Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 5 replies
  • Subscribers 1 subscriber
  • Views 1755 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

:mad:ASG Dual Scan can not detect Trojan!!

Rapt0r
How come dual scan failed to detect this agentspro1.com/.../x-javascript"
ASG:7.401
Pattern version:9503

Client Anti-virus detected this as a Trojan

Virus Total Result 
AhnLab-V3  5.0.0.2  2009.04.23     VBS/Clicker 
BitDefender 7.2      2009.04.23  Trojan.Clicker.CM
GData  19      2009.04.23  Trojan.Clicker.CM
Microsoft  1.4602   2009.04.22  Trojan:JS/Agent.FA
nProtect  2009.1.8.0  2009.04.23  Trojan.Clicker.CM

"Dual Scan uses two different scan engines for an extra level of security" this is  what mentioned in ASG.

The real challenge is to correlate such malicious URLs visited by the users to block from future infection. ASG anti virus not doing its job.

Please comment


This thread was automatically locked due to age.
Parents
  • 0
    It is not good practice to skip AV check for exception URL list. It could be seen straight forward as exceptions=""
    I think Astaro has to take blame on providing poor performing AV vendor.
    Raising a ticket would be an appropriate step to make aware of such security lapse. After all Astaro's product improvement is their customers feedback, in return of no value.
  • 0 in reply to Rapt0r
    Well, Avira is almost-universally acclaimed as the top AV engine.  Even if they are 2nd in some evaluations, I don't think there's much more to do.  That's why I suggested that you look for an unintended effect of some configuration.

    As for "Best Practice", there are many trusted sites that do not function if anti-virus is applied.

    If you can submit a ticket, then I would urge you to do so.  An Astaro engineer might find the cause of the issue.

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Reply
  • 0 in reply to Rapt0r
    Well, Avira is almost-universally acclaimed as the top AV engine.  Even if they are 2nd in some evaluations, I don't think there's much more to do.  That's why I suggested that you look for an unintended effect of some configuration.

    As for "Best Practice", there are many trusted sites that do not function if anti-virus is applied.

    If you can submit a ticket, then I would urge you to do so.  An Astaro engineer might find the cause of the issue.

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Children
No Data