How can I remove andr/xgen-vc? I did'nt find this malware in internet, exept in an Sophos help file. Several other antimalware does'nt find it at all. Is it a fake?
Thanks for kindly help
This thread was automatically locked due to age.
How can I remove andr/xgen-vc? I did'nt find this malware in internet, exept in an Sophos help file. Several other antimalware does'nt find it at all. Is it a fake?
Thanks for kindly help
Hi Joachim Hoster & Tim Krieger,
Anr/Xgen-vc is Sophos nomenclature for android based malwares, you may not find any reference with other AV vendors(As they might follow thier own naming methods) or othr sources.
May I know if you are using Central or On-premise version of Sophos Mobile control?
Tim Krieger- Thanks for the addtional information on this. Will it be possible to provide the log for the detection? (Navigate to Sophos Mobiel security > Menu > log >Check for Security assessment entry)
Regards,
Gowtham Mani
Community Support Engineer | Sophos Technical Support
Knowledge Base | @SophosSupport | Sign up for SMS Alerts
If a post solves your question use the 'This helped me' link.
Hi Joachim Hoster & Tim Krieger,
Anr/Xgen-vc is Sophos nomenclature for android based malwares, you may not find any reference with other AV vendors(As they might follow thier own naming methods) or othr sources.
May I know if you are using Central or On-premise version of Sophos Mobile control?
Tim Krieger- Thanks for the addtional information on this. Will it be possible to provide the log for the detection? (Navigate to Sophos Mobiel security > Menu > log >Check for Security assessment entry)
Regards,
Gowtham Mani
Community Support Engineer | Sophos Technical Support
Knowledge Base | @SophosSupport | Sign up for SMS Alerts
If a post solves your question use the 'This helped me' link.
I have the same problem since yesterday, when I started some updates manually. It keeps popping up with every automatic scan. But as Tim observed this is the system update which I cannot delete and Sophos doesn't let me.
In what is called in German "Protokoll" (I suppose this is what you mean by Menu > log ) it says it didn't find any threat or PUAs today.
I also installed another security app that didn't detect this"threat". So Sophos better update their database and help us!!!
Funny: is this only a problem in the German version of the app ???
Hi,
thanks for your answer. I for myself am using Sophos Mobile Security, so the Sophos freeware. I am not sure if this is the answer to your question if I am using Central or On-premise version of Sophos Mobile Control because I think there is a difference between Mobile Control and Mobile Security.
According to the log entry:
When I had a look in the log for that entry, I first could not find any entry where the detection of that malware was mentioned. The reason for this is, that there is no malware or PUA detected during the daily scheduled scan. But when I perform a manual scan the malware is detected. The according log entry is:
“Threat "Andr/Xgen-VC" was found in app "Update" (com.redstone.ota.ui)”
(I am using the German version of this app, so the text above is my own English translation, and so it might not be exact the same as in the English version of the app.)
Hi Tim Krieger,
This is something that we would like to investigate further with the logs from the respective device. The best course would be to open a support case (Anyone with a non-free version of Sophos Mobile security) so that we can move forward with this detection.
If Anyone already has a support case open, please DM the details.
Regards,
Gowtham Mani
Community Support Engineer | Sophos Technical Support
Knowledge Base | @SophosSupport | Sign up for SMS Alerts
If a post solves your question use the 'This helped me' link.
[#8244402] is my Web support query
Gertrud Szilinsky
Actually, I really liked the mobile app from Sophos.
I had an unsuccessful attempt to communicate directly with Sophos by phone and open a case. I tested several antimalware and installed Sophos one last time. After that I decided for another product.
Unfortunately, I can not serve with a logfile anymore.
I wish all concerned good luck in finding the cause for the wrong message, my first guess (see my beginning of this thread).
Regards,
Joachim Hoster
Hi everyone,
would it be possible to get details regarding the devices in use (Manufacturer & model) and the currently installed firmware version?
Our Labs team is currently investigating this issue and requires this information.
Thank you in advance
Stefan
Hi,
good to hear that you’re working on this issue. I am using the Gigaset GS270 plus with android version 7.0. The actual installed firmware version is “GIG_GS270_plus_S120”.
Earlier this morning I also communicated with Joachim Hoster via private message and so I know that he is also using the Gigaset GS270 plus with android version 7.0.
Regards,
Tim
Seems to be a Gigaset problem: I have a Gigaset GS170, Android 7.0, Build GIG_GS170_S110, Kernel 3.18.35+, Baseband-Version MOLY.LR9.W1444.MD.LWTG.MP.V110.5.P33 2017/11/14
[#8244402] Web support query won't help me, because it doesn't apply to the free version