This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
humt
Participant
‎2019-10-27 03:16 AM

Malware deducted

I am using the Checkpoint 730 with latest firmware 86. 

 

 

z11ab.png

 

Few queries in my mind 

1) Malware has been Infected. I am not sure it has been removed automatic or not. 

2) How system has been infected when internet is pass through the firewall only.

3) I have scan with kaspersky Antivirus but the infected system has been not deducted the malware. So i have to install Bitdefender for remove the malware because there are 4 results which deducted as Malware according to Virustotal?

k1.png

 

 

Sorry if this is in wrong category section, please move this thread to another category. 

 

0 Kudos
4 Replies
Nick_Doropoulos
Advisor
‎2019-10-27 04:57 AM

Hello,

Assuming you have eliminated the possibility of a false positive by consulting VirusTotal and Hybrid Analysis, please see answers to your questions below:

1) Check Point have created sk106019 to cleanup infected systems. Feel free to follow it and advise results.

2) There are usually multiple infiltration channels through which malware can be delivered. The affected host could have been infected in a number of different ways; including from internally as well. Since you use Bitdefender for EDR, I would advise that you investigate the delivery method as it should be shown in an illustrated, graphic way (that is something I have done myself in the past).

3) You can remove it with Bitdefender but again, you should also be able to achieve the same result with the sk mentioned in step 1.

I hope this helps.

0 Kudos
humt
Participant
‎2019-10-31 06:28 AM
In response to Nick_Doropoulos

This is a Malware and how would it enter into system. This is main issue for me. I have send the details to Kasperksy Lab also. And they told this has been included as virus now.  I have to format the system now because it is being corrupted the system firewall also.

0 Kudos
G_W_Albrecht
Legend Legend
Legend
‎2019-10-31 07:41 AM

What do you mean with latest firmware 86 ? Latest firmware is 77.20.87, newest build is the R77.20.87 Jumbo Hotfix Accumulator Build 2960 and is available in sk153433.

CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist
0 Kudos
humt
Participant
‎2019-11-01 07:49 AM
In response to G_W_Albrecht

Strange it is not updating automatic. I have checked it for manually update but it shows 86 is only the latest version. Let me download and update manually. Thanks

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events
    Top