Best Of
Re: F-Secure client 14.10 push - removing previous version 13.x
Hi krisvdv,
The Unique ID column appears under the "Host Properties" tab and not under "Centralized management". You should be able to add it there.
Regards,
Monika
MonikaL
Re: Missing Keyword Filter FSESS 14.0
Hi KN,
Please provide me your F-Secure Account details (Account name, Account ID) in a private message in order for me to submit this as a feature request to the developers under your account.
Regards,
Monika
MonikaL
Re: F-Secure interfering with visual studio code
Hi,
Could you please provide details of the F-Secure product you are using.
Regards,
Monika
MonikaL
Re: F-Secure: left hand doesn't know what the right hand is doing? (PSB remote FSDIAG confusion)
Hi Tamas,
Thank you for bringing this to our notice. Please be informed that we are currently checking on this with the respective team.
I will update you on the progress.
Thanks.
MonikaL
Re: Service in f secure client 14.02
Hi Sonu,
Here is a description of all services for Client Security and their functionality:
F-Secure Hoster -> Product business logic, including product updates, telemetry, settings & configurations with SYSTEM privileges.
F-Secure Hoster (Restricted) -> Product business logic, including product updates, telemetry, settings & configurations with NETWORK SERVICE privileges.
F-Secure Ultralight Hoster -> Anti-malware scanning logic, including real-time scanning, Online Safity, DeepGuard, DataGuard and Application Control with SYSTEM privileges.
F-Secure Ultralight Network Hoster -> Anti-malware scanning logic, including real-time scanning, Online Safity, DeepGuard, DataGuard and Application Control with NETWORK SERVICE privileges.
F-Secure Ultralight ORSP client -> Real-time protection network query service (NETWORK SERVICE).
F-Secure Ultralight Protected Hoster -> Scanning integration to Windows Security Center, runs as protected process (protected by Windows).
F-Secure Device Control - F-Secure Device Control Daemon service - provides a possibility to block/restrict access to local devices.
Regards,
Monika
MonikaL
Re: fshdll32 trying to send to Microsoft on port 25
Hi Bulbous,
The Policy Manager uses SMTP Protocol for alert sending, and that could be the reason you found outgoing traffic on port 25, and this traffic is managed by the Policy Manager.
The fshdll32.exe ia a host process for 32 bit components, and is basically to minimize created processes. Port 25 is the default SMTP non-encrypted port and so it cannot be changed.
Regards,
Monika
MonikaL
Re: Only obsolote advice found for ensuring F-Secure PSB and Teamviewer compatibility.
Hi Tamas,
Thanks for the post. We checked and found out that fsamsi is loaded into the TeamViewer process as seen from the procmon logs shared by the customer. It might be that TeamViewer started to use such a mechanism starting from version 15 and this activity looks suspicious for the antivirus engine so additional checks are taking place.
As the TeamViewer is trusted software by the customer, adding its path to the exclusion list looks like a logical decision to prevent these extra scans.
However our team is still checking on this and we will update you back on how it goes.
Could you please let us know what is the output after making the exclusion. You can continue replying in the ticket. We are waiting for the debug logs from the customer so that our support team can look into it and the labs team will then work to provide a permanent fix to this.
Regards,
Monika
MonikaL