To stay updated on your favorite discussions, please create an account or log in. Then, click the Bookmark icon to subscribe and receive notifications.

Quarantined tar file

jun
jun Member Posts: 2 Security Scout
in Elements Endpoint Protection (EPP)

Why are quarantined tar files being detected as malware during scans?

This issue has been occurring with multiple files since yesterday.

The file is located at the following path.

Trojan-Downloader:W97M/Dridex.X|None|On_demand_scanner.file_infection.nothing|C:\ProgramData\F-Secure\Quarantine\Repository\TAR\00000001.tar[1] 00000000

Tagged:

Best Answer

  • jun
    jun Member Posts: 2 Security Scout
    Solved

    I contacted WithSecure support, and they responded that it was a bug. On the support news page of the Japanese branch, where I received the response, there is a news post titled "[Notice] Regarding Detection of Quarantine Folder."

    https://www.withsecure.com/jp-ja/support/support-news

    I was instructed to register the relevant folder as an exclusion folder, so I have set it up accordingly and plan to monitor the situation.

Answers

  • LiselotteP
    LiselotteP Staff, Community Manager Posts: 417 W/ Community Manager

    Hi @jun - thanks for getting back to this post! This will help other users having the same trouble too 😊

Categories