HMP.Database.Wizard.exe generating Malware Alerts.

Go to previous topic

Go to next topic

Last Post 10/25/2011 10:59 PM by Rod Weir

1 Replies

Author

Messages

Helpdesker
Posts:5
Points:11

10/24/2011 8:49 PM
Hi Guys, We recently replaced our antivirus system with Microsoft Forefront 2010. Since then we have had about 10 instances of Malware Alerts related to the HMP.Database.Wizard.exe. Below is a sample of one of these alerts. I wanted to check with PRD to make sure that there isn't any issues that you are awre of with this executable and to make sure that was a false positive before I put in an exception for it. Also note that while this example lists version 9.1.5.212 of helpmaster the majority of our alerts have been generated with our current version which is 11.0.1.180 About the malware. http://www.microsoft.com/...n32%2fSafeEHHeur.gen Malware name: Virus:Win32/SafeEHHeur.gen Process name: Unknown Path found: containerfile:_E:\HMPSuiteSetup_9.1.5.212.MSI;file:_E:\HMPSuiteSetup_9.1.5.212.MSI->setup.cab->HMP.Database.Wizard.exe Action taken: QuarantineAction successful: Yes

Rod Weir
HelpMaster development team

Helpdesk Hall of Fame
Posts:555
Points:1017

10/25/2011 10:59 PM
Hi Jesse, Thanks for reporting this. This is the first we've heard of this, but we'll take it up with Microsoft and figure it out. This is a false-positive reading by their anti-virus. Best regards, Rod HelpMaster development team Check out the HelpMaster roadmap