This content has been marked as final. Show 90 replies
first of all: send the files to AVERT: https://www.webimmune.net/default.asp and mention the false positives.
(unfortunately they are slow on adjusting this :(
then rollback the DATs ( https://kc.mcafee.com/corporate/index?page=answers&question_box=dat+rollback&ty pe=forward&searchid=1246609015639 )
or exclude the folder temporarily.
you could check whether it's a false postives at virustotal.com too
Same Problem here in Germany.
Any Advice from Mcafee ?????
the advice from mcafee would be the same like the 8.7i-patch1-massacre: mention nothing and fix it with an "emergency" dat wink
i have already used virustotal and other services and i confirm that is a false positive...
now i will contact mcafee...
AVERT Labs - Beaverton
Current Scan Engine Version:5300.2777
Current DAT Version:5664.0000
Thank you for your submission.
Analysis ID: 5391921
Name Findings Detection Type Extra
mcscript.exe.vir no malware no
no malware [ mcscript.exe.vir ]
Avert Labs has found no indications of malicious code. Upon examining the file we observed no malicious behavior.
McAfee AVERT tm
A division of McAfee, Inc
What is version of VirusScan you running?
I noticied about this ptoblem just in XP workstations with VSE 8.0
I had one workstation come on the network with vse 8.0 and after it updated ( but beofre it upgraded itself to 8.5) it showed this behaviour, didnt get the same thing with 8.5 or 8.7 though.
Windows server 2000 sp3
VirusScan Enterprise 7.1
100 server affected
It looks like after searching for the files affected, that this issue is involving Compaq/HP device drivers - I'd be interested to hear if those affected would be able to confirm if they are running HP/Compaq Workstations and Servers.