Hi, One of my SAV client wasn't have the latest defs and got infected with Downadup.B. Later I upgraded the SAV version and definitions, I can see the below error message in 7.5 recent client logs. Any idea what does this mean ?
The present default action is to 0x22block0x22 communications - C:\WINDOWS\system32\lsass.exe
This client was alerted in webproxy logs for continuously contacting some known malicious links