When you obtain the Suspicious Objects lists from Control Manager (TMCM), OSCE 11.0 Service Pack 1 (SP1) does not subscribe to the User-Defined Suspicious File List and cannot even synchronize the said list.
OfficeScan can subscribe and synchronize to TMCM in order to get the Suspicious File List. However, TMCM has two (2) sources where it acquires the necessary information.
- User-Defined SHA1 File List
- Registered Deep Discovery family products such as Deep Discovery Analyzer (DDAN) and Deep Discovery Inspector (DDI), which provides the FilterCRC File list
As of this release, OSCE scan engine only supports FilterCRC file list. Therefore, the User-Defined file lists are currently not used.