Cyrus Grissom 0 Posted September 8, 2014 Posted September 8, 2014 Hi, I have Endpoint Security running on a client - all is up-to-date. In ERA, I keep getting warnings in the Threat Log from from the Outlook Email filter for various trojans, but the action field just says "Contained infected files". How is that an action?! Was the email deleted? Was the trojan deleted? or quarantined? Many thanks in advance.
Administrators Solution Marcos 5,735 Posted September 8, 2014 Administrators Solution Posted September 8, 2014 Email protection deletes infected emails by default. This is because email is in fact scanned as an archive with its parts scanned separately. When I set the action to ignore malware, there was no action listed. We'll try to find a way how to log the final action taken on emails to make it clear for users.
Recommended Posts