Jump to content

suspected infection


Recommended Posts

We are also getting multiple alerts for this detection, not sure if users are having to reboot their machines but below is an example of the detection alert.

 

8/14/2020 2:17:35 AM  CL61662                removed IP         Spyware.RedLineStealer               Quarantined                C:\Users\kaplanh\Downloads\ChromeSetup (1).exe

8/14/2020 2:17:35 AM  CL61662                removed IP         Spyware.RedLineStealer               Quarantined                C:\Users\kaplanh\Downloads\ChromeSetup (2).exe

8/14/2020 2:17:35 AM  CL61662                removed IP         Spyware.RedLineStealer               Quarantined                C:\Users\kaplanh\Downloads\ChromeSetup (3).exe

8/14/2020 2:17:35 AM  CL61662                removed IP         Spyware.RedLineStealer               Quarantined                C:\Users\kaplanh\Downloads\ChromeSetup (4).exe

8/14/2020 2:17:35 AM  CL61662                removed IP         Spyware.RedLineStealer               Quarantined                C:\Users\kaplanh\Downloads\ChromeSetup (5).exe

8/14/2020 2:17:35 AM  CL61662                removed IP         Spyware.RedLineStealer               Quarantined                C:\Users\kaplanh\Downloads\ChromeSetup (6).exe

8/14/2020 2:17:35 AM  CL61662                removed IP         Spyware.RedLineStealer               Quarantined                C:\Users\kaplanh\Downloads\ChromeSetup.exe

8/14/2020 2:18:34 AM  CL61397                removed IP       Spyware.RedLineStealer               Quarantined                C:\Users\bauern\Downloads\ChromeSetup.exe

Link to post
Share on other sites

53 minutes ago, dblk said:

We are also getting multiple alerts for this detection, not sure if users are having to reboot their machines but below is an example of the detection alert.

 

8/14/2020 2:17:35 AM  CL61662                removed IP         Spyware.RedLineStealer               Quarantined                C:\Users\kaplanh\Downloads\ChromeSetup (1).exe

8/14/2020 2:17:35 AM  CL61662                removed IP         Spyware.RedLineStealer               Quarantined                C:\Users\kaplanh\Downloads\ChromeSetup (2).exe

8/14/2020 2:17:35 AM  CL61662                removed IP         Spyware.RedLineStealer               Quarantined                C:\Users\kaplanh\Downloads\ChromeSetup (3).exe

8/14/2020 2:17:35 AM  CL61662                removed IP         Spyware.RedLineStealer               Quarantined                C:\Users\kaplanh\Downloads\ChromeSetup (4).exe

8/14/2020 2:17:35 AM  CL61662                removed IP         Spyware.RedLineStealer               Quarantined                C:\Users\kaplanh\Downloads\ChromeSetup (5).exe

8/14/2020 2:17:35 AM  CL61662                removed IP         Spyware.RedLineStealer               Quarantined                C:\Users\kaplanh\Downloads\ChromeSetup (6).exe

8/14/2020 2:17:35 AM  CL61662                removed IP         Spyware.RedLineStealer               Quarantined                C:\Users\kaplanh\Downloads\ChromeSetup.exe

8/14/2020 2:18:34 AM  CL61397                removed IP       Spyware.RedLineStealer               Quarantined                C:\Users\bauern\Downloads\ChromeSetup.exe

Yeah, its a false positive. We got rid of malwarebytes the otherday and kept some overlap with malwarebytes and our new softwarea (crowdstrike) and they let us know it was a false positive as they investigated it for us because their product never flagged it. You get what you pay for I guess.

Link to post
Share on other sites

Please update from your Management Console the Database for affected systems.

We confirmed this was a False Positive and have removed from detection moving forward. Apologies for any inconvenience.

The issue should no longer occur on or past Database version:
v2020.08.14.07

Please let us know if you are on this latest database or newer and still continue to receive detection's?

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.