This topic has been closed due to inactivity. If you would like to discuss this topic further, please start a new post.
You can reference this topic in your post by adding this link:
My environment is: F-Secure Policy Manager v13.11.84018, clients are F-Secure Client Security Standard, v13.10.215.
I get a fair amout of this kind of stuff:
Security alert: Spyware Alert!
From: Root/COMM-HP5700T, 2018-05-02 11:04:09 -04:00
Details: Spyware detected: Type: riskware Family: system Name: JS:Application.Redirects.B Object: C:\Users\Sarah Jean\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnjkhgdcdejelbjfnjegcohimelegbkd\6.4_0\js\popup\popup.js
System detects the Spyware, but does not quarantine it. I believe it gives the user a pop-up dialogue with options, but have not been able to confirm that.
In the Policy Manager, Settings, Realtime Scanning - all options are set to Custom: Quarantine Automatically. (Both settings, both servers and workstations)
Should I look to some other component in the PM to change the behaviour? Or set to the Spyware custom action to Remove..?
Advice is appreciated. This one has been annoying me for months across several clients! Thanks very much!
Could you, please, submit a sample for checking.
In some cases spyware/riskware can't be quarantined. But it's anyway blocked by our product.