INSIGHT SOFTWARE SOLUTIONS
OTHER AUTOMATION TOOLS
ABOUT US  

HOME

BUY NOW

DOWNLOAD

SUPPORT

FEATURES

LINKS

RESELLERS

SEARCH


  WHAT THEY'RE SAYING:
"Macro Express ... has to be the most powerful and attractive independent macro utility now available for the PC."
John O'Halloran,
At The Keyboard

  

 

 
McAfee VShield and Macro Express
The following is a detailed history (from newest to oldest) of our attempts to have this problem corrected:
   
January 17, 2003

Customer reports McAfee VShield is reporting BackDoor-DG Trojan with Scan Engine 4.1.40 and DAT file 4243 (1/15/03).

Reported to AVERT.

AVERT: I have examined the file in question and no virus was found. However, this false detection only occurs with very old, and unsupported, scan engine versions.

Solution -
Upgrade to the latest scan engine, version 4.1.60. http://www.mcafeeb2b.com/naicommon/download/dats/find.asp

In addition, we will modify the DAT files for the next DAT release to negate the false positive detection that some out-of-date users could experience.
   
August 23, 2002 McAfee DAT version 4219 released. VShield no longer reports a problem.
   
August 15, 2002

Reported to AVERT that DAT version 4.0.4218 did not correct the problem.

Response from McAfee AVERT: This was corrected in yesterday's 4218 DAT update.

Insight Software Solutions (ISS): [We] have several customers with the 4218 DAT that are still reporting the Backdoor-DG Trojan.

AVERT: If they are still receiving this detection, they have not updated their DAT files, and should be directed to technical support if they would like assistance with this process.

ISS: We downloaded the update ourselves and installed it. Just to be sure, we verified that the VShield program is reporting that the 4218 tables are being used.

At this time, the VShield program is still detecting the Backdoor.DG Trojan on the attached file. This is occurring no matter how many times I recompile the file.

AVERT: This file is not the original file that was sent on 8-5-02. The 4218 DAT addresses the issue with the file sent on 8-5, and next week's DAT update (4219) will address the issue with the file received today.

ISS: The latest file I sent you was actually compiled five days before the first file I sent you. Both versions of the file are raising the virus alerts.

[We're] sure you did something to fix this bug, but unfortunately [our] customers and [we] are still experiencing the problem with the 4218 DAT file.
   
August 14, 2002 McAfee DAT version 4.0.4218 released. It did not correct the problem.
   
August 7, 2002 Response from McAfee AVERT:

Our Senior Virus Research Engineers have examined the file in question and no virus was found. [A] correction will be included in the next DAT update.

McAfee AVERT
A division of McAfee, Inc.
   
August 5, 2002 Reported to AVERT again.
   
August 4, 2002 Customers report that work-around suggested by McAfee does not work.
  Reported to McAfee's Anti Virus Research division (AVERT).
  Response from McAfee AVERT:

MSLocate.exe does not appear to contain malicious code. Our automated system has performed an extensive analysis on the file(s) that you have submitted and found no evidence of malicious code. If you have additional evidence to suggest that a malicious program still resides in the file that was submitted to us, please contact Symantec Technical Support for assistance.

   
August 2, 2002 Reported to McAfee Technical support. Received possible work-around.
   
August 1, 2002 Macro Express 3 v 3.0e released.
  First report of possible virus
 

A search on McAfee's web site about a BackDoor-DG Trojan turns up this response:

Search Results: We found no records matching the following criteria: Virus name beginning with "BackDoor-DGTrojan".

   

Press Kit | Contact Us | Site Map | Trademarks | Privacy | What is RSS?
Copyright © 2008 Insight Software Solutions, Inc. All rights reserved.
Insight Software Solutions, Inc. Home Page Insight Software Solutions, Inc. Home Page