[Is this a false postitive?]

Today my scan detected Neshta.Virus.FileInfector.DDS for the first time.

Neshta.Virus.FileInfector.DDS .docx

[157.185.178.250 blocked - Trojan]

When I open WonderShare PDF, it connects to its website, but for the last week it is being blocked as a Malicious Website Trojan.  The program works with the site blocked, but I am not sure if the website is safe.

 

Malwarebytes
www.malwarebytes.com

-Log Details-
Protection Event Date: 4/25/22
Protection Event Time: 1:31 PM
Log File: dcd88737-c4c5-11ec-b8c3-a4bb6d3f063f.json

-Software Information-
Version: 4.5.8.191
Components Version: 1.0.1666
Update Package Version: 1.0.54165
License: Premium

-System Information-
OS: Windows 10 (Build 19043.1645)
CPU: x64
File System: NTFS
User: System

-Blocked Website Details-
Malicious Website: 1
, C:\Program Files (x86)\Wondershare\Wondershare PDFelement for Windows\PDFelement.exe, Blocked, -1, -1, 0.0.0, , 

-Website Data-
Category: Trojan
Domain: resource.wondershare.com.whecloud.com
IP Address: 157.185.178.250
Port: 80
Type: Outbound
File: C:\Program Files (x86)\Wondershare\Wondershare PDFelement for Windows\PDFelement.exe

(end)

[false-positive?]

 

Square checkout is being blocked

Is this a false positive?

Thanks

[Scan shows 1 Threat Identified but...]

I changed the settings to as shown, from ignore.  

Scan shows:

Registry Keys: 1
PUP.Optional.Distromatic, HKU\S-1-5-21-1807757243-3554365144-539835770-1001\SOFTWARE\Distromatic, , [a7fc3c3e78301620ac5501bcf10f22de], 

Topic on this already is on your forum.:

 

[Scan shows 1 Threat Identified but...]

No,  The scan goes from the Threat Scan screen to that screen upon completion.

[Scan shows 1 Threat Identified but...]

History shows no threats.

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 1/11/2017
Scan Time: 11:35 AM
Logfile:
Administrator: Yes

Version: 2.2.1.1043
Malware Database: v2017.01.11.07
Rootkit Database: v2016.11.20.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled

OS: Windows 10
CPU: x64
File System: NTFS
User: Larry

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 642292
Time Elapsed: 13 min, 0 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Disabled
Rootkits: Disabled
Heuristics: Disabled
PUP: Disabled
PUM: Disabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 0
(No malicious items detected)

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 0
(No malicious items detected)

Physical Sectors: 0
(No malicious items detected)

(end)

[FP? trojan.dropper.pgen]

Posible FP

Malwarebytes' Anti-Malware 1.46

www.malwarebytes.org

Database version: 4703

Windows 5.1.2600 Service Pack 3

Internet Explorer 8.0.6001.18702

9/27/2010 10:52:53 AM

mbam-log-2010-09-27 (10-52-53).txt

Scan type: Quick scan

Objects scanned: 159089

Time elapsed: 22 minute(s), 39 second(s)

Memory Processes Infected: 0

Memory Modules Infected: 0

Registry Keys Infected: 0

Registry Values Infected: 0

Registry Data Items Infected: 0

Folders Infected: 0

Files Infected: 1

Memory Processes Infected:

(No malicious items detected)

Memory Modules Infected:

(No malicious items detected)

Registry Keys Infected:

(No malicious items detected)

Registry Values Infected:

(No malicious items detected)

Registry Data Items Infected:

(No malicious items detected)

Folders Infected:

(No malicious items detected)

Files Infected:

C:\WINDOWS\system32\VistaUltm.dll (Trojan.Dropper.PGen) -> No action taken. [52616216431D80FFB2B982389B7056B5]

VistaUltm.zip