https://community.checkpoint.com/t5/Endpoint/false-positive-Endpoint-Behavioral-Guard/m-p/150166#M5733 <P>Your best bet is to open a TAC case and provide the relevant information.</P> Fri, 03 Jun 2022 18:38:04 GMT PhoneBoy 2022-06-03T18:38:04Z https://community.checkpoint.com/t5/Endpoint/false-positive-Endpoint-Behavioral-Guard/m-p/150153#M5732 <P>I am currently having problems with the VPN because the EDR solution detects the file as a threat: 0a741146f8f48003e317ebf59000c38a - zipextractor.exe used by my lenovo machine in the following path: c:\programdata\lenovo\imcontroller\systemplugindata\lenovofirstrunexperiencepackage\downloads\zipextractor .exe signs it as "gen.win.creddump.c" because it is used in the task created in the operating system with this information "lenovowelcometask.exe(83c042a7ce33949bf9b3cd88931a4a93); zipextractor.exe(0a741146f8f48003e317ebf59000c38a); " please if someone knows the procedure to report it as a false positive or to confirm that at least on my computer its use is not malicious, even if it is used for malicious activities in other scenarios. The files can be located in virustotal.com, They are public files.</P><P>#falsepositive <LI-PRODUCT title="Check Point SandBlast" id="sandblast"></LI-PRODUCT>&nbsp;&nbsp;</P> Fri, 03 Jun 2022 14:44:44 GMT https://community.checkpoint.com/t5/Endpoint/false-positive-Endpoint-Behavioral-Guard/m-p/150153#M5732 huesos 2022-06-03T14:44:44Z https://community.checkpoint.com/t5/Endpoint/false-positive-Endpoint-Behavioral-Guard/m-p/150166#M5733 <P>Your best bet is to open a TAC case and provide the relevant information.</P> Fri, 03 Jun 2022 18:38:04 GMT https://community.checkpoint.com/t5/Endpoint/false-positive-Endpoint-Behavioral-Guard/m-p/150166#M5733 PhoneBoy 2022-06-03T18:38:04Z