Two days ago, i downloaded SecureMyBit.exe file and it got by avast CC because file was so new and rare
but i waited for 1-2 days to analyse and results doesn,t come back. so i executed SecureMyBit.exe and avast let it run and everything is good but the problem is
i redownloaded SecureMyBit and it got again by CC, so avast doesn,t analysed it.
1.Why result do not come back?
2.Why it take so long (more than 24 hours)?
3.Why file got blocked again?
Hello,
can you post here URL where did you downloaded the file from? If you have still the sample can you post it’s sha256 so we can track what happened with the file.
Avast Hardened Mode seems buggy And guess CyberCapture too seems buggy Or Cloud glitch, etc…
I have SecureMyBit with Hardened Mode (Aggressive). Not added to exclusion.
I have noticed that someday Hardened Mode blocks SecureMyBit & someday Hardened Mode doesn’t blocks SecureMyBit.
The file is blocked in my Local Pc because analysis never done
And i even yesterday send that file be email for avast
and what do you mean in agreed backends for analysis ?
I tested in VMware another Windows 10 64 bit and avast allowed to run it even in agressive mode was on(Same settings and same features were installed, and i updated Virus definition and Product updates so all was Ok)
Hello,
thank you for the info. Is the sample still blocked on the local PC? It should be fixed now – sample was resolved as clean so in VMware avast sees it clean and allows it to run.
There are no files on your desktop, they are links to files.
Milos didn’t say it was never seen by avast.
He said that the sample didn’t arrived at the servers that handles files send to them by the CyberCapture feature.
You can’t drill down to file level from that interface. Just set the exclusion at folder level, then open up the exclusions and change the * at the end of the exclusion for \FileName.exe
You can also copy the files location from explorer and copy and paste that into the add new exclusion.
Some time ago it used to be possible to drill down to file level on certain shields. I don’t know why that was removed, possibly when some of the shields offered adding to exclusions from that shield dialogue window.
Regarding allowing to send sample to our backend for analysis. If you see CyberCapture slider (CC0.PNG) then if you click on “more details” you will see something like on screenshot CC1.PNG where is checked “Upload file to …” should be checked by default.