Win32/Wapomi.E detected in Manual definitions.

[Element7]

I downloaded the manual virus definitions from here https://www.superantispyware.com/supportfaqdisplay.html?faq=89 but when I tried to install them my AVG came up and said that it detected a win32/Wapomi.E virus.

Is this a false positive?

[Bubbajoe]

Same here, started yesterday morning when I did my first update of the day.  So something happened between 6:00 p.m CST on 22 Mar and 8:00 a.m CST 23 Mar.

 

Wonder how long it will take SAS tech support to fix this?  Gonna be embarrassing if their code got infected...

[GuiltySpark]

Are you both using AVG ?

[Element7]

I use AVG but I don't know about Bubbajoe.

[Bubbajoe]

Norton.

 

But virustotal gives 36/46 postive detection:  https://www.virustotal.com/en/file/75dda91ab6845b32472b988224cea5cbd6ad9f3d264b9485a0ddceea9632535a/analysis/1364133052/

 

and a fellow tech is getting positive from Bitdefender as well.

 

Someone really screwed up....

[GuiltySpark]

Is being flagged in others too, will pass this on to Admin.

[Bubbajoe]

Knowing support.com (aka lackofsupport.com), we're SOL until  Monday.  This isn't the first time they posted an update without even bothering to check it.

[Bubbajoe]

The really sad part is that according to my Norton log file, both yesterday and today's updates were/are both infected....It started with the early A.M. updated on Saturday morning and carried over into this morning's update....

[miguelgrado]

avast idem

[Bubbajoe]

So, appears it's been fixed.  Wonder if support.com will provide an explanation??  Bueller?  Bueller?

[SAS Customer Service]

This issue is being looked into by our engineers, we've suspended new releases while the investigation occurs.

[Bubbajoe]

So you have continued with new releases.  What was the issue?

[Element7]

I downloaded the manual SASDEFINITIONS.EXE file again, updated my AVG and then launched the definitions and this time it worked without AVG detecting something. What was wrong? Was the file really infected before?

[Bubbajoe]

Bueller?

[SAS Customer Service]

That investigation is still ongoing, however the team has determined that there are no issues with the release of new updates and you should be having no problems updating manually.

[Bubbajoe]

No problems now, but since I purchased licenses in bulk for resale, I just want some assurances that this won't happen again...Looking forward to your report.

[Bubbajoe]

Investigation results?

[Bubbajoe]

Bueller?

[BobGCrabtree]

Have to say this incident - and downloads for me were infected from 24-26 March - has caused me to lose close to all faith in SAS.

 

And the situation has not be help by the very slow response initially and then the lack of information thereafter.

 

Infections in the downloads were detected by Kaspersky Internet Security Suite 2012/2013 and by MalwareBytes.

 

Wondering now why I paid out for the license for the Technician Edition and whether or not I should demand a refund.

 

Bob C

[Bubbajoe]

2 weeks and no reply?  Must be one hell of an investigation....

[BobGCrabtree]

Three weeks gone - and now approaching a month - and still nothing. Hmmm.

[Bubbajoe]

Over 5 weeks now and no answer?

 

Michael G??

[Bubbajoe]

LOL, another week and still no reply from SAS...  I think that pretty much indicates it was an embarrassing human error.

[Bubbajoe]

7 weeks now.  gonna keep bumping this thread still someone from SAS replies.

[GuiltySpark]

I have no info for you and have not heard from the team so I cannot answer.