ArcabitHEUR.JS.Trojan.b20160830
CyrenJS/Locky.AX!Eldorado20160830
DrWebSCRIPT.Virus20160829
F-ProtJS/Locky.AX!Eldorado20160830
K7AntiVirusTrojan ( 004f43681 )20160829
K7GWTrojan ( 004f43681 )20160830
KasperskyHEUR:Trojan-Downloader.Script.Generic20160830
NANO-AntivirusTrojan.Script.Heuristic-js.iacgm20160830
RisingTrojan.Script.WSF.Downloader.c20160830
SophosMal/DrodZp-A20160830
That's a result of online scan at https://www.virustotal.com.
I've attached suspicious zip file, which was scanned by Webroot on computer with no threat found.
I suspect that Webroot might react somehow if I tried to open that file, BUT - who knows? I don't that's why I have to use that online service to be sure.
Why Webroot doesn't give me that possibility, do I have to take a risk every time to find out if it works?
Cheers,
Marek
Solved
Webroot SA doesn't detect a trojan/virus in zip file.
+3Best answer by DanP
That is the expected behaviour - the script itself would not be detected but the malicious payload that would be downloaded by the script if you were to run it should be detected.
-Dan
View original-Dan
Hello ?,
Welcome to the Webroot Community.
Webroot works differently from other AV's. While the file in question may exist on your computer, if it is lying dormant Webroot will monitor the file and if it becomes active Webroot will intervene instantly.
Please have a look at this video for information from Webroot regarding this (particularly at 0:24, where this topic is mentioned).
Hope this info helps, :)
BD
Welcome to the Webroot Community.
Webroot works differently from other AV's. While the file in question may exist on your computer, if it is lying dormant Webroot will monitor the file and if it becomes active Webroot will intervene instantly.
Please have a look at this video for information from Webroot regarding this (particularly at 0:24, where this topic is mentioned).
Hope this info helps, :)
BD
+56Hello,
Webroot SecureAnywhere doesn't concern itself with JS (Java Scripts) as they are not Malicious and there are good ones as well. Now the ones that are bad try to download the Payload and at that time WSA will jump on the Malware the JS tries to download and run so WSA's Realtime Shield is very strong with the added very large Webroot BrightCloud Database so you are quite safe using WSA. See here for some other interesting info: https://community.webroot.com/t5/Security-Industry-News/How-I-got-tech-support-scammers-infected-with-Locky/td-p/263513
Thanks,
Daniel 😉
Webroot SecureAnywhere doesn't concern itself with JS (Java Scripts) as they are not Malicious and there are good ones as well. Now the ones that are bad try to download the Payload and at that time WSA will jump on the Malware the JS tries to download and run so WSA's Realtime Shield is very strong with the added very large Webroot BrightCloud Database so you are quite safe using WSA. See here for some other interesting info: https://community.webroot.com/t5/Security-Industry-News/How-I-got-tech-support-scammers-infected-with-Locky/td-p/263513
Thanks,
Daniel 😉
+3"...so you are quite safe using WSA".
The word 'quite' makes me wondering if it means 100% or less.
Should I try to go ahead with that zip file to find out?
Yes or no?
Marek
The word 'quite' makes me wondering if it means 100% or less.
Should I try to go ahead with that zip file to find out?
Yes or no?
Marek
+56If you want education then I will give you some! Just delete them and why take any chance as no one product is 100%.@ wrote:
"...so you are quite safe using WSA".
The word 'quite' makes me wondering if it means 100% or less.
Should I try to go ahead with that zip file to find out?
Yes or no?
Marek
Daniel
+35- OpenText Employee
- 515 replies
- Answer
That is the expected behaviour - the script itself would not be detected but the malicious payload that would be downloaded by the script if you were to run it should be detected.
-Dan
-Dan
Webroot Threat Research
+3Was asking out of curiosity.
I get things like that not so often so it's not a big deal.
After years of using BD, Kaspersky and Eset I have no more problems with viruses and other garbage now and I forget about being protected by antivirus, which is all about a great soft like WB.
Thank you guys.
Marek
I get things like that not so often so it's not a big deal.
After years of using BD, Kaspersky and Eset I have no more problems with viruses and other garbage now and I forget about being protected by antivirus, which is all about a great soft like WB.
Thank you guys.
Marek
Reply
Login to the community
No account yet? Create an account
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.