The bug/issue:
- What you did: install youtube downloader.
- What actually happened or you actually saw: anti-virus alert, thought it FP, so I Ignore ONCE
- What you expected to happen or see: when tried to rescan by right click it found nothing.
- How you tried to fix it & what happened: cant fix it.
- If its an application compatibility problem have you tried the application fixes here?: –
- Details & exact version of any application (execpt CIS) involved with download link: (http://youtubedownload.altervista.org/)
- Whether you can make the problem happen again, and if so exact steps to make it happen: –
- Any other information (eg your guess regarding the cause, with reasons): The second bug I found in the anti-virus while installing the newest version of YouTube downloader During the installation, anti-virus pop-up showed up says detected malware in applicationupdater.exe I thought maybe its FP so I chose to ignore ONCE, however when I went to the app folder to rescan this app by right-click it detect nothing, I took a look in the defence + “view active process list” and i found 2 files that are running since the installation of YTD: Searchsettings.exe and applicationupdater.exe and in the “Verdict” column it says “Trusted/installer” I chose to lookup online (right-click) and they both found as malware. CIS says “do u want to deleat them?” I chose yes however, they only removed from the memory but not from the hard-disk.
Files appended. (Please zip unless screenshots).
- Screenshots illustrating the bug: –
- Screenshots of related CIS event logs and the Defense+ Active Processes List: antivirusbug.
- A CIS config report or file. - attached
- Crash or freeze dump file: n/a
so we have 3 bugs here:
- Searchsettings.exe IS NOT found as a malware from the anti-virus DB.
- “Ignore ONCE” is not “once”, it’s permanent and it set apps as Trusted so the anti-virus wll not check it again.
- after the question “do u want to delete this file?” it remove it from the memory but not from the hard-drive.
- CIS version= 5.5, AV database version= 9705 & configuration used= proactive:
- a) Have you updated (without uninstall) from CIS 3 or 4: No
b) if so, have you tried a clean reinstall (without losing settings - if not please do)?: - a) Have you imported a config from a previous version of CIS: No
b) if so, have U tried a standard config (without losing settings - if not please do)?: - Have you made any other major changes to the default config? (eg ticked ‘block all unknown requests’, other egs here.): Heuristics lvl manual scanner: High, cloud scanner enabled.
- Defense+, Sandbox, Firewall & AV security levels: D+=safemode , Sandbox=on , Firewall =safemode , AV = stateful
- OS version, service pack, number of bits, UAC setting, & account type: win 7 64 bit sp0. UAC =off account: admin.
- Other security and utility software installed: None.
- Virtual machine used (Please do NOT use Virtual box): None.
[attachment deleted by admin]