Pharos drivers provided by university detected malicious

bigman01 · November 27, 2021

Driver software provided for Uni drivers detected, heres the log:

Malwarebytes
www.malwarebytes.com

-Log Details-
Scan Date: 11/27/21
Scan Time: 3:30 PM
Log File: e8c7c6dc-4f96-11ec-8aef-000000000000.json

-Software Information-
Version: 4.4.10.144
Components Version: 1.0.1499
Update Package Version: 1.0.47768
License: Free

-System Information-
OS: Windows 10 (Build 19042.1348)
CPU: x64
File System: NTFS
User: DESKTOP-MG6AD2F\Adam

-Scan Summary-
Scan Type: Threat Scan
Scan Initiated By: Manual
Result: Completed
Objects Scanned: 348392
Threats Detected: 3
Threats Quarantined: 0
Time Elapsed: 10 min, 33 sec

-Scan Options-
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Detect
PUM: Detect

-Scan Details-
Process: 0
(No malicious items detected)

Module: 0
(No malicious items detected)

Registry Key: 0
(No malicious items detected)

Registry Value: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Data Stream: 0
(No malicious items detected)

Folder: 0
(No malicious items detected)

File: 3
Malware.Sandbox.1, C:\USERS\ADAM\APPDATA\LOCAL\TEMP\PHAROS\A4_COLOUR_PRINTER_ON_PHAROSPR.UCD.UCD.IE_FOR_X64.EXE, No Action By User, 1, 0, 1.0.47768, 1, dds, 01528684, 1088F96C4DAAA1A24A6D5DDF01B92621, A9C209C0A81F46DE1DA1A355D0DA3BBC54FD987B2F14F8C7B32533CB7C4411F0
Malware.Sandbox.1, C:\USERS\ADAM\APPDATA\LOCAL\TEMP\PHAROS\A3_BW_PRINTER_ON_PHAROSPR.UCD.UCD.IE_FOR_X64.EXE, No Action By User, 1, 0, 1.0.47768, 1, dds, 01528684, 2A86A62FE93BBE6254C835D59F26FF8F, 85D5AEE1B0BC5FD5067B6A40C956234249918705C241AEC830E18B428DA639B4
Malware.Sandbox.1, C:\USERS\ADAM\APPDATA\LOCAL\TEMP\PHAROS\A4_BW_PRINTER_ON_PHAROSPR.UCD.UCD.IE_FOR_X64.EXE, No Action By User, 1, 0, 1.0.47768, 1, dds, 01528684, 47829DEEA2C54D3474786F1C70073753, DDD4B51BFB46F9685A7A9ABBFF85C9A5642A62B1B8CA63F3FE3BCA2DDB60C460

Physical Sector: 0
(No malicious items detected)

WMI: 0
(No malicious items detected)

(end)

blender · November 27, 2021

Hello,

Thank you for reporting. These should be fixed. Might need to wait a few minutes as of time of my reply to see results.

bigman01 · November 27, 2021

I'm obviously a bit suspicious, do you want me to send you the file just to be sure that the files haven't been tampered with or something?

bigman01 · November 27, 2021

Should I be personally concerned, even though for me there is a huge chance of false positive.

bigman01 · November 28, 2021

It is a little strange, because I scanned again and it didn't show up, It also detected the pharos again then didn't on the next scan, is there something bigger going on here than false positive?

shadowwar · November 28, 2021

No it is just a false positive. We verified. Nothing to be concerned about.

bigman01 · November 28, 2021

Can I ask how you verified without me sending the file? Btw thanks for everything guys

shadowwar · December 3, 2021

We had the hash on record and was able to verify that way.

Pharos drivers provided by university detected malicious

Recommended Posts

Link to post

Share on other sites

Link to post

Share on other sites

Link to post

Share on other sites

Link to post

Share on other sites

Link to post

Share on other sites

Link to post

Share on other sites

Link to post

Share on other sites

Link to post

Share on other sites

Create an account or sign in to comment

Create an account

Sign in

Recently Browsing 0 members

Important Information