{"id":8506,"date":"2024-11-05T14:14:19","date_gmt":"2024-11-05T12:14:19","guid":{"rendered":"https:\/\/www.cytomic.ai\/?p=8506"},"modified":"2025-03-20T13:35:18","modified_gmt":"2025-03-20T11:35:18","slug":"id-ka1vr0000007hslka2","status":"publish","type":"post","link":"https:\/\/www.cytomic.ai\/es\/soporte\/id-ka1vr0000007hslka2\/","title":{"rendered":"Detecci\u00f3n de falso positivo de Trj\/RansomDecoy.A con productos Advanced EPDR\/EDR"},"content":{"rendered":"[vc_row type=&#8221;full_width_background&#8221; full_screen_row_position=&#8221;middle&#8221; column_margin=&#8221;default&#8221; equal_height=&#8221;yes&#8221; content_placement=&#8221;middle&#8221; column_direction=&#8221;default&#8221; column_direction_tablet=&#8221;default&#8221; column_direction_phone=&#8221;default&#8221; bg_color=&#8221;#7e5994&#8243; scene_position=&#8221;center&#8221; top_padding=&#8221;12&#8243; bottom_padding=&#8221;12&#8243; text_color=&#8221;light&#8221; text_align=&#8221;left&#8221; row_border_radius=&#8221;none&#8221; row_border_radius_applies=&#8221;bg&#8221; overlay_strength=&#8221;0.3&#8243; gradient_direction=&#8221;left_to_right&#8221; shape_divider_position=&#8221;bottom&#8221; bg_image_animation=&#8221;none&#8221; shape_type=&#8221;&#8221;][vc_column column_padding=&#8221;no-extra-padding&#8221; column_padding_tablet=&#8221;inherit&#8221; column_padding_phone=&#8221;inherit&#8221; column_padding_position=&#8221;all&#8221; background_color_opacity=&#8221;1&#8243; background_hover_color_opacity=&#8221;1&#8243; column_shadow=&#8221;none&#8221; column_border_radius=&#8221;none&#8221; column_link_target=&#8221;_self&#8221; gradient_direction=&#8221;left_to_right&#8221; overlay_strength=&#8221;0.3&#8243; width=&#8221;3\/5&#8243; tablet_width_inherit=&#8221;default&#8221; tablet_text_alignment=&#8221;default&#8221; phone_text_alignment=&#8221;default&#8221; column_border_width=&#8221;none&#8221; column_border_style=&#8221;solid&#8221; bg_image_animation=&#8221;none&#8221;][\/vc_column][vc_column column_padding=&#8221;no-extra-padding&#8221; column_padding_tablet=&#8221;inherit&#8221; column_padding_phone=&#8221;inherit&#8221; column_padding_position=&#8221;all&#8221; background_color_opacity=&#8221;1&#8243; background_hover_color_opacity=&#8221;1&#8243; column_shadow=&#8221;none&#8221; column_border_radius=&#8221;none&#8221; column_link_target=&#8221;_self&#8221; gradient_direction=&#8221;left_to_right&#8221; overlay_strength=&#8221;0.3&#8243; width=&#8221;1\/5&#8243; tablet_width_inherit=&#8221;default&#8221; tablet_text_alignment=&#8221;default&#8221; phone_text_alignment=&#8221;default&#8221; column_border_width=&#8221;none&#8221; column_border_style=&#8221;solid&#8221; bg_image_animation=&#8221;none&#8221;]<div class=\"iwithtext\"><div class=\"iwt-icon\"> <img decoding=\"async\" src=\"https:\/\/www.cytomic.ai\/src\/uploads\/2020\/03\/support-tiny.svg\" alt=\"\" \/> <\/div><div class=\"iwt-text\"> +34 900 840 407 <\/div><div class=\"clear\"><\/div><\/div>[\/vc_column][vc_column column_padding=&#8221;no-extra-padding&#8221; column_padding_tablet=&#8221;inherit&#8221; column_padding_phone=&#8221;inherit&#8221; column_padding_position=&#8221;all&#8221; background_color_opacity=&#8221;1&#8243; background_hover_color_opacity=&#8221;1&#8243; column_shadow=&#8221;none&#8221; column_border_radius=&#8221;none&#8221; column_link_target=&#8221;_self&#8221; gradient_direction=&#8221;left_to_right&#8221; overlay_strength=&#8221;0.3&#8243; width=&#8221;1\/5&#8243; tablet_width_inherit=&#8221;default&#8221; tablet_text_alignment=&#8221;default&#8221; phone_text_alignment=&#8221;default&#8221; column_border_width=&#8221;none&#8221; column_border_style=&#8221;solid&#8221; bg_image_animation=&#8221;none&#8221;]<div class=\"iwithtext\"><div class=\"iwt-icon\"> <img decoding=\"async\" src=\"https:\/\/www.cytomic.ai\/src\/uploads\/2020\/03\/contact-tiny.svg\" alt=\"\" \/> <\/div><div class=\"iwt-text\"> support@cytomic.ai <\/div><div class=\"clear\"><\/div><\/div>[\/vc_column][\/vc_row][vc_row type=&#8221;full_width_content&#8221; full_screen_row_position=&#8221;middle&#8221; column_margin=&#8221;default&#8221; equal_height=&#8221;yes&#8221; content_placement=&#8221;top&#8221; column_direction=&#8221;default&#8221; column_direction_tablet=&#8221;default&#8221; column_direction_phone=&#8221;default&#8221; scene_position=&#8221;center&#8221; text_color=&#8221;dark&#8221; text_align=&#8221;left&#8221; row_border_radius=&#8221;none&#8221; row_border_radius_applies=&#8221;bg&#8221; overlay_strength=&#8221;0.3&#8243; gradient_direction=&#8221;left_to_right&#8221; shape_divider_position=&#8221;bottom&#8221; bg_image_animation=&#8221;none&#8221; shape_type=&#8221;&#8221;][vc_column column_padding=&#8221;padding-5-percent&#8221; column_padding_tablet=&#8221;inherit&#8221; column_padding_phone=&#8221;inherit&#8221; column_padding_position=&#8221;all&#8221; background_color=&#8221;#f3f3f3&#8243; background_color_opacity=&#8221;1&#8243; background_hover_color_opacity=&#8221;1&#8243; column_shadow=&#8221;none&#8221; column_border_radius=&#8221;none&#8221; column_link_target=&#8221;_self&#8221; gradient_direction=&#8221;left_to_right&#8221; overlay_strength=&#8221;0.3&#8243; width=&#8221;1\/3&#8243; tablet_width_inherit=&#8221;default&#8221; tablet_text_alignment=&#8221;default&#8221; phone_text_alignment=&#8221;default&#8221; column_border_width=&#8221;none&#8221; column_border_style=&#8221;solid&#8221; bg_image_animation=&#8221;none&#8221;][split_line_heading animation_type=&#8221;default&#8221;]<a href=\"#title1\">Related Products<\/a><\/p>\n<p><a href=\"#title2\">Status and Tracking_<\/a><\/p>\n<p><a href=\"#title3\">Description_<\/a><\/p>\n<p><a href=\"#title4\">Soluci\u00f3n\/Workaround_<\/a>[\/split_line_heading][\/vc_column][vc_column column_padding=&#8221;padding-5-percent&#8221; column_padding_tablet=&#8221;inherit&#8221; column_padding_phone=&#8221;inherit&#8221; column_padding_position=&#8221;all&#8221; background_color_opacity=&#8221;1&#8243; background_hover_color_opacity=&#8221;1&#8243; column_shadow=&#8221;none&#8221; column_border_radius=&#8221;none&#8221; column_link_target=&#8221;_self&#8221; gradient_direction=&#8221;left_to_right&#8221; overlay_strength=&#8221;0.3&#8243; width=&#8221;2\/3&#8243; tablet_width_inherit=&#8221;default&#8221; tablet_text_alignment=&#8221;default&#8221; phone_text_alignment=&#8221;default&#8221; column_border_width=&#8221;none&#8221; column_border_style=&#8221;solid&#8221; bg_image_animation=&#8221;none&#8221;][vc_column_text]\n<h3>Detecci\u00f3n de falso positivo de Trj\/RansomDecoy.A con productos Advanced EPDR\/EDR<\/h3>\n[\/vc_column_text][vc_column_text css=&#8221;.vc_custom_1585668102613{padding-top: 40px !important;padding-bottom: 20px !important;}&#8221;]\n<h6 id=\"title1\">Related Products_<\/h6>\n[\/vc_column_text][vc_column_text]\n<ul>\n<li>Advanced EPDR<\/li>\n<li>Advanced EDR<\/li>\n<\/ul>\n[\/vc_column_text][vc_column_text css=&#8221;.vc_custom_1742452707434{padding-top: 40px !important;padding-bottom: 20px !important;}&#8221;]\n<h6 id=\"title2\">Estado de la Incidencia_<\/h6>\n[\/vc_column_text][vc_column_text]Resuelto en Hotfix \/ v.8.00.24.X[\/vc_column_text][vc_column_text css=&#8221;.vc_custom_1730808619820{padding-top: 40px !important;padding-bottom: 20px !important;}&#8221;]\n<h6 id=\"title3\">Description_<\/h6>\n[\/vc_column_text][vc_column_text]Detecci\u00f3n de falso positivo de Trj\/RansomDecoy.A en los productos Advanced EPDR\/EDR.[\/vc_column_text][vc_column_text css=&#8221;.vc_custom_1730808684066{padding-top: 40px !important;padding-bottom: 20px !important;}&#8221;]\n<h6 id=\"title4\">Soluci\u00f3n\/Workaround_<\/h6>\n[\/vc_column_text][vc_column_text]\n<div class=\"container\">\n<div class=\"row\">\n<div class=\"kb-content col-xs-12\">\n<div id=\"accordion\" class=\"panel-group\" role=\"tablist\" aria-multiselectable=\"true\">\n<div class=\"panel panel-default\">\n<div id=\"kbki-Workaround\" class=\"panel-collapse collapse in\" role=\"tabpanel\" aria-labelledby=\"headingThree\">\n<div class=\"panel-body\">\n<table class=\"htmlDetailElementTable\" border=\"0\" cellspacing=\"0\" cellpadding=\"0\">\n<tbody>\n<tr>\n<td>\n<div id=\"j_id0:PandaTemplate:j_id55:j_id56:j_id77j_id0:PandaTemplate:j_id55:j_id56:j_id77_00N0H00000KBJsF_div\" class=\"sfdc_richtext\">\n<p>Sigue estos pasos para aplicar el hotfix en el equipo afectado. Si despu\u00e9s de aplicar el hotfix se sigue detectando Trj\/RansomDecoy.A, contacta con Soporte T\u00e9cnico.<\/p>\n<ol>\n<li>Descarga y guarda el archivo de hotfix en el equipo:<br \/>\n<a href=\"https:\/\/www.pandasecurity.com\/resources\/sop\/pad\/hf-wgua4287-wpdecoy-systemprocess.exe\" target=\"_blank\" rel=\"noopener\">hf-wgua4287-wpdecoy-systemprocess.exe<\/a><\/li>\n<li>Haz doble clic en el archivo descargado.<\/li>\n<li>La instalaci\u00f3n del hotfix no requiere reiniciar el equipo. Sin embargo, en determinadas circunstancias, es posible que solicite reiniciar el equipo para que la aplicaci\u00f3n del hotfix sea efectiva. Si no es posible reiniciar el equipo inmediatamente, selecciona NO en la pantalla de reinicio. De este modo, se pospondr\u00c3\u00a1 la aplicaci\u00f3n del hotfix hasta el siguiente reinicio del sistema.<\/li>\n<\/ol>\n<p>NOTA: Para instalar la versi\u00f3n desatendida o silenciosa del hotfix, pulsa\u00a0<a href=\"https:\/\/www.pandasecurity.com\/resources\/sop\/pad\/hfs-wgua4287-wpdecoy-systemprocess.exe\" target=\"_blank\" rel=\"noopener\">aqu\u00ed<\/a>. El hotfix se aplicar\u00e1 en el siguiente reinicio del equipo.<\/p>\n<p><strong>Registro de Cambios<\/strong><br \/>\nA continuaci\u00f3n se detallan los cambios que incorpora el hotfix.<\/p>\n<p><strong>Versiones afectadas<\/strong><\/p>\n<p>Desde v8.00.22.0010 hasta v8.00.23.0001\u00a0 (inclusive)<\/p>\n<p>Para conocer la versi\u00f3n de tu producto Advanced EPDR\/EDR, consulta <a href=\"https:\/\/www.cytomic.ai\/soporte\/id-700086\/\" target=\"_blank\" rel=\"noopener\">este art\u00ed\u00adculo<\/a>.<\/p>\n<p><strong>Detalles de archivo<\/strong><br \/>\nEl hotfix actualiza el siguiente archivo:<\/p>\n<table border=\"1\" width=\"772\">\n<tbody>\n<tr>\n<td colspan=\"1\" rowspan=\"1\"><strong>Nombre del archivo<\/strong><\/td>\n<td colspan=\"1\" rowspan=\"1\"><strong>Ubicaci\u00f3n<\/strong><\/td>\n<td colspan=\"1\" rowspan=\"1\"><strong>Versi\u00f3n del archivo<\/strong><\/td>\n<td colspan=\"1\" rowspan=\"1\"><strong>Fecha de modificaci\u00f3n<\/strong><\/td>\n<td colspan=\"1\" rowspan=\"1\"><strong>Versi\u00f3n que incluye hotfix<br \/>\n<\/strong><\/td>\n<\/tr>\n<tr>\n<td colspan=\"1\" rowspan=\"1\">WPDecoy.dll<\/td>\n<td colspan=\"1\" rowspan=\"1\">C:\\Program Files (x86)\\Panda Security\\WAC\\WPDecoy.dll<\/td>\n<td colspan=\"1\" rowspan=\"1\">2.1.0.22<\/td>\n<td colspan=\"1\" rowspan=\"1\">October 14th, 2024<\/td>\n<td colspan=\"1\" rowspan=\"1\">Superiores a v8.00.22.0022<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<p><strong>Verificar Aplicaci\u00f3n del Hotfix<\/strong><br \/>\nPara comprobar la correcta aplicaci\u00f3n del hotfix, consulta la versi\u00f3n del archivo (en la secci\u00f3n\u00a0<strong>Detalles del archivo<\/strong>) o verifica el valor de las siguientes entradas de Registro:<\/p>\n<table border=\"1\" width=\"1034\">\n<tbody>\n<tr>\n<td colspan=\"2\" rowspan=\"1\"><strong>Arquitectura de 32 bits<\/strong><\/td>\n<td colspan=\"2\" rowspan=\"1\"><strong>Arquitectura de 64 bits<\/strong><\/td>\n<\/tr>\n<tr>\n<td colspan=\"1\" rowspan=\"1\"><strong>Clave de Registro<\/strong><\/td>\n<td colspan=\"1\" rowspan=\"1\"><strong>Valor<\/strong><\/td>\n<td colspan=\"1\" rowspan=\"1\"><strong>Clave de Registro<\/strong><\/td>\n<td colspan=\"1\" rowspan=\"1\"><strong>Valor<\/strong><\/td>\n<\/tr>\n<tr>\n<td colspan=\"1\" rowspan=\"1\">HKEY_LOCAL_MACHINE\\SOFTWARE\\Panda Software\\Setup\\Hotfix history\\<strong>HF_WPDecoy<\/strong><\/td>\n<td colspan=\"1\" rowspan=\"1\"><strong>Revision [REG_DWORD]<\/strong><\/p>\n<p>8<\/td>\n<td colspan=\"1\" rowspan=\"1\">HKEY_LOCAL_MACHINE\\SOFTWARE\\WOW6432Node\\Panda Software\\Setup\\Hotfix history\\<strong>HF_WPDecoy<\/strong><\/td>\n<td colspan=\"1\" rowspan=\"1\"><strong>Revision [REG_DWORD]<\/strong><\/p>\n<p>8<\/td>\n<\/tr>\n<tr>\n<td colspan=\"1\" rowspan=\"1\">HKEY_LOCAL_MACHINE\\SOFTWARE\\Panda Software\\Setup\\Hotfix history\\<strong>HF_WPDecoy<\/strong><\/td>\n<td colspan=\"1\" rowspan=\"1\"><strong>Result [REG_DWORD]<\/strong><\/p>\n<p>0 = Success<strong><br \/>\n<\/strong>1 = Not Applied<strong><br \/>\n<\/strong>2 = Error<strong><br \/>\n<\/strong>9 = On Reboot Operation<\/td>\n<td colspan=\"1\" rowspan=\"1\">HKEY_LOCAL_MACHINE\\SOFTWARE\\WOW6432Node\\Panda Software\\Setup\\Hotfix history\\<strong>HF_WPDecoy<\/strong><\/td>\n<td colspan=\"1\" rowspan=\"1\"><strong>Result [REG_DWORD]<\/strong><\/p>\n<p>0 = Success<br \/>\n1 = Not Applied<br \/>\n2 = Error<br \/>\n9 = On Reboot Operation<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<p>&nbsp;<\/p>\n<\/div>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<\/div>\n<\/div>\n<\/div>\n<\/div>\n<\/div>\n<\/div>\n<\/div>\n[\/vc_column_text][\/vc_column][\/vc_row]\n","protected":false},"excerpt":{"rendered":"<p>[vc_row type=&#8221;full_width_background&#8221; full_screen_row_position=&#8221;middle&#8221; column_margin=&#8221;default&#8221; equal_height=&#8221;yes&#8221; content_placement=&#8221;middle&#8221; column_direction=&#8221;default&#8221; column_direction_tablet=&#8221;default&#8221; column_direction_phone=&#8221;default&#8221; bg_color=&#8221;#7e5994&#8243; scene_position=&#8221;center&#8221; top_padding=&#8221;12&#8243; bottom_padding=&#8221;12&#8243; text_color=&#8221;light&#8221; text_align=&#8221;left&#8221; row_border_radius=&#8221;none&#8221; row_border_radius_applies=&#8221;bg&#8221; overlay_strength=&#8221;0.3&#8243; gradient_direction=&#8221;left_to_right&#8221; shape_divider_position=&#8221;bottom&#8221; bg_image_animation=&#8221;none&#8221; shape_type=&#8221;&#8221;][vc_column column_padding=&#8221;no-extra-padding&#8221; column_padding_tablet=&#8221;inherit&#8221; column_padding_phone=&#8221;inherit&#8221; column_padding_position=&#8221;all&#8221; background_color_opacity=&#8221;1&#8243; background_hover_color_opacity=&#8221;1&#8243; column_shadow=&#8221;none&#8221; column_border_radius=&#8221;none&#8221;&#8230;<\/p>\n","protected":false},"author":4,"featured_media":414,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"inline_featured_image":false,"footnotes":""},"categories":[32,495,516,33,496,518,27],"tags":[],"class_list":{"0":"post-8506","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-edr","8":"category-edr-problemas-conocidos","9":"category-advanced-edr-problemas-conocidos-solucionados-en-v8-00-24-x","10":"category-epdr","11":"category-advanced-epdr-problemas-conocidos","12":"category-advanced-epdr-problemas-conocidos-solucionados-en-v8-00-24-x","13":"category-soporte"},"_links":{"self":[{"href":"https:\/\/www.cytomic.ai\/es\/wp-json\/wp\/v2\/posts\/8506","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.cytomic.ai\/es\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.cytomic.ai\/es\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.cytomic.ai\/es\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"https:\/\/www.cytomic.ai\/es\/wp-json\/wp\/v2\/comments?post=8506"}],"version-history":[{"count":3,"href":"https:\/\/www.cytomic.ai\/es\/wp-json\/wp\/v2\/posts\/8506\/revisions"}],"predecessor-version":[{"id":8924,"href":"https:\/\/www.cytomic.ai\/es\/wp-json\/wp\/v2\/posts\/8506\/revisions\/8924"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.cytomic.ai\/es\/wp-json\/wp\/v2\/media\/414"}],"wp:attachment":[{"href":"https:\/\/www.cytomic.ai\/es\/wp-json\/wp\/v2\/media?parent=8506"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.cytomic.ai\/es\/wp-json\/wp\/v2\/categories?post=8506"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.cytomic.ai\/es\/wp-json\/wp\/v2\/tags?post=8506"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}