F-Secure 2013 Goes the Extra Mile...

So I'm beta testing F-Secure Computer Security 2013 on my Win 8 x64 machine. I also run lubuntu 32 bit in Virtualbox on my other monitor. Well, with no intervention of my own, F-Secure is checking the links I open in SRWare Iron in virtual Lubuntu. Green checkboxes that I can click on to get the F-Secure url info. As far as I can tell, that's the first time my security suite also covered something I was running virtually, in an otherwise unsupported browser type on an unsupported OS. Anybody else on here know F-Secure better than I do know how this is possible?

 

It isn't extraordinary I think. I've had things like downloads on my VM(VMware) that wouldn't complete and when I checked my host the AV on my host detecting things I downloaded on VMware and blocked them. Probably F-Secure inserts the checkmarks on network traffic level so they work independently from browsers and the dev team don't have to update and test addons for a whole list of browsers on every browser update.

 

Thats nothing unusual or strange. avast! does that ever since they've introduced HTTP scanner years ago. It's scanning ALL clicked links, doesn't matter if app is virtualized in Sandboxie or VMWare or any other VM system. It'll get intercepted during HTTP transaction.

 

Nothing unusual. VM's have their own driver that runs through the NIC. If you go into Network Connection Properties you can see the IPv4, IPv6 drivers, most likely a firewall and some VMWare items. Everything that passes through that connection gets scanned.

 

Hmm. I didn't know this stuff. Thanks guys.