Riskware/Ammyy is a generic detection for a type of grayware that arrives as an application installation package.
Below are typical actions done by this type of application:
- It attempts to connect to a remote operator.
- It may enable the remote operator to control the local machine and do following actions according to the user's configuration:
- View the user's screen
- Manage files
- Audio chat
- Remote control
- Check the main screen using the web interface for your FortiGate unit to ensure that the latest AV/NIDS database has been downloaded and installed on your system - if required, enable the "Allow Push Update" option.
- Quarantine/delete files that are detected and replace infected files with clean backup copies.