Versions / Builds Affected
GFI MailEssentials 2014 and aboveStatus
ResolvedProblem Summary
The Bitdefender Virus Scanning Engine blocks macros when macro scanning has been disabled, shortly after an update took place.TT / JIRAID
2How to Identify
Confirm that the Macro option is disabled in the Configuration UI and that the reason for blocking was the Macro check, as illustrated below:
"info ","BitDefender Engine","VALUEID_VS_MACROOPTION: 0x2"
"info ","BitDefender Engine","VALUEID_VS_MACROOPTION: 0x0"
"info ","SCore","Scan: >>"
"info ","SCore","Scan: message-id[<0FBCAD68D219B146BFC7E0BF4DC6DE43010D3975@domain.nl>]"
"info ","SCore","Scan: Calling [Virus Scanning Engine]..."
"info ","SCore","Scan: Calling [Virus Scanning Engine]...ok[27]"
"info ","SCore","ProcessHeaders: plugin report[BitDefender detected macros in CPMU WEEK 12 MONDAY.xls...]"
"info ","SCore","Scan: QUARANTINE"
"info ","BitDefender Engine","Scanning[<0FBCAD68D219B146BFC7E0BF4DC6DE43010D3975@domain.nl>]----->"
"info ","BitDefender Engine","AV_PROP_MAILDIRECT -> AV_MAILDIRECT_OUTBOUND (1)"
"info ","BitDefender Engine","VALUEID_VS_MACROOPTION: 0x2"Workaround / Fix Details
Upgrade to MailEssentials 2015 and install all cumulative patches available. The fix is part of the February cumulative patch.
The individual patch can be downloaded from the below location:
http://cdnpatches.gfi.com/me/20150102/ME2015_PATCH_20150217_2.zip?_ga=1.44535596.968299851.1415351541
The Patch is also included in the MailEssentials 2015 SR1 release.Required Actions
Attach article to case and apply patch.