My own created exe.exe reported as a trojan

[mp]

Exe.exe is known to be a trojan (Fearless Web Downloader).
However, MS AntiSpyware does detect the exe.exe which i
created MYSELF years ago (with VBDOS) as the trojan. My
exe.exe has nothing to do with a trojan.

Surely MS AntiSpyware may not judge files by it's name
only. But it clearly seems that it does!
How can this be?? That is just plain stupid.

These Fearless Web Downloader trojan files were NOT on my
system:
editor.exe
generator v2.0 .exe
server.exe
systemroot+\exe.exe
webdl.exe
However, MS AntiSpyware still recommends deleting my own
exe.exe and even says it has a high threat level. It's
just ridiculous.

 

[Bill Sanderson]

This is the right place to report this--indeed, a number of detections of
this sort seem....stupid!

 

[Steve Dodson [MSFT]]

Agreed that in a perfect world, we would never use a name to classify a
piece of spyware, but the alternative is to use file hashes which are system
intensive. I think we will have a better way of doing this in the future,
but since you know the exe is harmless, go ahead and ignore that threat.

--
-steve

Steve Dodson [MSFT]
MCSE, CISSP
PSS Security

--

This posting is provided "AS IS" with no warranties, and confers no rights.
Use of included script samples are subject to the terms specified at
http://www.microsoft.com/info/cpyright.htm

Note: For the benefit of the community-at-large, all responses to this
message are best directed to the newsgroup/thread from which they
originated.

 

[Bill Sanderson]

I was hoping there was some simple switch in the detection routine which
could require that more than one file related to a given threat was found.
I'm sure the team looking at this has thought of that one, though--so I'll
try to stick to reporting, and not characterize the program's operations!
: )