Constant notifications regarding Malware
One of our servers is constantly flagging Malware, and we're not sure if the transactions are processing before the files are being quarantined and removed.
Time|Account|Host|Infection|Action|Type|Infected Object|Infected Object SHA1
Sat, 5 October 2024 18:56:49 UTC|Talenom Oyj|%SERVER%|Malware.HTML/Malicious.PDF.Gen2|Quarantined|On_access_scanner.file_infection.quarantine|C:\Users\night\AppData\Local\Temp\Piimega_uusiostolasku_kuva#ots\4_051020242156464683\21029_sopimus_parruyhtiotoy.pdf|1227ae34f269b0013e9328bd304d5063ea16b2cc
Any help is appreciated
Comments
-
Hi @Matt
Thank you for reaching out the WithSecure Community,
If you have located the virus sample, you can submit it to our virus lab for analysis. You can find more information on the submission process here:
How to submit a false positive or negative sample file or URL to WithSecure - WithSecure Community
If you're unsure or unable to locate the virus sample file, you can use our quarantine dumper tool to recover the file. Once recovered, please submit the sample to our virus lab for further analysis.
How can I recover quarantined items from quarantine manually? - WithSecure Community
1 -
Submitted a report, it was simply a JSON file that I was able to export from the WebGUI
0
Categories
- All Categories
- 4.7K WithSecure Community
- 3.6K Products
- 1 Get Support