Sophos Endpoint

Discussions False Positive? CryptoGuard detected ransomware in WINWORD.EXE

Sophos Endpoint requires membership for participation - click to join

Thread Info

State Not Answered
+1 person also asked this people also asked this
Locked Locked
Replies 4 replies
Subscribers 16 subscribers
Views 24746 views
Users 0 members are here

Options

Suggested

This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

False Positive? CryptoGuard detected ransomware in WINWORD.EXE

Solomon Horn over 6 years ago

We just received an alert for one of our machines: CryptoGuard detected ransomware in C:\Program Files (x86)\Microsoft Office\Office14\WINWORD.EXE

However, we can find no evidence of ransomware and believe this is a false positive. Has anyone else had issues with WINWORD.EXE?

This thread was automatically locked due to age.

Parents

0 Naman Francis over 6 years ago

We just had the same thing happen, opening a PDF in word 2010 triggers it.
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 Naman Francis over 6 years ago

We just had the same thing happen, opening a PDF in word 2010 triggers it.
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data