C:\ProgramData\Red Gate\SQL Monitor\SearchEngine\SqlQueries\servername\

ViddiViddi Posts: 1 New member
in Redgate Monitor
Microsoft has set in quarantine a file that is this directory C:\ProgramData\Red Gate\SQL Monitor\SearchEngine\SqlQueries\servername\

file name is 7tfy_8j.del

the verdit on the file is 
Malicious
 detection origin WinLNK' malware was prevented.

I think this a false positive can you confirm that ?
Tagged:
· Share on Twitter

Answers

  • RobynRobyn Posts: 194 Gold 1
    Hi, 

    Thanks for your post. 

    It is possible for WinLNK detections to be false positives.
    WinLNK files are typically shortcut files and while they can be used maliciously, not all WinLNK files are malware.
     
    This isn't something we'd review but if you have an in internal security team, off the back of it being flagged that's probably worth raising with them. 
    Kind regards

    Robyn Edwards | Redgate Software
    Have you visited our Help Center?
    · Share on Twitter
Sign In or Register to comment.