When the program is running, it is always mistakenly killed by 360 antivirus software
Hello shaohuan,
Do you have any screenshots or logs that you could provide?
Thanks!
Thank you @shaohuan. One last question, do you know which version of winlogbeat that is? And did you install it standalone or is it managed by agent?
version is:
winlogbeat version 8.17.0 (amd64), libbeat 8.17.0 [092f0eae4d0d343cc3a142f671c2a0428df67840 built 2024-12-11 11:10:44 +0000 UTC]
install it standalone
Thanks @shaohuan
Are you still having a problem with this? I attempted to replicate it so that I could submit a false positive report to 360 AV, but its not alerting for me.
If you're still having the problem could you hash your winlogbeat.exe and share that hash with me?
Thanks,
-nf
Add winlogbeat to safe app or path list.
Thank you @shaohuan.
I've submitted a false positive report here: False Positives/Suspicious | 360 Total Security
In the meantime if you need to work around the issue, you might try a newer version of winlogbeat. there are a couple different patch versions of 8.17 that are out and maybe they won't get detected incorrectly.
Thanks!