topic Re: Dynatrace_onepCap detected as malicious in Open Q&A https://community.dynatrace.com/t5/Open-Q-A/Dynatrace-onepCap-detected-as-malicious/m-p/199869#M23528 <P>Hi&nbsp;<a href="https://community.dynatrace.com/t5/user/viewprofilepage/user-id/9193">@echwallah</a>,<BR /><BR />Could you share with us what tool was used to detect the file as malicious? This would help us a lot.<BR /><BR />We had a similar support case, but we got a reply from NPCAP developers, that this was a false positive.</P> Tue, 06 Dec 2022 10:42:57 GMT MaciejNeumann 2022-12-06T10:42:57Z Dynatrace_onepCap detected as malicious https://community.dynatrace.com/t5/Open-Q-A/Dynatrace-onepCap-detected-as-malicious/m-p/199735#M23503 <P>One of our customers has flagged an executable file known as Dynatrace-onepcap.exe and it is signed by Dynatrace.</P> <P>The security tool has flagged and associated it to Dynatrace under folder c:\program files\dynatrace\oneagent\agent\pcap\dynatrace_onepcap.exe quoting "potentially malicious"</P> <P>&nbsp;</P> <P><span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="pcap (1).PNG" style="width: 999px;"><img src="https://community.dynatrace.com/t5/image/serverpage/image-id/8871i0DA79E53812DC50C/image-size/large?v=v2&amp;px=999" role="button" title="pcap (1).PNG" alt="pcap (1).PNG" /></span></P> <P> </P> <P>Has anyone come across this and is it the same npcap/winpcap Packet Monitoring driver or is this a different executable?</P> <P>Please let me know in order to clarify to the client.</P> Wed, 07 Dec 2022 15:31:07 GMT https://community.dynatrace.com/t5/Open-Q-A/Dynatrace-onepCap-detected-as-malicious/m-p/199735#M23503 echwallah 2022-12-07T15:31:07Z Re: Dynatrace_onepCap detected as malicious https://community.dynatrace.com/t5/Open-Q-A/Dynatrace-onepCap-detected-as-malicious/m-p/199869#M23528 <P>Hi&nbsp;<a href="https://community.dynatrace.com/t5/user/viewprofilepage/user-id/9193">@echwallah</a>,<BR /><BR />Could you share with us what tool was used to detect the file as malicious? This would help us a lot.<BR /><BR />We had a similar support case, but we got a reply from NPCAP developers, that this was a false positive.</P> Tue, 06 Dec 2022 10:42:57 GMT https://community.dynatrace.com/t5/Open-Q-A/Dynatrace-onepCap-detected-as-malicious/m-p/199869#M23528 MaciejNeumann 2022-12-06T10:42:57Z