Malware Detection and Removal with WithSecure EDR
Bonjour,
Je voudrais savoir si les malwares qui sont détectés par l'EDR WithSecure sont également supprimés par celui-ci ou simplement détecté ?
Voici une image :
Merci d'avance de votre réponse,
Answers
-
Hi @Nganga
At the moment, we only have English support available to respond to inquiries. We are concerned that we might misunderstand your original message if we continue relying on Google Translate. Please assist us by posting your query in English. Thank you for your understanding.
0 -
@Nganga wants to know if the malware detected by WithSecure EDR is also removed by it or just detected.
0 -
I would like to know if the malware detected by WithSecure EDR is also removed by it, or if it is simply detected?
0 -
Hi @Nganga
WithSecure Elements EDR (Endpoint Detection and Response) focuses primarily on detection and investigation of malware, not necessarily removal. Here's a breakdown:
- Detection: WithSecure EDR excels at identifying suspicious activity and potential malware threats on your system. It analyzes various factors like file behavior, network traffic, and system registry changes to pinpoint threats.
- Removal: While EDR might not always remove malware automatically, it provides valuable information to help you take action. You might see options within the EDR console to quarantine or isolate the detected malware. Additionally, the information gathered by EDR can help you choose the most appropriate removal tool or guide you through manual removal steps.
Here's what WithSecure EDR can typically do to help with malware removal:
- Identify the malware: It provides details about the detected threat, including its name, location, and potential impact.
- Contain the threat: EDR might offer options to quarantine the infected files or restrict network access, preventing further damage.
- Guide remediation: Based on the threat analysis, EDR can suggest appropriate removal tools or offer step-by-step instructions for manual removal.
Here's what you might need to do for removal:
- Manual Removal: With the information provided by WithSecure EDR, you can use security tools like specialized Elements Endpoint Protection, Computers Edition to attempt removal.
- Security Professional: If the situation seems complex, consider seeking help from an IT security professional who can leverage EDR findings and implement a safe and effective removal strategy.
In summary:
- WithSecure EDR focuses on detection and investigation.
- It may offer options for quarantine or isolation.
- You might need to use additional Elements Endpoint tools or seek professional help for removal.
For reference:
Best regards,
Sethu
Community Moderator | Technical Support Engineer
WithSecure™0
Categories
- All Categories
- 4.7K WithSecure Community
- 3.6K Products
- 1 Get Support