Hi,
We see that when a user has malware on a redirected folder which is available offline SCEP removes the file from the CSC path, e.g.
C:\Windows\CSC\v2.0.6\namespace\...\...\file.exe
But then the file just re-appears, presumably because removing a file in this way from the local cache makes the client think that the file is missing so rather than the file getting removed from the actual network share Windows just seems to sync it back again.
Anyone else see this behavior?