Windows 10 backup procedure triggers a quarantine action by F-Secure Total
I have a scheduled backup running in Windows 10 Pro, v. 22H2, build 19045.3324 once a week.
Lately, whenever the backup process starts to run, I get a message from F-Secure Total stating that a file has been put into quarantine. The path is always the same, the reason is always the same, but the filename differs (it is always 'Backup files xx.zip', though:
Path: C:\System Volume Information\Windows Backup\Staging\{66A6AF4E-1D96-4B4A-80DA-C7923BD374E5}
File: Backup files xx.zip
Reason: Heuristic.HEUR/Pumpar.Gen
As a result, the backup eventually fails, stating "Access denied".
Releasing the quarantined file from quarantine does not help.
I have run a manual virus check, but nothing was found.
What could be the cause of this problem?
Accepted Answers
-
Hello @Torspo1600
Thank you for your post.
We'd be happy to assist you by recommending that you submit the sample to our labs for investigation. Our dedicated Malware Analysts will carefully analyze it and reach out to you directly with their findings.
For detailed instructions on how to submit samples, you can refer to this link: How can I submit samples to F-Secure? - F-Secure Community
If the file you're dealing with is larger than 100MB, no worries. You can utilize the FTP for submission. Here's the link to guide you through the process: How do I submit a large FSDIAG file via FTP? - F-Secure Community
Should you need any further assistance or have questions, please don't hesitate to reach out.
Thank you, and have a wonderful day.
Firmy
Community Manager | F-Secure Community
🔐 Strengthening digital security through knowledge and collaboration
🌐 Explore our User Guides | Knowledge Base for self-help resources
💻 Empower yourself with Cybersecurity Insights and protect what matters
📢 Help Shape Our New Homepage! Share your input in our design survey. -
🚩 What Do You Think?
We’d love your thoughts on our fresh look! Quick survey, big impact!