Results 1 to 11 of 11
  1. #1
    Silver Lounger lumpy95's Avatar
    Join Date
    Feb 2013
    Location
    Mojave Desert CA
    Posts
    1,843
    Thanks
    258
    Thanked 175 Times in 148 Posts

    Malwarebytes stumbles with false positive on KB 3197868, the Win7 November Monthly Rollup

    Posted on Woody's site.
    https://www.askwoody.com/2016/malwar...onthly-rollup/

    Symptoms of the kernel32.dll false positive include locked up systems, and machines that take five minutes or more to shut down.

  2. #2
    Super Moderator satrow's Avatar
    Join Date
    Dec 2009
    Location
    Cardiff, UK
    Posts
    4,491
    Thanks
    284
    Thanked 577 Times in 480 Posts
    This false positive was caused by Microsoft not digitally signing over 500 files included in “November, 2016 Security Monthly Quality Rollup for Windows 7 and Windows Server 2008 R2 for x64-based Systems (KB3197868)”.
    So 3rd party security software has to take the rap for MS failing to make a simple safeguard like signing their updated files before they're pushed out?

  3. #3
    Silver Lounger lumpy95's Avatar
    Join Date
    Feb 2013
    Location
    Mojave Desert CA
    Posts
    1,843
    Thanks
    258
    Thanked 175 Times in 148 Posts
    Quote Originally Posted by satrow View Post
    So 3rd party security software has to take the rap for MS failing to make a simple safeguard like signing their updated files before they're pushed out?
    That's what it sounds like to me.

  4. #4
    Super Moderator jwitalka's Avatar
    Join Date
    Dec 2009
    Location
    Minnesota
    Posts
    6,794
    Thanks
    117
    Thanked 799 Times in 720 Posts
    From Woody's article:
    This detection has been fixed as of database version v2016.11.16.11.
    I see some debate online about who’s at fault for the false positive – some blame Malwarebytes, others blame Microsoft. Given the details posted in the comments by abbodi, I think it’s fair to say that neither side committed any grave error. I’m surprised at the way Malwarebytes Anti-Malware reacted to a false positive, but as for the detection there’s plenty of reason to blame (or exonerate!) either side.
    Jerry

  5. #5
    Silver Lounger lumpy95's Avatar
    Join Date
    Feb 2013
    Location
    Mojave Desert CA
    Posts
    1,843
    Thanks
    258
    Thanked 175 Times in 148 Posts
    From my point of view, the problem wouldn't have existed without MS pushing out the unsigned files.

  6. #6
    Super Moderator jwitalka's Avatar
    Join Date
    Dec 2009
    Location
    Minnesota
    Posts
    6,794
    Thanks
    117
    Thanked 799 Times in 720 Posts
    Bottom line is its not an issue any more.

    Jerry

  7. #7
    New Lounger
    Join Date
    Dec 2009
    Location
    Philadelphia, PA, USA
    Posts
    3
    Thanks
    0
    Thanked 0 Times in 0 Posts
    Yesterday, 11/22/16, I had kb3197868 waiting to be installed. Today it is gone from my Windows Update list. It has not been installed. Has MS withdrawn it? Does anyone know what's going on?

  8. #8
    Silver Lounger lumpy95's Avatar
    Join Date
    Feb 2013
    Location
    Mojave Desert CA
    Posts
    1,843
    Thanks
    258
    Thanked 175 Times in 148 Posts
    I googled it and it looks like it is available. https://support.microsoft.com/en-us/kb/3197868

  9. #9
    Silver Lounger lumpy95's Avatar
    Join Date
    Feb 2013
    Location
    Mojave Desert CA
    Posts
    1,843
    Thanks
    258
    Thanked 175 Times in 148 Posts
    Quote Originally Posted by grinlap View Post
    Yesterday, 11/22/16, I had kb3197868 waiting to be installed. Today it is gone from my Windows Update list. It has not been installed. Has MS withdrawn it? Does anyone know what's going on?
    Evidently it was pulled by MS as posted on Woody's site https://www.askwoody.com/2016/micros...-malwarebytes/

  10. #10
    New Lounger
    Join Date
    Dec 2009
    Location
    Philadelphia, PA, USA
    Posts
    3
    Thanks
    0
    Thanked 0 Times in 0 Posts
    Kb3197868 returned to my update list this morning, 11/24/16, dated 11/23/16 so it looks like MS has fixed it and reissued it. I installed it with no issues. I think we're in for a bumpy ride with these new rollups.

  11. #11
    Silver Lounger lumpy95's Avatar
    Join Date
    Feb 2013
    Location
    Mojave Desert CA
    Posts
    1,843
    Thanks
    258
    Thanked 175 Times in 148 Posts
    I think we're in for a bumpy ride with these new rollups.
    I think that's already proving to be true.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •