Antivirus false positive

Any issues related to FORScan application
Posts: 1
Joined: Sat Mar 07, 2020 3:16 am
Vehicle: F150, 5.0L. 2019

Re: Antivirus false positive

Post by geierbj » Tue Mar 10, 2020 8:33 pm

Rapid7 Insight Agent seems to be detecting new version as a virus also and deletes the install file as soon as it completes its download.

Posts: 1
Joined: Fri Jun 08, 2018 2:51 pm
Vehicle: Mondeo, 1.5 Petrol, 2015

Re: Antivirus false positive

Post by rick_2k » Sun May 10, 2020 7:27 pm

2.3.33beta is showing as positive in Windows Defender as of today with Win32/Wacatac.

Posts: 1
Joined: Sun May 10, 2020 12:02 am
Vehicle: 2019 FORD F250 SUPER DUTY 6.7

Re: Antivirus false positive

Post by Flyguy30263 » Mon May 11, 2020 12:53 am

2.3.33beta is showing as positive in Windows Defender as of today with Win32/Wacatac.
I'm having this same issue. Only Windows computer I have access to is my work computer, I'm an Apply guy, I'm not the admin for my company computer. Now what.

Posts: 834
Joined: Sat Apr 18, 2015 12:41 am
Vehicle: *** Ford ***
Location: Third planet from the sun

Re: Antivirus false positive

Post by f-wolf » Mon May 11, 2020 1:25 am

Posts: 5
Joined: Mon Oct 12, 2020 8:25 am
Vehicle: suzuki , petrol , 1.4L , 2018

Re: Antivirus false positive

Post by tim100 » Tue Oct 13, 2020 8:34 am

Use VirusTotal to Get More Opinions
If you download a file and your antivirus jumps into action and informs you the file is harmful, it probably is. If you’ve run into a false positive and the file is actually safe, most other antivirus programs shouldn’t make the same mistake. In other words, if this is a false positive, only a few antivirus programs should flag the file as dangerous, while most should say it’s safe. That’s where VirusTotal comes in — it lets us scan a file with 45 antivirus programs so we can see what they all think of it.

Check a Malware Database
When an antivirus flags a file, it will give you a specific name for the type of malware it is. Plug this name into a search engine like Google and you should find links to malware database websites written by antivirus companies. They’ll tell you exactly what the file does and why it’s blocked.

In some cases, files that have legitimate uses may be flagged as malware and blocked because they can be used for malicious purposes. For example, some antivirus programs will block VNC server software. VNC server software may be installed by someone malicious so they can remotely access your computer, but it’s safe if you know what you’re doing and intend on installing a VNC server yourself.

Hope this helps.

Posts: 1
Joined: Wed Nov 04, 2020 10:21 pm
Vehicle: Ford, 3.5 2017

Re: Antivirus false positive

Post by jmlay » Thu Nov 05, 2020 3:23 am

Cisco Advanced Malware Protection (AMP) detects the FORscan.exe as malware.

Posts: 212
Joined: Thu May 26, 2016 11:43 pm
Vehicle: F150 5.4 Triton 2005 Expe5.4 2003 Fusion 3.0 2010

Re: Antivirus false positive

Post by tractmec » Thu Nov 05, 2020 4:40 am

Its A False Positive as the Forscan team reported in the first post in this thread. Some Aniti virus's have not yet been updated still!

Post Reply