Spyware not being quarantined?
My environment is: F-Secure Policy Manager v13.11.84018, clients are F-Secure Client Security Standard, v13.10.215.
I get a fair amout of this kind of stuff:
Security alert: Spyware Alert!
From: Root/COMM-HP5700T, 2018-05-02 11:04:09 -04:00
Details: Spyware detected: Type: riskware Family: system Name: JS:Application.Redirects.B Object: C:\Users\Sarah Jean\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnjkhgdcdejelbjfnjegcohimelegbkd\6.4_0\js\popup\popup.js
System detects the Spyware, but does not quarantine it. I believe it gives the user a pop-up dialogue with options, but have not been able to confirm that.
In the Policy Manager, Settings, Realtime Scanning - all options are set to Custom: Quarantine Automatically. (Both settings, both servers and workstations)
Should I look to some other component in the PM to change the behaviour? Or set to the Spyware custom action to Remove..?
Advice is appreciated. This one has been annoying me for months across several clients! Thanks very much!