Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 3 replies
  • Subscribers 1 subscriber
  • Views 1285 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

trojan in zip not found

Ed.Kok
Hi,

a colleague showed me an email message with an attached ZIP.
Because it was obvious the message was spam (to us; apparently not to the ASG [:(] ) he did not open the zip.
In a protected environment I did check out the zip and discovered it contained a Trojan.Smoaler!gen1 the installed Symantec AV happily quarantined.

Clearly I'm disappointed with the Astaro AV scanning.
Why is Symantec able to find it and Astaro's AV isn't?

Ed


This thread was automatically locked due to age.
Parents
  • 0
    Thanks, Ed.  This is the exact reason we always recommend using anti-virus from different providers on each layer: servers, clients and the perimeter.  Avira (used by Astaro) doesn't show this on their website yet, and it appears that Symantec first published a signature for it only two days ago.  In all fairness, it should be noted that Avira has the highest marks for average response speed.

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to BAlfson
    Hi,
    you should consider yourself lucky that Symantec found the virus, most of the time our experience with Symantec is it lets the virus through and these are older virus. At the best it tells you about it but doesn't do anything.

    If you think I am being overly dramatic I have had 4 laptops with the same virus in 2 weeks. All had to be rebuilt.

    Ian M

    Our network interface is provided by our network provider, there isn't any Astaro software or hardware involved.
Reply
  • 0 in reply to BAlfson
    Hi,
    you should consider yourself lucky that Symantec found the virus, most of the time our experience with Symantec is it lets the virus through and these are older virus. At the best it tells you about it but doesn't do anything.

    If you think I am being overly dramatic I have had 4 laptops with the same virus in 2 weeks. All had to be rebuilt.

    Ian M

    Our network interface is provided by our network provider, there isn't any Astaro software or hardware involved.
Children
Cookie Information Banner