Jump to content
Henry5R

Is this False Positive?

Recommended Posts

We scanned our exe file and found the results below. We also scanned our exe with 10 other malware enterprise software and they all came back clean. Could these results from Malware Bytes be falsepositivs?

Any feedback will be highly appreciated. 

---------------------------------------------------------------------------------------------------------------------------

Threats Detected: 7
Threats Quarantined: 0
Time Elapsed: 0 min, 38 sec

-Scan Options-
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Detect
PUM: Detect

-Scan Details-
Process: 1
Adware.DotDo.DotPrx, C:\USERS\ADMIN\DESKTOP\QUICK PLATFORM STANDARD\QUICK PLATFORM FILES\QUICK.EXE, No Action By User, 4843, 397814, , , , 

Module: 1
Adware.DotDo.DotPrx, C:\USERS\ADMIN\DESKTOP\QUICK PLATFORM STANDARD\QUICK PLATFORM FILES\QUICK.EXE, No Action By User, 4843, 397814, , , , 

Registry Key: 1
Adware.DotDo.DotPrx, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\NLASVC\PARAMETERS\INTERNET\MANUALPROXIES, No Action By User, 4843, -1, 0.0.0, , action, 

Registry Value: 3
Adware.DotDo.DotPrx, HKU\S-1-5-18\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYENABLE, No Action By User, 4843, -1, 0.0.0, , action, 
Adware.DotDo.DotPrx, HKU\S-1-5-21-2979646800-941476162-7346319-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYENABLE, No Action By User, 4843, -1, 0.0.0, , action, 
Adware.DotDo.DotPrx, HKU\.DEFAULT\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYENABLE, No Action By User, 4843, -1, 0.0.0, , action, 

Registry Data: 0
(No malicious items detected)

Data Stream: 0
(No malicious items detected)

Folder: 0
(No malicious items detected)

File: 1
Adware.DotDo.DotPrx, C:\USERS\ADMIN\DESKTOP\QUICK PLATFORM STANDARD\QUICK PLATFORM FILES\QUICK.EXE, No Action By User, 4843, 397814, 1.0.14866, , ame, 

Physical Sector: 0
(No malicious items detected)

WMI: 0
(No malicious items detected)


(end)

Share this post


Link to post
Share on other sites

That is great news thank you. Is there a report that can support this. 

We need to provide some evidence to our client.

Share this post


Link to post
Share on other sites
4 hours ago, TwinHeadedEagle said:

Thank you. It is a confirmed False Positive and it shall be fixed in the next database update.

That is great news thank you. Is there a report that can support this. 

We need to provide some evidence to our client.

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now

  • Recently Browsing   0 members

    No registered users viewing this page.

×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.