Firetrust Support Forums

My computer protection program is blocking something from Caphyon LTD as a part of updater.exe. The information points to Mailwasher.

Is this something that I should unblock?

Thanks.

cfheinz wrote:My computer protection program is blocking something from Caphyon LTD as a part of updater.exe. The information points to Mailwasher.

Is this something that I should unblock?

Thanks.

Yes, it is the program that MWP uses to check for a new official version release. It runs once per day. It does not find Beta versions.

Thanks.

My viruschecker (AVG Identity Protection) tells me that updater.exe is a threatand wants me to place it in quarantine. what can or shall I do with it?

Thanks for your answer, Thieu

You may safely allow it (do not quarantine) - it's not a threat.

what can or shall I do with it?

Since malicious code can disguise itself with legitimate file names, I recommend checking it with a supplemental scanner like Malwarebytes's Anti-Malware (MBAM) or SUPERAntiSpyware. Then if okay, allow it.

And if your anti-malware solution continues to report these "false positives" (as AVG has a history of doing) you might consider a different anti-malware solution, such as Microsoft Security Essentials (MSE).

Thieu wrote:My viruschecker (AVG Identity Protection) tells me that updater.exe is a threatand wants me to place it in quarantine. what can or shall I do with it?

Thanks for your answer, Thieu

Gewoon... "bestand laten zoals het nu is" kiezen...

Sorry folks... answering a fellow Dutchman in English is a bit too weird.. even to me!

racker wrote: Gewoon... "bestand laten zoals het nu is" kiezen...

Oh, I'd thought you'd gotten a cat that liked to walk on the keyboard. :-)

The simple, comprehensive & swift way to find out whether any file is infected is to multi-scan it at VirusTotal. If a file being flagged as a threat, receives a clean chit at VirusTotal - it's time to change one's security system. BTW, the AVG Identity Protection is based on the failed ZoneAlarm Identity Theft model.

@Racker: Dank voor je post, zal het terugzetten :-)

@All others: Thanks for your replies, case closed!

Regards, Thieu

stan_qaz wrote:

racker wrote: Gewoon... "bestand laten zoals het nu is" kiezen...

Oh, I'd thought you'd gotten a cat that liked to walk on the keyboard. :-)

Though some folks think Dutch to be a speech impediment rather than a language, I do admit it does take at least some intelligence to appreciate our fair speach...

I've been using Firetrust Mailwasher for years and my security software has never taken exception to any part of it's normal routines before. Why does it suddenly think that this piece of Third Party authored software presents a possible danger?

MikeB100 wrote:I've been using Firetrust Mailwasher for years and my security software has never taken exception to any part of it's normal routines before. Why does it suddenly think that this piece of Third Party authored software presents a possible danger?

Most likely it was one of the updates to your security software increasing their awareness as to what is going on. Updater.exe accesses the web to check for a new update/version of the MWP software.

I've been using Firetrust Mailwasher for years and my security software has never taken exception to any part of it's normal routines before. Why does it suddenly think that this piece of Third Party authored software presents a possible danger?

There is no fool-proof security program. They all make mistakes and we can only hope they err on the side of caution with false positives rather than err by letting malicious code get by. This is why you should never rely on a single piece (or single suite) of security software. I use Microsoft Security Essentials (MSE) as my primary real-time anti-malware solution, but I also use MBAM for manual, supplemental scanning as a double check.

So if you regular scanner reports a problem, scan it with your supplemental scanner. And of course do what you did too - ask questions!

For the record, what security program tagged MW?

MikeB100 wrote:I've been using Firetrust Mailwasher for years and my security software has never taken exception to any part of it's normal routines before. >>---->

You should be concerned about your security software:-

• If you're referring to a firewall and have never ever received at least one prompt throughout these years about the 'Updater.exe' attempting to connect to the internet and/or
• If you're referring to a HIPS program and have never ever received at least one prompt throughout these years about 'Updater.exe' being triggered or triggering something.

You should be concerned about the MWP 'Updater.exe':-

• If you're referring to an anti-virus/anti-spyware program