Symantec Endpoint Protection Cloud Community

 View Only

  • 1.  How to remove virus inside .zip or .rar files

    Posted Oct 02, 2017 02:40 AM

    I have lot of files in .zip and .rar files but when i run scan it scan  .zip and .rar file and show that there are virus inside these file but it can not delete

    my question that how can i clean my .zip and .rar files without extract because i have thousands of .zip and .rar files i want to clean all these files but without extract

     



  • 2.  RE: How to remove virus inside .zip or .rar files

    Posted Oct 02, 2017 11:56 AM

    SEP uses decomposer signatures to automatically extract files from within compressed containers and scan them and remediate. If the file is encrypted or password protected than SEP won't touch it. It also be a case of SEP not having a decomposer signature. by default SEP scans three levels deep. So it may be one of these issues causing SEP not to be able to scan and remediate.



  • 3.  RE: How to remove virus inside .zip or .rar files

    Posted Oct 03, 2017 11:58 AM

    Hi Muhammad,

    Thanks for the post.  On a manual scan or scheduled scan SEP should be able to delete the malware from inside the .zip while leaving the .zip alone.  (It won't delete the whole archive, just the malware inside it.)

    If you are seeing other actions, perhaps post a log or open a case with Technical Support-?

     i have thousands of .zip and .rar files i want to clean all these files but without extract

    Can you provide more information - are those part of a mail server storage format or backup format or-?

     



  • 4.  RE: How to remove virus inside .zip or .rar files

    Posted Oct 04, 2017 11:39 AM

    Hi Muhammad,

    Just a ping to see if there is any more information available or if you have found your answer?  The thread is still marked "needs solution."



  • 5.  RE: How to remove virus inside .zip or .rar files

    Posted Dec 07, 2017 05:48 AM

    SEP scan .zip file and action is leave alone

    i want to delete this log because if the virus/ malware remove inside the zip file than this msg should not come again because when in next schedule SEP scan this file again this msg display

     



  • 6.  RE: How to remove virus inside .zip or .rar files

    Posted Dec 07, 2017 06:45 AM

    I'ts because SEP cannot open the zip file. You need to manually remove the file(s).



  • 7.  RE: How to remove virus inside .zip or .rar files

    Broadcom Employee
    Posted Dec 07, 2017 07:12 AM

    Hi,

    if the compressed zip archive is password protected, the SEP can't scan it and if your second action is Leave Alone, then you should see this.

    You have now two options:

    1) change the action from Leave alone to quarantaine (recommend if malware is possible inside) - Please adjust the quarantaine settings, that the client is able to quarantaine the file.

    2) identify the file on the affected machine and check it manual or better upload it to Symantec Security Response with the possible password!

    Hope this helps.



  • 8.  RE: How to remove virus inside .zip or .rar files

    Posted Dec 25, 2017 03:35 AM

    i have thousands of .zip file i can not do this manually

    i want to delete malware inside zip and in next scan it will not come (left alone)