Just a few minutes ago, Microsoft Defender popped up and said that the installer for Safer-Networking's BrowsAlyzer contained a trojan. This installer has been present on a removable drive for several months without any issue. Has anyone else observed this? Is this another false positive on the part of Defender?
There are quite a few companies seem to be flagging it at the moment I just downloaded it to check it with virus total and others sites. Norton Web Safe flagged the safer networking page of the download on Osprey Browser Protection
Thank you for the link. 15 of 71 report malicious, so it seems to be a bit of a tossup and, like I said, I've had it, and occasionally used it, for several months without a hiccup. Just caught me a bit by surprise.
It may be to do with NirSoft which is often flagged as you know Shown under Features https://www.safer-networking.org/products/browsalyzer/
Yeah, I still don't get why Nir Sofer's stuff is flagged the way it is. Been around for a while, good reputation, handy software.
any kind of such software acts like a trojan because it can read very sensible data. from the vendors of spybot? sure... -> "NirSoft Browser Data Viewers" BA might show fast results. but without a context such data is worth nothing. Code: unins000.dat legacy.dll libcrypto-1_1.dll libcrypto-3.dll libeay32.dll libssl-1_1.dll libssl-3.dll lz4_2.dll sqlite3.dll ssleay32.dll BrowsAlyzer3.exe unins000.exe unins000.msg Default Searches\Illegal marketplaces.hostnames Default Searches\Crypto Currencies.lst Default Searches\Dark Net.lst Default Searches\Online Banking.lst Default Searches\Security Software.lst Default Searches\Steven Black\Adware & Malware.hostnames Default Searches\Steven Black\Fake News.hostnames Default Searches\Steven Black\Gambling.hostnames Default Searches\Steven Black\Porn.hostnames Default Searches\Steven Black\Social.hostnames Default Searches\Web Searches\Map Searches.lst Default Searches\Web Searches\Web Searches.lst Default Searches\Web Searches\Map Search Terms.regex Default Searches\Web Searches\Porn Search Terms.regex Default Searches\Web Searches\Web Search Terms.regex Includes\Browserpages.sbs Includes\ChromeBrowsers.sbs ;nirsoft Integrations\ChromeCacheView.chm Integrations\MozillaHistoryView.chm Integrations\MZCacheView.chm Integrations\mzcv.chm Integrations\ChromeCacheView.exe Integrations\MozillaHistoryView.exe Integrations\MZCacheView.exe Integrations\mzcv.exe Sources\hosts.ini ok, a quick test in sandboxie showed me nothing new. and nothing special from edge or firefox where browser is able to show this itself to me. pretty pointless. much more interesting will be the check against several data bases. oops whats that? chrome cache view not installed? MZ cache view not installed? see file list above, thats not true. and done with it.
Spoiler: Norton 360 Safe Web related 7bcf1f8fd2a7/2025-06-15T19:11:18.763Z Spoiler: Norton 360 Auto-Protect related 6483c8cd3d09/2025-06-15T19:20:35.683Z File: BrowsAlyzer-3.0.6-setup.exe File size: 9.09 MB (9,533,224 bytes) MD5 checksum: 6E20D26857A3B2D2BA169B0774E66F3E Date/Time: 6/15/2025 18/72 security vendors flagged this file as malicious
