Slashdot Mirror

← Back to Stories (view on slashdot.org)

Microsoft Security Products Flag Google Chrome As a Virus

Posted by Soulskill on from the if-it-quacks-like-a-horse dept.

New submitter maeltor writes "Reports poured in this morning that Microsoft's security products, namely Microsoft Security Essentials and Forefront Client Security, were flagging Google Chrome as a virus (PWS:Win32/Zbot) and removing the browser if users chose to clean and reboot their machines. Users reported that the only way to mitigate the problem was to set MSE and Forefront to 'always allow' Zbot, which is generally considered to be a bad idea." A Google employee in the above support thread notes that Microsoft has now pushed another update to resolve the issue. "On September 30th, 2011, an incorrect detection for PWS:Win32/Zbot was identified. On September 30th, 2011, Microsoft released an update that addresses the issue. Signature versions 1.113.672.0 and higher include this update."

35 of 258 comments (clear)

  1. A joke... by Frosty+Piss · · Score: 5, Funny

    Microsoft Security Products Flag Google Chrome As a Virus

    For once, Microsoft get's it right!

    --
    If you want news from today, you have to come back tomorrow.
    1. Re:A joke... by Anonymous+Brave+Guy · · Score: 4, Insightful

      I realise you were going for humour, but Google does a lot of very shady things involving auto-updates and integrating with unnecessary parts of a system. Why does my Firefox installation need a Google Update plug-in I never asked for, and why does it keep getting reactivated even though I've explicitly turned it off?

      The reaction might not have been deliberate on this occasion, but I am utterly lacking in sympathy if Google's shady code starts getting treated like malware. If it walks like a duck and quacks like a duck, it's still a duck, even though sometimes it can taste good.

      --
      If you disagree, post your argument. (-1, Overrated) isn't your personal censorship tool for views you don't like.
    2. Re:A joke... by hairyfeet · · Score: 2

      Because the Chrome on their test box probably isn't up to date? Chrome X might pass just fine but Chrome Y not. Anybody who has worked corporate knows what a PITA it is to keep everything updated and with test beds you sure don't want the machine you are testing various scenarios and possible fuckups on to be loose on the network without safeguards.

      So I bet the version of Chrome on their testbed passes muster but some new feature or tweak on the latter versions throws the fp. It happens.

      --
      ACs don't waste your time replying, your posts are never seen by me.
  2. Microsoft to Google... by killmenow · · Score: 4, Insightful

    "Oh, Woops! How did that happen?! So sorry about that Google. Totally a mistake. Totally. Our bad, really."

    Meanwhile some clueless user just switched back to IE.

    1. Re:Microsoft to Google... by Chemicles · · Score: 5, Insightful

      Right. If some bug had been discovered in some open source software and was corrected in 2 hours, the comments on the story would be a circlejerk praising the open source community.

      Microsoft realizes there's a bug, corrects it within 2 hours, and it's anti-competetive. Sheesh. They did a good job with a quick fix, can't we just acknowledge success when it happens?

    2. Re:Microsoft to Google... by poofmeisterp · · Score: 2

      "Oh, Woops! How did that happen?! So sorry about that Google. Totally a mistake. Totally. Our bad, really."

      Meanwhile some clueless user just switched back to IE.

      I'm sorry but I have to...

      "In business news today, Google has filed a lawsuit asking for $150,000,000 in damages from Microsoft for taking one Google Chrome Internet browser user from them. This is related to the 'false positive' report by a Microsoft product that the Google browser was a virus or piece of 'malware'. Google is seeking damages for the one lost user, plus total long-term net loss based on loss of referrals and recommendations, combined with the establishment of case law to help businesses bring in more money from the loss of business than the actual performance of it now and in the future."

      /humor

    3. Re:Microsoft to Google... by Nyder · · Score: 2

      Right. If some bug had been discovered in some open source software and was corrected in 2 hours, the comments on the story would be a circlejerk praising the open source community.

      Microsoft realizes there's a bug, corrects it within 2 hours, and it's anti-competetive. Sheesh. They did a good job with a quick fix, can't we just acknowledge success when it happens?

      You must be new here.

      --
      Be seeing you...
  3. Virus scanner flags something that is not a virus! by nedlohs · · Score: 2

    This has never happened in all of computing history.

  4. Whoops! by Anonymous Coward · · Score: 4, Informative

    It looks like they responded within 2 hours - not bad!
    Google support ticket with issue and resolution at the top: http://www.google.com/support/forum/p/Chrome/thread?tid=42d6ba02d7eed070&hl=en
    I wonder what Chrome did that smelled like Win32/Zbot.

    1. Re:Whoops! by Anonymous Coward · · Score: 2, Interesting

      Good point. Makes you wonder what Chrome might be doing or tracking behind the scenes. Something must have triggered the virus scanner and normal program behaviour just does not do that. Just sayin'.

    2. Re:Whoops! by killmenow · · Score: 5, Funny

      I wonder what Chrome did that smelled like Win32/Zbot.

      Made IE look stupid and fat.

    3. Re:Whoops! by Anonymous Coward · · Score: 2, Insightful

      They've got V8 generating code at runtime, Nacl sandbox using segment registers, installer doing address relocation after decompressing (probably using custom x86-specific compression algo like Snappy), an always-running update checker, etc. It's no wonder they'd get randomly marked as a virus.

    4. Re:Whoops! by Mashiki · · Score: 3, Interesting

      Well Zbot has a lot of really broad things that you're looking for in terms of detection. So to have something legitimate being nailed wouldn't surprise me, it actually surprises me that other browsers haven't been nailed yet because they do the same things that, that includes IE, Opera and a variety of webkit based ones.

      --
      Om, nomnomnom...
    5. Re:Whoops! by PCM2 · · Score: 2

      Uh, no. UAC is useless. It just asks you "proceed or don't?"

      It doesn't tell you what's asking for your permission or what it's asking for permission to do.

      So kind of like sudo, then. Or the "give me the admin password" dialog boxes on Ubuntu.

      --
      Breakfast served all day!
    6. Re:Whoops! by vux984 · · Score: 2

      First off, with sudo, you're explicitly saying "give me super user privileges" - it's not the OS doing it for no defined reason.

      Right, sudo is like selecting "run as administrator", which is for a defined reason.

      Secondly, in Ubuntu, you only run across that dialog when updating or installing software,

      Or altering certain settings.... or hardware related...


        and it's always in response to explicitly clicking on a button

      No its not. It can pop up resulting from a scheduled script, or triggered by other events.

      the dialog box provides a clear reason WHY you need your password.

      In my experience its no more clear than the reasons UAC gives.

      In both cases that's NOTHING like UAC.

      Sure if by "nothing like" one means "exactly like".

  5. It is a virus by Anonymous Coward · · Score: 5, Insightful

    Chrome is a virus. You see, it has caused the marketing people at Mozilla to go crazy with the numbering scheme of FF and as a result, borked up my once good to use user interface into a complete mess of new design, misplaced buttons, screwy single menus and a whole host of unusable extensions. Chrome is a virus... that has killed Firefox.

  6. Re:Holy crap! by bloodhawk · · Score: 4, Informative

    It is as good as most of the competitors products, plus its free and doesn't bog down the system or constantly nag you with useless information.

  7. Re:Holy crap! by maxume · · Score: 2

    It is probably the best free antivirus.

    --
    Nerd rage is the funniest rage.
  8. Well, it includes a virus... by gstrickler · · Score: 2, Insightful

    ...known as Adobe Flash.

    --
    make imaginary.friends COUNT=100 VISIBLE=false
  9. Re:Virus scanner flags something that is not a vir by roc97007 · · Score: 4, Insightful

    Right. Let's face it, Microsoft would have done this on purpose if they had thought of it and thought they could get away with it, but chances are, this was an honest mistake. Test by: the regular (but hopefully infrequent) false positives you get from any antivirus product. Also test by: the speed at which M$ corrected it. Probably nothing to see here.

    --
    Oliver's law of assumed responsibility: If you're seen fixing it, you will be blamed for breaking it.
  10. Shoe's on the other foot by Cro+Magnon · · Score: 4, Funny

    After all the times AV products have flagged Windows system files!

    --
    Slow down, cowboy! It has been 4 hours since you last posted. You must wait another few hours.
  11. Re:Holy crap! by spiffmastercow · · Score: 3, Insightful

    Actually, it works quite a bit better. And since it isn't an income source, it doesn't nag you constantly.

  12. Re:Holy crap! by grimmjeeper · · Score: 3, Insightful

    I'm betting you meant to suggest that the state of security software is pretty wretched these days rather than heap praise on MSSE. Am I right?

  13. Not really that bad. by JustAnotherIdiot · · Score: 4, Insightful

    It's not as bad as McAfee's "Oh hey, that important system file, you're not using it right? *delete*"
    One of my friends was at work for nearly 2 weeks straight after that fiasco.

    --
    What do I know, I'm just an idiot, right?
  14. Latest in anti-competitive practices by MS. by idbeholda · · Score: 2

    The real reason Microsoft is flagging Chrome as a virus. Since Chrome appears to be a legitimate threat to IE (unlike FF), if enough users believe that Chrome *IS* a virus, perhaps IE will reign undisputed King Of The Browsers.

  15. Re:Cue spooky conspiracy music by Anonymous Coward · · Score: 2, Insightful

    The difference is: Microsoft has a reputation as a strongly anti-competitive company.

  16. Re:MSE by Dunega · · Score: 3, Insightful

    Never had a single false positive with it. Odds are your's aren't. Beat it trollboy.

  17. Not the first thing IE has done. by Oswald+McWeany · · Score: 2

    Patches to IE9 break g-mail's formatting.

    --
    "That's the way to do it" - Punch
  18. Re:Holy crap! by spiffmastercow · · Score: 2

    Actually, it works quite a bit better. And since it isn't an income source, it doesn't nag you constantly.

    See that's what I love about Linux. I never see a nag screen. I also have a real package manager too, so I don't have an icon tray full of little annoying pop-ups telling me that such-and-such has an update and that i really need to separately update each individual program one at a time... If you like putting up with that go ahead. I prefer knowing I can i.e. edit a document without being distracted, advertised to, nagged, reminded of things that should be automated, etc.

    Looks like we're under a smug alert.. I always find it interesting when Linux fanboys assume that because someone uses Windows, it means they only use Windows.

    Looks like we're under a defensive dumbass alert... I always find it interesting when thoughtless persons assume that because someone uses multiple operating systems, it makes your comments about a particular one of those operating systems somehow less true. What I said about Windows applies to you when you are using Windows. This doesn't change just because you aren't always using Windows. Logic fail. You might as well say that because swans are birds, therefore all birds must be swans. But please keep accusing me of smugness because I don't like Windows, you seem so competent to assess this.

    Looks like we're under a myopic moron alert. I always find it interesting when someone can't see any circumstance where someone would use a piece of software other than his preferred piece of software. What I said about the Security Essentials is true when I'm using Windows. What's also true when I'm using windows is that I'm a.) able to play games without spending 2 days looking for workarounds to get the game to run 5 minutes in Wine before it crashes, and b.) able to make money writing windows apps. That, combined with the fact that I don't have to put up with the nagging and such because I use SE, don't install malware, etc. makes for a fine case for using Windows when it suits my needs.

  19. It's a joke, son! A joke, I say! by killmenow · · Score: 2, Insightful

    The righteous indignation is strong with this one. The way I figure it, upon confronting humor, you have three options: (a) laughing because you think it's funny; (b) not laughing because it's not funny to you; and, (42) taking it seriously, getting offended, lecturing the jokester and proving yourself humorless.

    I applaud your choice, good sir! 42 is always the right answer.

  20. Re:A History of "Accidental" Flaggings by Anonymous Coward · · Score: 2, Interesting

    Find me a virus scanner that has not once ever come up with a false positive. I bet you can't do it. Please think before jumping to dumb tin foil hattery.

  21. Re:Virus scanner flags something that is not a vir by arth1 · · Score: 2

    What's a five-letter word that begins with an 'H' and ends with an 'R', has a 'U' in the middle

    egrep -i '^H.U.R$' /usr/share/dict/*
    surnames:Hauer

    What do I win?

  22. Google's fix by countertrolling · · Score: 3, Funny

    Disguise it as an FBI key logger

    --
    For justice, we must go to Don Corleone
  23. Well, that's one way.. by TrueSpeed · · Score: 2

    to eliminate competition in the browser space.

  24. Re:Grrr..... by ColdWetDog · · Score: 2

    Wasted a good portion of the morning hunting down a non-existent threat.

    Instead of hanging out at Slashdot? Shame on you.

    --
    Faster! Faster! Faster would be better!