6 Replies Latest reply on Aug 12, 2013 12:27 AM by vinoo

    Artemis Question

      Hi! I ran the MVT tool. It found 2 things to fix. One was some registry issue. The other one said it was a top issue. It said Artemis Sever Issue Deteced. It fixed it, but is this something to be worried about if it keeps happening? I've ran a few Adware/Malware/Spyware tools, and I just want to make sure there is no issues to worry about. Thanks!

        • 1. Re: Artemis Question
          Peacekeeper

          Noone ever posted that issue in 10 years I have been here.  I will ask one of the techs we talk to but in the meantime scan with some of the suggested scanners here

          McAfee Communities: Anti-Spyware/Malware & Hijacker Tools

           

           

          Actually could be this issue ie it fixed something in Mcafee that caused the false detections

          http://service.mcafee.com/faqdocument.aspx?id=TS10189

           

          Message was edited by: Peacekeeper on 9/08/13 4:18:02 PM
          • 2. Re: Artemis Question
            vinoo

            Can you post the log or a screenshot. Haven't heard of this before.

            • 3. Re: Artemis Question

              I just scanned again, and it found no issues, so that's good. I thought I had a problem with my Mcafee when I signed in cause it kept saying Real-Time Scanning was off. Kepting turing on and off. I just restarted computer, and it fixed that issue. I'm in the process of scanning with other tools tirhgt now. Malwarebites found nothing. If any other finds anything, should I post those results here? Thanks!

               

              Well so far this is the only this anything found, except for the SuperAntiSpyware tracking cookies...From RougeKiller

               

              RogueKiller V8.6.5 [Aug  5 2013] by Tigzy

              mail : tigzyRK<at>gmail<dot>com

              Feedback : http://www.adlice.com/forum/

              Website : http://www.adlice.com/softwares/roguekiller/

              Blog : http://tigzyrk.blogspot.com/

               

               

              Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits version

              Started in : Normal mode

              User : Ricky [Admin rights]

              Mode : Scan -- Date : 08/09/2013 10:38:06

              | ARK || FAK || MBR |

               

               

              ¤¤¤ Bad processes : 0 ¤¤¤

               

               

              ¤¤¤ Registry Entries : 4 ¤¤¤

              [HJ DESK] HKCU\[...]\ClassicStartMenu : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> FOUND

              [HJ DESK] HKCU\[...]\ClassicStartMenu : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND

              [HJ DESK] HKCU\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> FOUND

              [HJ DESK] HKCU\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND

               

               

              ¤¤¤ Scheduled tasks : 0 ¤¤¤

               

               

              ¤¤¤ Startup Entries : 0 ¤¤¤

               

               

              ¤¤¤ Web browsers : 0 ¤¤¤

               

               

              ¤¤¤ Particular Files / Folders: ¤¤¤

               

               

              ¤¤¤ Driver : [NOT LOADED 0x0] ¤¤¤

               

               

              ¤¤¤ External Hives: ¤¤¤

               

               

              ¤¤¤ Infection :  ¤¤¤

               

               

              ¤¤¤ HOSTS File: ¤¤¤

              --> %SystemRoot%\System32\drivers\etc\hosts

               

               

              ¤¤¤ MBR Check: ¤¤¤

               

               

              +++++ PhysicalDrive0: ST375052 8AS SATA Disk Device +++++

              --- User ---

              [MBR] ca12fe2a63901aecc33c2c79c5fe4c2a

              [BSP] 008c907d09d9ff02f83a5a913d85dd2f : Windows Vista/7/8 MBR Code

              Partition table:

              0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 100 Mo

              1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 206848 | Size: 701820 Mo

              2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 1437534208 | Size: 13482 Mo

              User = LL1 ... OK!

              User != LL2 ... KO!

              --- LL2 ---

              [MBR] f4a7a3500d122034dfc418578bbe5bb5

              [BSP] 95370c5e5e17de085fe2ed047e8cb0c3 : Windows 7/8 MBR Code

              Partition table:

              0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 264071168 | Size: 300 Mo

               

               

              Finished : << RKreport[0]_S_08092013_103806.txt >>

               

              Message was edited by: recjus85 on 8/9/13 9:40:34 AM CDT
              • 4. Re: Artemis Question

                Ok so I did a System Restore cause I was having issues with Windows Update, and it fixed that issue. First thing I did was update McAfee, which it did. Then I ran the MVT,a nd came back with 3 issues. The two I had before, and another saying I needed to update Security System, even after I already did. It update again when I did it, but that just seems odd. But I copied what the other issues were. Also I reran MVT after updating Security again, and no issues found.

                 

                MVT Information
                MVT Version:7.1.0.2483
                System Information
                Operating System:Microsoft Windows 7 Home Premium Edition(Build 7601)
                Service Pack:Service Pack 1.0
                Language:0409
                Internet Explorer Version:10.0
                Internet Explorer Language:en-us
                System Drive Type:NTFS
                Physical Memory Available:2539536
                Physical Memory Total:4194303
                Virtual Memory Available:7023508
                Virtual Memory Total:9958148
                System Architecture:AMD64 Family 16 Model 6 Stepping 3AMD Phenom(tm) II X2 511 Processor
                Date Time:08/09/2013 15:21:01
                Time Zone:GMT -05:00
                Product Details
                Product Name:VirusScan
                Product Version:16.8.158
                Language:en-us
                Partner:McAfee
                Health Check Details
                Registry1 Registry key(s) incorrect
                Expected Registry Value not Present
                Expected : 1
                Existing : 0
                Key: HKEY_LOCAL_MACHINE\SOFTWARE\McAfee\AVSolution\MCSHIELDGLOBAL\GLOBAL usebootdats
                FileOK
                ProcessOK
                ServiceOK
                COMOK
                Top Issues1 Top Issue(s)
                Top Issue: Artemis Server issue detected
                KB URL:
                SYSTEMOK

                Product Name:QuickClean and Shredder
                Product Version:12.8.151
                Language:en-us
                Partner:McAfee
                Health Check Details
                RegistryOK
                FileOK
                ProcessOK
                ServiceOK
                COMOK
                Top IssuesOK
                SYSTEMOK

                Product Name:SecurityCenter
                Product Version:12.1.353
                Language:en-us
                Partner:McAfee
                Product Status
                Product update required
                Health Check Details
                Top IssuesOK

                Product Name:SiteAdvisor
                Product Version:3.6.168
                Language:en-us
                Partner:McAfee
                Health Check Details
                RegistryOK
                FileOK
                ProcessOK
                ServiceOK
                COMOK
                Top IssuesOK
                SYSTEMOK

                Product Name:Personal Firewall
                Product Version:13.8.151
                Language:en-us
                Partner:McAfee
                Health Check Details
                RegistryOK
                FileOK
                ProcessOK
                ServiceOK
                COMOK
                Top IssuesOK
                SYSTEMOK

                Product Name:Parental Controls
                Product Version:14.8.113
                Language:en-us
                Partner:McAfee
                Health Check Details
                RegistryOK
                FileOK
                ProcessOK
                ServiceOK
                COMOK
                Top IssuesOK
                SYSTEMOK

                Product Name:AntiSpam
                Product Version:13.8.145
                Language:en-us
                Partner:McAfee
                Health Check Details
                RegistryOK
                FileOK
                ProcessOK
                ServiceOK
                COMOK
                Top IssuesOK
                SYSTEMOK

                 

                Message was edited by: recjus85 on 8/9/13 2:31:38 PM CDT
                • 5. Re: Artemis Question
                  Peacekeeper

                  OK we'd better wait for Vinoo. Thanks for posting that log.

                  • 6. Re: Artemis Question
                    vinoo

                    Two weeks back we had an Artemis issue that falsely detected a variety of files. If MVT comes across any of these files that were mistakenly quarantined, then you would see this message as a one-time warning. When the fix all button is clicked, these mistakenly quarantined files would be restored to their original state on that system.

                     

                    The warning should not be displayed again post the fix action.