this point.
There's a sticky on dealing with Artemis detections here: http://community.mcafee.com/showthread.php?t=228162
Thank you, Peter.
It's good hear the positive professional words.
I surely hope that it will be false positive.
And thank you for the link of the generic Artemis.