Announcement: New Knowledge Base
4 June 2020: We are pleased to announce the launch of a new Knowledge Base, Changelogs for Business Security Products, where you can find more details, such as bugfixes or new features, about the most recent releases of our business-related products.
Spyware not being quarantined?
My environment is: F-Secure Policy Manager v13.11.84018, clients are F-Secure Client Security Standard, v13.10.215.
I get a fair amout of this kind of stuff:
Security alert: Spyware Alert!
From: Root/COMM-HP5700T, 2018-05-02 11:04:09 -04:00
Details: Spyware detected: Type: riskware Family: system Name: JS:Application.Redirects.B Object: C:\Users\Sarah Jean\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnjkhgdcdejelbjfnjegcohimelegbkd\6.4_0\js\popup\popup.js
System detects the Spyware, but does not quarantine it. I believe it gives the user a pop-up dialogue with options, but have not been able to confirm that.
In the Policy Manager, Settings, Realtime Scanning - all options are set to Custom: Quarantine Automatically. (Both settings, both servers and workstations)
Should I look to some other component in the PM to change the behaviour? Or set to the Spyware custom action to Remove..?
Advice is appreciated. This one has been annoying me for months across several clients! Thanks very much!