Hello,

Windows 10 Agents are experiencing an issue where Windows Defender is blocking the Agent installation due to a trojan detection. We believe this is a false positive.

The trojan, Script/Phonzy.A!ml, will be detected during the decompression process in sysmon_eid_1.ini.

thanks;
Ole