5 Replies Latest reply on May 6, 2014 8:32 AM by exbrit

    False Artemis!BEFE895D206B

    wkwthree

      Hello,

       

      Another one of our applications is incorrectly identified as the malicious Artemis!BEFE895D206B.I don't have the engine specifics or logs since the detections are only surfacing via VirusTotal. I’m not getting a comparable match when verifying with McAfee Total Protection but the getsup tool is flagging the file as suspicious. The same flag is also surfacing with McAfee Gateway Web. I've included a copy of the details from the gusup.exe submission. For privacy I've removed the machine name.

       

      Some details about the application: The product is installed with the user’s full consent. At the time of install, the software is clearly disclosed as ad-supported. The product does not collect, share or sell any personally identifying information. Furthermore, the product provides a standard method to easily uninstall via the Windows Add/Remove program.

       

      Please help in getting the flag removed and white-list the application to prevent this issue from reoccurring. This is a separate build from my other post. I’ve submitted it separately since it has a different signature.

       

      Let me know if further details are required.

       

       

      E-mail Submission Synopsis:

       

      SR Number               CreationDate                WorkItem ID        Machine Name           

      =========              ==============              ===========       ===========            

      None specified         5/1/2014 3:30:56 PM         1330051            REMOVED

       

      | File Name         | MD5                              | Findings                       | Detection          | Type           |

      +--------------------+----------------------------------+----------------------- ---------+--------------------+----------------+

      | setup_88201-it.ex_ | c8620cd60a158bdd6544c78825e25b61 |beta_heuristic_virus_detection | beav-new malware.x | assumed_dirty3 |

       

       

      Thanks,
      Wes