Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 4 replies
  • Subscribers 1 subscriber
  • Views 3705 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos Anti-Virus flagging ZoneAlarm file as suspicious

carina

Sophos Anti-Virus 7.6.16 (with latest updates) has sent a file to quarantine which apparently belongs to ZoneAlarm.

The file in question is C:\Program Files\Checkpoint\ZAForceField\Plugins\ISWHRSRV.dll.

Sophos identifies it as suspicious, of type Sus/VB-AM.

I can find no reference to either ISWHRSRV.dll or Sus/VB-AM on either the Sophos or ZoneAlarm websites.

Does anybody know if this is really a suspicious file or is it a false trip from Sophos ?

:1463


This thread was automatically locked due to age.
Parents
  • 0

    Suspicious Files and Suspicious Behaviour differ in regard how you can treat them with Sophos:

    * Suspicious Behaviour: off, detect/alert only mode; block

    * Suspicious files: usually malware with no IDE yet. File! Block, delete, do nothing in the Cleanup section of the AV policy

    :1768
Reply
  • 0

    Suspicious Files and Suspicious Behaviour differ in regard how you can treat them with Sophos:

    * Suspicious Behaviour: off, detect/alert only mode; block

    * Suspicious files: usually malware with no IDE yet. File! Block, delete, do nothing in the Cleanup section of the AV policy

    :1768
Children
No Data
Unfiltered HTML