6:54:46 AM,Hacktool,Cleaned by deletion,HeapMemView.exe,File,C:\Program Files\NirSoft\,Deleted,Deleted,Clean security risk,Quarantine,Auto-Protect scan,The file was deleted successfully.
6:54:46 AM,Trojan Horse,Quarantined,LSASecretsDump.exe,File,C:\Program Files\NirSoft\,Infected,Quarantine,Clean security risk,Quarantine,Auto-Protect scan,The file was quarantined successfully.
6:54:50 AM,ProduKey,Access Denied,ProduKey.exe,Other,C:\Program Files\NirSoft\,Infected,C:\Program Files\NirSoft\,Quarantine,Leave alone (log only),Auto-Protect scan, 6:54:48 AM,DialupPwd,Access Denied,dialupass2.exe,Other,C:\Program Files\NirSoft\,Infected,C:\Program Files\NirSoft\,Quarantine,Leave alone (log only),Auto-Protect scan, 6:54:47 AM,Hacktool,Cleaned by deletion,rdpv.exe,File,C:\Program Files\NirSoft\,Deleted,Deleted,Clean security risk,Quarantine,Auto-Protect scan,The file was deleted successfully. Symantec Enpoint Protection 11 detects some of your utils as threats: ï»❽ate and Time,Risk,Action,Filename,Risk Type,Original Location,Computer,User,Status,Current Location,Primary Action,Secondary Action,Logged By,Action Description 7:07:07 AM,Trojan Horse,Quarantined,LSASecretsDump.exe,File,C:\Program Files\NirSoft\,Infected,Quarantine,Clean security risk,Quarantine,Auto-Protect scan,The file was quarantined successfully. I just tried to use NirCmd at work and got a Sophos alert that it was adware :-( Octo8:00 AM xylog said.
#HTML FRAMER AVG FALSE POSITIVE SOFTWARE#
Most AV software I've used detects some of your software in this general manner, including the one I'm using now, Avira AntiVir Premium. Maybe it would help to imagine the case where a parent wanted to help prevent their child from using a utility to kill security or parental-control processes. Other utilities such as NirCmd are detected because it can be used to kill processes. Hence they are forensic tools and should be detected. They're thinking some of the utilities can be used to reveal passwords or cache items, and so on. I can tell you what is going on in the minds of the AVG guys when they add your software as "spyware". Many thanks (" ) Octo4:57 PM Irreligious said. Perhaps it was already in the planning? I've blogged about it on my Opera blog here, and I shall do like wise at the Opera community forums, if I've not already been beaten me to it. I wrote asking if such a untility was possible but never expected to see it so soon. But I really came to say a big THANK YOU Nir for OperaCacheView. Never troubles me over legitimate software such as yours. Most people that get this kind of error, think that there is a bug in my software, and don't know that the Antivirus is the one that cause the problem.Īvast anti virus (the Home version is free), makes far fewer false positives in my view. You may not have the appropriate permission to access the item". "Windows cannot access the specified device, path, or file. This mean that if you try to run one of my tools that are detected as Spyware/Virus while AVG application is not running, you'll get the following error message: When you exit from the Antivirus software, it won't display any Virus/Trojan/Spyware warning, but the service of the Antivirus is still running in the background, and prohibits you from running any file that is detected as infected. So here's the AVG "False Positive" list, the Spyware section:Ĭ:\Utils\netpass_setup.exe:\ziz1384.tmp:\netpass.exeĬ:\Utils\sniffpass_setup.exe:\SniffPass.exeĬ:\Utils\sniffpass_setup.exe:\ziz1384.tmp:\SniffPass.exeĬ:\Utils\vncpassview.zip:\VNCPassView.exeĬ:\Utils\lsasecretsdump.zip:\LSASecretsDump.exeĪnd finally, here's another issue with AVG and other Antivirus software: Luckily, SysExporter is not detected as infection by AVG, otherwise, it wouldn't allow me to run and use it. I really would want to understand what is going in the minds of AVG guys when they decided to detect my software as Spyware.Īnyway, I used my own SysExporter utility to grab the scan result from AVG and display it as HTML. Most of the alerts on my utilities folder appeared under the 'Spyware' section. So I decided to check the current status of AVG false positives, by scanning the utilities folder of my site.įirst, I copied the utils folder of my site into a new place (I don't really want that AVG will touch my original site folder.), and then I allowed AVG Antivirus to scan the folder.Īfter AVG finished the scan, it splited the scan result into 2 categories: Infections and Spyware. Messages like "You have a Virus in your software" are received into my Inbox on daily basis, and a lots of them comes from AVG Antivirus.
0 kommentar(er)
