TFawkes

Attached file detected on February 27th. Just re-ran it through virustotal and MWB is still detecting.WinDirStatPortable_1.1.2.80_Rev_3.paf.zip

Detection occurred on Feb 21st at 7:13PM PST Detected file attached.unins000.zip

Looks like this is being flagged for phishing. Virustotal is not showing any detections?

Detection occurred on routine scan for FileZilla installer downloaded in 2017 version 3.25.0 64-bit. FileZilla_3.25.0_win64-setup.zip

Detection occurred on a routine scan on Jan 29th at 10PM PST, appears to be left overs from a remote support session from over a year ago. lzma.zip

Abyssmedia MCRS System 3.9.9.5 installer was detected as "Malware.Sandbox.1 detection" on 01/15/2021 7:44:39 PM PST We have been using this software for awhile and are pretty sure this is a False Positive. mcrs3995.exe.zip

The specific file that was detected was the one attached in this zip, it was extracted and there was another detection for it. Where do I find the scan log you are wanting?VBCABLE_Setup.exe.zip

This was detected this morning. It appears to be a legitimate installation package, can you please confirm if this is a trojan or FP? VBCABLE_Driver_Pack43.zip

Would you recommend an exclusion for this file until the update comes out then?

Getting detections throughout our network on HP workstations, pretty confident its a false positive though. Attached the file being detected. Status: quarantined Threat Name: Trojan.BitCoinMiner Category: Malware Type: file Path: C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClient.sys TouchpointAnalyticsClient.zip

Someone got the memo, all fixed up.

For 2.5 hours I have not been able to retrieve any endpoint info from Nebula. Have tried different accounts and browsers with no success. Seems like the database is not connecting to the cloud. This sometimes happens for a few seconds or minutes but never has it been this long. Support ticket has been submitted but with it being American thanks giving I'm guessing it won't be seen till tomorrow. Are there any MWB support staff on this forum that can get someone working on this? We have planned MWB updates/reboots for this evening.

Staff reported this page came up as an FP today but was fine yesterday. Is there really a detection on it?

https://www.virustotal.com/gui/file/b5f65158f6713aa2fb7dd0b09d5f6dd39ae3cd1212ad330da207244d522aee20/detection