TDR identifying Webroot as threat/score of 8
TDR is identifying a Webroot update (WRupdate146283765.exe) as an incident with a score of 8.
"C:\Program Files (x86)\Webroot\WRSA.exe" -ls -remupg=C:\Users\\AppData\Local\Temp\WRupdate146283765.exe -ju
I have the Webroot exclusions (2x) enabled on all hosts.
Is this because the executable is in the Users Temp folder?