Hi,
I would like to ask about the exact meaning the registry keys in Scanning report list. I see for example:
*******
Infections found: 4
Cleaned: 4
Trojan:W32/Generic.d383de9946!Online:
C:\Program Files\QGIS 3.6\apps\grass\grass-7.6.0\bin\r.out.png.exe
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer|NoActiveDesktopChanges
HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\wuauserv|Start
HKEY_USERS\S-1-5-21-21656339-4055342465-2016908541-291280\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced|ShowSuperHidden
*******
The registry keys names look like standardly used. Does it mean the values were changed by the malware? The listed detection is False positive. Could be even the registry alert FP?
Related to this, does the information "Cleaned: 4" mean: Suspicious malware was removed from the executable? How was cleaned the standardly use registry key? Were they removed or set to default?
Can anybody clarify the meaning, please?
Thanks
Jáchym