Welcome to the Mythicsoft Q&A site for:

- Agent Ransack
- FileLocator Lite
- FileLocator Pro

Please feel free to ask any questions on these products or even answer other community member questions.

Useful Links:

- Contact Us
- Help Manuals
- Mythicsoft Home
0 votes

During indexing, I get a lot of Microsoft Defender alerts - looking at the event viewer, I have dozens of events like this:

Microsoft Defender Antivirus has taken action to protect this machine from malware or other potentially unwanted software.
For more information please see the following:
https://go.microsoft.com/fwlink/?linkid=37020&name=TrojanDownloader:O97M/Donoff.AK&threatid=2147707387&enterprise=0
Name: TrojanDownloader:O97M/Donoff.AK
ID: 2147707387
Severity: Severe
Category: Trojan Downloader
Path: file:_C:\Users\username\AppData\Local\Temp\Flf1EB9.tmp.dir\Flt_de48abd05774b24886cecc35fc67efa6.tmp.doc
Detection Origin: Local machine
Detection Type: Concrete
Detection Source: Real-Time Protection
User: NT AUTHORITY\SYSTEM
Process Name: C:\Program Files\Mythicsoft\FileLocator Pro\flpidx.exe
Action: Quarantine
Action Status: No additional actions required
Error Code: 0x00000000
Error description: The operation completed successfully.
Security intelligence Version: AV: 1.385.390.0, AS: 1.385.390.0, NIS: 0.0.0.0
Engine Version: AM: 1.1.20100.6, NIS: 0.0.0.0

Is there any way to prevent this?

by (20 points)

1 Answer

0 votes

When indexing containers such as ZIP files or PST files the program needs to extract the files to a temporary location. Most anti-malware products will scan any file written to disk, temporary or not, and might produce warnings if some of the files being extracted look like malware.

EXE files extracted by FileLocator Pro would never be executed and would be deleted (along with any other temporary files after searching).

Please see similar answer:

https://qa.mythicsoft.com/14627/why-does-filelocator-pro-generate-symantec-malware-warnings

by (31.3k points)
...