Re: False positive from Windows Defender (Phix/pw.exe)
- Posted by petelomax Jun 11, 2018
- 1121 views
Got another one, also promptly dealt with:
Analyst comments: Hello, Thank you for your inquiry. We have reviewed the file and we have removed the detection. Please try the following steps to clear cached detections and obtain the latest malware definitions. 1. Open command prompt as administrator and change directory to c:\Program Files\Windows Defender 2. Run “MpCmdRun.exe -removedefinitions -dynamicsignatures” The change will be available latest build. This new definition library will be available for users who subscribe to the automatic definition update mechanism, as well as users who choose to manually update their definition library. The latest definition is available for download here: https://www.microsoft.com/en-us/wdsi/definitions Best regards, Windows Defender Response Showing 1 of 1 entries File name Final determination Protection Current detection Definition version pw.exe Not malware Cloud No malware detected Online Client No malware detected 1.269.1068.0