Re: EdSharp has problems with Malwarebytes
- From: "Andre Williams" <andre.williams.1965@xxxxxxxxx>
- To: <programmingblind@xxxxxxxxxxxxx>
- Date: Fri, 5 Aug 2011 17:26:42 -0700
Don. You may have something here. It makes total sense that this would be
considered fishy behavior by MB. The thing is that I was not using EdSharp
at the time the warning popped up. Than again MB might have been running a
scan and bumped into it. Thanks for the creative input.
A-W
----- Original Message -----
From: "Don Marang" <donald.marang@xxxxxxxxx>
To: <programmingblind@xxxxxxxxxxxxx>
Sent: Friday, August 05, 2011 5:07 PM
Subject: Re: EdSharp has problems with Malwarebytes
Or it could be that MalWare Bytes thinks directly accessing the web the
way those three programs is suspicious. Does Malware Bytes have
behavior profiling? It is not a main stream product that their
developers would have run into before. That is why it should be
reported to their developers so they can determine if it is a false
positive.
*Don Marang*
Vinux Software Development Coordinator - vinuxproject.org
<http://www.vinuxproject.org/>
There is just so much stuff in the world that, to me, is devoid of any
real substance, value, and content that I just try to make sure that I
am working on things that matter.
-- Dean Kamen
On 8/5/2011 7:56 PM, Littlefield, Tyler wrote:
> Honestly I don't trust a lot of vendors. Nothing against Jamal, but
> there are companies that have been found to stuff their programs with
> malware, I don't really think it beneath another person. On another
> note though, you said "not on purpose." How do you think viruses and
> malware replacates? Users don't -mean- to send viruses to everyone on
> their address book list, but it does happen.
> On 8/5/2011 3:33 PM, Katherine Moss wrote:
>> How could they be infected though? Jamal knows where he gets his
>> files from, and he'd not do that to us. Not on purpose anyway. But
>> remember that if you do that, you could be killing off functionality
>> by accident.
>>
>> -----Original Message-----
>> From: programmingblind-bounce@xxxxxxxxxxxxx
>> [mailto:programmingblind-bounce@xxxxxxxxxxxxx] On Behalf Of
>> Littlefield, Tyler
>> Sent: Friday, August 05, 2011 6:32 PM
>> To: programmingblind@xxxxxxxxxxxxx
>> Subject: Re: EdSharp has problems with Malwarebytes
>>
>>
>> 3 in one package is a bit insane though, and it is more than possible
>> that these files are infected. I just deleted them and moved right
>> along. On 8/5/2011 3:14 PM, Jackie McBride wrote:
>>> Andre, Malwarebytes, although it can be an excellent program, has of
>>> late become extraordinarily trigger-happy, IMO. White list EdSharp,
>>> report it if u desire, then get on w/your editing or whatever it is u
>>> wanna do. All of these antimalware programs make mistakes at 1 time or
>>> another.
>>>
>>> On 8/5/11, Katherine Moss<Katherine.Moss@xxxxxxxxxx> wrote:
>>>> You should ignore it first of all, and then via the malwarebytes
>>>> command line support, go to run, type "MBAM.exe /developer" (without
>>>> the quotes), then submit that log to the MBAM team for analysis via
>>>> their forums over at forum.malwarebytes.org. I too am a member
>>>> there, and they're very nice.
>>>> But ensure that you don't accidentally let the program take the file.
>>>> And while you're at it, if you use system access, you'll notice that
>>>> MBAM tends to take it's crucial files as well. If you see it in your
>>>> logs, please also report that via the method I showed you.
>>>>
>>>> -----Original Message-----
>>>> From: programmingblind-bounce@xxxxxxxxxxxxx
>>>> [mailto:programmingblind-bounce@xxxxxxxxxxxxx] On Behalf Of Andre
>>>> Williams
>>>> Sent: Friday, August 05, 2011 5:06 PM
>>>> To: programmingblind@xxxxxxxxxxxxx
>>>> Subject: Re: EdSharp has problems with Malwarebytes
>>>>
>>>> Actually Malwarebytes found 3 infections with EdSharp's webClient
>>>> utilities.
>>>> I opened the webclient folder within program files and right clicked
>>>> to scan this folder using Malwarebytes. Here is the related info:
>>>>
>>>> Malwarebytes' Anti-Malware (PRO)
>>>> Scanner Protection Update Quarantine Logs
>>>> Ignore List
>>>> Settings More Tools About
>>>> Scanner
>>>> Below is a list of malicious software found on your system. Close all
>>>> unnecessary applications to ensure successful threat removal.
>>>> Vendor Category Item Other Action taken graphic 750 File c:\program
>>>> files (x86)\EdSharp\webclient\IniForm.exe No action taken.
>>>> graphic 750 File c:\program files
>>>> (x86)\EdSharp\webclient\SayFile.exe No action taken.
>>>> graphic 750 File c:\program files
>>>> (x86)\EdSharp\webclient\SayLine.exe No action taken.
>>>> Remove Selected Ignore Save Log Main Menu Exit
>>>>
>>>> What's my next move? I'm posting here because Jamal informed me that
>>>> it would be best to post my EdSharp problems here.
>>>>
>>>> A-W
>>>>
>>>> ----- Original Message -----
>>>> From: "Andre Williams"<andre.williams.1965@xxxxxxxxx>
>>>> To:<programmingblind@xxxxxxxxxxxxx>
>>>> Sent: Friday, August 05, 2011 1:42 PM
>>>> Subject: EdSharp has problems with Malwarebytes
>>>>
>>>>
>>>> Hi. Received this warning from Malwarebytes regarding EdSharp. What
>>>> should one do about this problem?
>>>>
>>>> Malwarebytes' Anti-Malware
>>>> Malwarebytes' Anti-Malware has detected a malicious process
>>>> attempting to start and has blocked the execution attempt. Please
>>>> select an option below.
>>>> C:\PROGRAM FILES (X86)\EDSHARP\WEBCLIENT\INIFORM.EXE
>>>> (SPYWARE.BANKER)
>>>> Disable Protection Ignore Quarantine
>>>>
>>>> A-W
>>>>
>>>>
>>>> __________
>>>> View the list's information and change your settings at
>>>> //www.freelists.org/list/programmingblind
>>>>
>>>> __________
>>>> View the list's information and change your settings at
>>>> //www.freelists.org/list/programmingblind
>>>>
>>>>
>>
>
>
__________
View the list's information and change your settings at
//www.freelists.org/list/programmingblind
Other related posts:
