Talos reputation ticket created... And resolved before I finished this post... Detection: W32.1C27878DDF.RET.SBX.TGFile: mpavdlta.vdmFile path: \\?\C:\Windows\Temp\D3A7A9B3-EF42-4962-BED8-953AD7FE65811330.1d96d3272ec45c5\mpavdlta.vdmDetection SHA...
Forum Posts
This morning I started seeing retrospective quarantine failures for Newtonsoft.Json.dll. I see conflicting results when searching for this .dll. The SHA is SHA256: c5c83bbc1741be6ff4c490c0aee34c162945423ec577c646538b2d21ce13199e
Hi all there, I need your help, I tried to connect in cortex Cisco AMP, but need to have "AMP for Endpoints Simple Custom Detection GUID". Can anyone help me how can I get. I created simple and assigned it to my police, but GUID for this group nowher...
Is it possible to initiate a scan to endpoint with an API call? I haven't noticed any methods from reviewing the API documentation:Secure Endpoint API - Cisco DeveloperThanks!
Does anyone know when the Secure Endpoint Module will be available for MACOS?I have installed the latest one (5.0.02075) and still getting the old option "Cisco AMP Enabler"Is this part of Cisco's 2023 roadmap?It would be nice to manage one less app.
Does anyone encounter this Tetra update error on a Windows 2019 server running with Cisco Secure Endpoint version 8.1.5? First time seeing this error. After upgrading the version from 7.5.5 to 8.1.5, the initial error was -2113 which, according to C...
Hello.I have installed Endpoint protection and it´s not showing up.Can someone explain what they are meaning?There is an antivirus is running on the user level but while verifying the security manager we can see there is no antivirus registered.For ...
A few months back, we deployed Cisco Secure Endpoint 8.0.1 to our pilot Windows group and then our production Windows group. In testing there were seemingly no issues; However, eventually we began to notice that after these upgrades, Windows 10 (most...
False positive? Just got a bunch of these off multiple MXs. MD5 : 346cac4d1166ef87ab7617fc977f7dd4SHA-1 d4bf1fc804bef6293d867c5f250191860044639cSHA-256 975c0d48c41d2ad76a242d5f7270f4bf8063bb9c753b375ab2c47c9e2060f562Vhash 3872fcc78e34962257f24cc7728...
Hello everyone, 1st post here, we have been receiving a lot of alerts regarding firefox, see #2. Also I would like to know if #1 is a false positive, Thanks for your help Secure Endpoint found a total of 1 events matching your subscription named Indi...
Hey guys, Anyone else seeing this: Detection: W32.082827C4A5.RET.SBX.TGFile: MicrosoftEdge_X64_112.0.1722.39_112.0.1722.34.exeFile path: file:///C%3A/Program%20Files%20%28x86%29/Microsoft/EdgeUpdate/Install/%7BBEA8EA03-94F9-45AB-AC52-0309F5FD1DF3%7D...
Good day all,Today we had our DC network connectivity disabled due to it being isolated from an app that was pushed to it. It took our engineer 20+ minutes to figure out that it was isolated. Is there an option to have emails sent out to multiple a...
hello everybody, I have a situation here. My boss ask me to create a way to build a filter for endpoints in my environment that has a particulate Connector Version. Any thoughts about it?
Hi,Usually I don't have any issues creating exclusions for Cisco Secure Endpoint but now this detection that I started seeing lately doesn't seem to be excluded regardless of how I do it.So basically we are running Secure Endpoint for Windows 7.5.5.2...
Resolved! 16.019 error
Hello,I have a couple of Windows 10 clients that are failing the update from 7.5.3 to 7.5.7.21234 with the error 16.019 Unable to verify Secure Endpoint's digital signature. Please update Windows. Can anyone point me in the right direction? Thank you
