Endpoint Protection Small Business Edition

 View Only
  • 1.  SEP and RKILL - False Positives

    Posted Apr 06, 2016 07:45 PM
      |   view attached

    Just connected and external disk which, two years ago, I had run RKILL on. It now appears that SEP is picking up false positives from when the process was run?

    To wit:

    pc rkill\rkill.scr

    Other 'viruses' were found such as rkill\iexplore.exe.

    Please note the attached as well. Thank you!

     

    Note: O/S is Win-10 Pro (not currenlty one of the selections under 'Operating System').

     

     

     



  • 2.  RE: SEP and RKILL - False Positives
    Best Answer

    Posted Apr 07, 2016 10:51 AM

    SEP has bee known to detect this as malware. Not really surprise. Are you using the latest rkill version? I've used it a couple times over the past few months and SEP has not detected it.



  • 3.  RE: SEP and RKILL - False Positives

    Posted Apr 07, 2016 11:13 AM

    Thanks. Re the verison, it was actually an older one.

     - SD



  • 4.  RE: SEP and RKILL - False Positives

    Posted Apr 07, 2016 11:54 AM

    Good to know information indeed. 

     

    Thanks @Brian