Quarantined tar file

jun · 2024-10-02T08:31:33+00:00

There was an error rendering this rich post.

Why are quarantined tar files being detected as malware during scans?

This issue has been occurring with multiple files since yesterday.

The file is located at the following path.

Trojan-Downloader:W97M/Dridex.X|None|On_demand_scanner.file_infection.nothing|C:\ProgramData\F-Secure\Quarantine\Repository\TAR\00000001.tar[1] 00000000

Find more posts tagged with

Scanning

EPP

Endpoint Protection

Accepted answers

jun

I contacted WithSecure support, and they responded that it was a bug. On the support news page of the Japanese branch, where I received the response, there is a news post titled "[Notice] Regarding Detection of Quarantine Folder."

https://www.withsecure.com/jp-ja/support/support-news

I was instructed to register the relevant folder as an exclusion folder, so I have set it up accordingly and plan to monitor the situation.

All comments

LiselotteP

Hi @jun - thanks for getting back to this post! This will help other users having the same trouble too 😊

jun

https://www.withsecure.com/jp-ja/support/support-news

I was instructed to register the relevant folder as an exclusion folder, so I have set it up accordingly and plan to monitor the situation.