Offending URL: download. macromedia. com /pub/flashplayer/current/uninstall_flash_player.exe (I spaced this out so nobody would accidentally click on it)
remote address: 96. 6.11.191
Now it says status pending No action required
So is this something that might be an issue/dangerous?
The actual file uninstall_flash_player.exe was acutially shown to be ok
Now one other thing, why did file for flash player not get checked by Download insight???
Offending URL: download. macromedia. com /pub/flashplayer/current/uninstall_flash_player.exe (I spaced this out so nobody would accidentally click on it)
remote address: 96. 6.11.191
Now it says status pending No action required
So is this something that might be an issue/dangerous?
The actual file uninstall_flash_player.exe was acutially shown to be ok
Now one other thing, why did file for flash player not get checked by Download insight???
This use to happen to any .exe downloads. Try downloading the .exe of your favorite files and you will see Norton reporting the URL as offending. I think this is due to the fact that downloading the exe is mistaken for the download of malware, which also use a similiar tatic to download .exes.
why did file for flash player not get checked by Download insight??
I downloaded this file as well, using Firefox, and I did get the Download Intelligence popup saying the file was safe. I'm not sure why your experience may have been different, although there have been some descrepancies with Download Insight that have been reported here. I am running NIS 2011 so perhaps it has something to do with the version, although more likely it was just a glitch,
The Flash Player installer and uninstaller files are ,exe files. You wouldn't download Flash10l.ocx separately. Auto-protect would take a look when Flash10l.ocx was written to disk.
SendOfJive already answered this. Insight does not scan every file coming into your machine. It scans executables. ocx files are considered to be a form of active x control and are components to be used by the executable file, which was checked. Auto-protect scans everything.
i've had this problem before. the in browser install app can set norton off. even give you a warning if it's too new of a file. you have nothing to worry about as long as you know you installed that app and not someone else, ie a website you've gone too did that in the background with out you knowing. if your really scared you can run the file in question by virustotal.
it's because of problems like this that I use the manual installer for adobe so I can scan it first to besafe, a bit of a pain but it doesn't upset norton.
I understand that most of these if they say no action required, but this one throws me
Went to malwarebytes.org to download a clean install of malwarebytes
it takes me to the cnet download site for malwarebytes
ok
but then my security history shows this
IPS Statistical submission
Offending url: software-files-l.cnet.com/s/software/11/65/78/91/mbamsetup1.50.0.0.exe then a bunch of numbers and letters
so is this safe to download malwarebytes from?
also when I get to the download site at cnet, there are so many things on the page, hard to see which is the mbam download
HI Calls,
This is perfectly normal and nothing to worry about. I don't see a lot of things on the CNET site. The MalwareBytes download button is on the upper left hand side and has MalwareBytes identified in the download button itself.
You should also see a Download Insight event which clearly states that the file is safe.
I agree with AllenM that there is no reason for concern.
I believe SendOfJive and others have explained this before. Undoubtedly what you are experiencing is the result of a new test signature. Please see this post by Reese Anschultz.
If it's any comfort, I updated Malwarebytes today and have a similar IPS Submission entry: