Bitdefender blocking UUP Dump
I had turned off Bitdefender Shield in “Protection Features > Antivirus > Advanced > Bitdefender Shield before starting UUPDump, but it still blocked UUPDump. Copy of Notifications follow:
Bitdefender Shield in “Protection Features > Antivirus > Advanced > Bitdefender Shield before starting UUPDump.
Potentially malicious application blocked an hour ago
Feature: Advanced Threat Defense
Application cmd.exe has been detected as potentially malicious and was blocked. Application path: C:\Windows\System32\cmd.exe Command line parameters: "C:\WINDOWS\System32\cmd.exe" /C "C:\UUPDump\uup_download_windows.cmd" Detection ID: SuspiciousBehavior.29A1ABF20922DD85.
Infected file detected an hour ago
Feature: Antivirus
Bitdefender moved a threat to quarantine. File name: C:\UUPDump\uup_download_windows.cmd. It is recommended that you run a System Scan to make sure your system is clean
I restored the file from quarantine and the program then ran.
Please add UUPDump to the your allowed list, since it is a very popular utility.
Other than the restored file being apparently now exempt from scanning, is there anything else I should I do in adding Exceptions besides the folder C:\UUPDump and file uup_download_windows.cmd that I just added, to Bitdefender to prevent future problems?
Comments
-
Hello @dagar7,
I would recommend to submit a sample to the Bitdefender Labs for whitelisting. You can use the form available in the article below:
Let us know how it goes.
Regards
Premium Security & Bitdefender Endpoint Security Tools user
1 -
Hello.
In addition to what @Alexandru_BD said, you could do the following steps:
First, take screenshot(s) of the issue,
create a log file on your Windows device using Bitdefender Support Tool, by following these steps:
and
create a log file on your Windows device using BDsysLog, by following these steps:
Next, contact Bitdefender Consumer Support by e-mail:
or
with short description of the issue.
After that, you will get an automated reply by the Bitdefender Customer Care Team, with your ticket number.
Now, in reply to that automated reply, you can send the screenshot(s) you already took and the log files you already created in the first step.
Since you are all done, just wait for the support engineers to investigate your issue and find a solution to fix the issue.
Remember that the screenshot(s) and the log files will help a lot to the support engineers for better and faster investigation on your issue and finding a solution.
Regards.
0 -
Temporally turn off Advanced Thread Defense protection module before running UUP dump cmd.
ATD having special algorithm that is not very friendly to some scripts that use various Powershell/cmd commands.
1 -
I submitted a sample for white listings as you recommended. I have now done testing on another PC and I can download and create and ISO from UUPDump on either one. My procedure now is: Bitdefender “Advanced Threat Defense” turned OFF and Bitdefender Shield turned OFF. Added Exceptions to Bitdefender for C:\uupdump folder and C:\UUPDump\uup_download_windows.cmd.
Thanks to @stoppwdmgrads for suggestion about turning off Advanced Threat Defense
1