Avast Cyber Capture problem

Hi

Two days ago, i downloaded SecureMyBit.exe file and it got by avast CC because file was so new and rare

but i waited for 1-2 days to analyse and results doesn,t come back. so i executed SecureMyBit.exe and avast let it run and everything is good but the problem is

i redownloaded SecureMyBit and it got again by CC, so avast doesn,t analysed it.

1.Why result do not come back?
2.Why it take so long (more than 24 hours)?
3.Why file got blocked again?

Regards
Av-tester

Hello,
can you post here URL where did you downloaded the file from? If you have still the sample can you post it’s sha256 so we can track what happened with the file.

Thank you,
Milos

Avast Hardened Mode seems buggy And guess CyberCapture too seems buggy Or Cloud glitch, etc…

I have SecureMyBit with Hardened Mode (Aggressive). Not added to exclusion.
I have noticed that someday Hardened Mode blocks SecureMyBit & someday Hardened Mode doesn’t blocks SecureMyBit.

Ok

Website where i downloaded it https://securemybit.wordpress.com/

and sha256 is 102f11fa878b1999fbc3fe2381c2c353e9865d6fb7871e09601a7bd8cabcf64d

I hope you got fixed it

Regards
Av-tester

Thanks for the info. The sample never arrived to our servers. Did you agreed with sending the sample to our backends for analysis?

Milos

The file is blocked in my Local Pc because analysis never done

And i even yesterday send that file be email for avast

and what do you mean in agreed backends for analysis ?

I tested in VMware another Windows 10 64 bit and avast allowed to run it even in agressive mode was on(Same settings and same features were installed, and i updated Virus definition and Product updates so all was Ok)

Thanks for helping me

Hello,
thank you for the info. Is the sample still blocked on the local PC? It should be fixed now – sample was resolved as clean so in VMware avast sees it clean and allows it to run.

Milos

Ok, i check

Why i can,t add exe files to exclusion list, it doesn’t find any exe file in my dekstop. so i need to add whole desktop to exclusion .

and why Avast didn,t send file to Viruslab because you told that it has never seen by avast???

File is allowed to run in local pc but still why i can,t add exes to exclusion list

There are no files on your desktop, they are links to files.

Milos didn’t say it was never seen by avast.
He said that the sample didn’t arrived at the servers that handles files send to them by the CyberCapture feature.

Ok,any thoughts why Avast CC was not able to send file to avast server???

You can’t drill down to file level from that interface. Just set the exclusion at folder level, then open up the exclusions and change the * at the end of the exclusion for \FileName.exe

You can also copy the files location from explorer and copy and paste that into the add new exclusion.

Ok,thanks

You’re welcome.

Some time ago it used to be possible to drill down to file level on certain shields. I don’t know why that was removed, possibly when some of the shields offered adding to exclusions from that shield dialogue window.

Regarding allowing to send sample to our backend for analysis. If you see CyberCapture slider (CC0.PNG) then if you click on “more details” you will see something like on screenshot CC1.PNG where is checked “Upload file to …” should be checked by default.

Milos

Thanks for the image examples, not often that we users are likely to see that often.

http://screencast-o-matic.com/screenshots/u/Lh/1484319480176-99067.png

Hadn’t seen that either, I must get out more :wink:

It’s one of the slides from my current PowerPoint presentation. :slight_smile:

I got that option first time when i opened that exe, I did not clicked Ok button when CC activated but i hope it was sent to avast server now

Note that this was older version of SecureMyBit (1.4 version)

Regards
Av-tester

What would happen if the user clicked “X” rather than Ok?