{"id":22164,"date":"2016-06-14T12:00:00","date_gmt":"2016-06-14T11:00:00","guid":{"rendered":"https:\/\/www.avanet.com\/blog\/sophos-clean-the-sidekick-among-virus-scanners\/"},"modified":"2022-07-22T14:24:40","modified_gmt":"2022-07-22T13:24:40","slug":"sophos-clean-the-sidekick-among-virus-scanners","status":"publish","type":"post","link":"https:\/\/www.avanet.com\/en\/blog\/sophos-clean-the-sidekick-among-virus-scanners\/","title":{"rendered":"Sophos Clean – the sidekick among virus scanners"},"content":{"rendered":"\n

Sophos has what feels like 20 different AV solutions in its portfolio. Now another new product is added. With Sophos Clean, Sophos is launching a product that is intended more to complement<\/strong> existing antivirus solutions than to usurp sole world domination in the endpoint space.<\/p>\n\n

In this blog post, I would like to introduce Sophos Clean in more detail and find out whether this product has any raison d’\u00eatre at all.<\/p><\/blockquote>\n\n

Update:<\/strong> Sophos Clean has been integrated with Sophos Central Intercept X<\/a> and can no longer be purchased as a standalone product. Sophos Clean is officially End of Sale.<\/em><\/p>\n\n

Brief history<\/h2>\n\n

Sophos acquired Netherlands-based SurfRight<\/strong> for nearly $32 million on Dec. 15, 2015. With its HitmanPro<\/strong> product, SurfRight had one of the leading products in the fight against so-called next-generation malware (zero-day exploits, rootkits, Trojans, spyware and more). So Sophos has repackaged HitmanPro and now offers the product under the name Sophos Clean.<\/p>\n\n

What is Sophos Clean?<\/h2>\n\n

As mentioned earlier, Sophos Clean is designed to complement<\/strong> already installed antivirus software and provide a professional second opinion<\/strong> about suspicious files. So Sophos Clean wants to be the best buddy or even “sidekick” of your existing virus scanner and help it do its job. Sophos Clean is very thorough and checks all forms of malware, including viruses, Trojans, rootkits, worms, spyware, fake software and keyloggers.<\/p>\n\n

Specialist for zero-day threats and ransomware<\/h2>\n\n

It is important for next-generation protection not to rely on signatures. Zero-day threats and certain ransomware such as CryptoLocker can only be effectively found through built-in features such as exploit prevention, behavioral analysis or heuristics.<\/p>\n\n

That’s where Sophos Clean comes in. The little “virus professor” works without signatures and uses progressive behavioral analysis, forensics, and collective intelligence to detect and remove zero-day exploits, rootkits, Trojans, spyware and other polymorphic malware, annoying cookies, and adware. This results in fewer false positives, which other signatureless next-generation anti-malware tools have problems with.<\/p>\n\n

Polymorphic malware<\/strong> are viruses that come in x-different versions, but actually all do the same thing. They change their “shape” in order to evade current virus definitions. This technique is very often used in the current ransomware.<\/p><\/blockquote>\n\n

No installation necessary<\/h2>\n\n

What’s pretty cool is that Sophos Clean can be used as an on-demand scanner and doesn’t necessarily need to be installed on the system. Thus, the 11 MB EXE file can also be copied to a USB stick and executed on an infected Windows computer. In a situation where malware has tampered with the installed antivirus software and its updates, such a USB stick is particularly useful. So you always have an effective next-generation virus scanner in your pocket.<\/p>\n\n

System requirements<\/h2>\n\n

Sophos Clean works smoothly alongside your existing antivirus software. Whether this is McAffee, Kaspersky, Symantec, Avast or any other endpoint protection. Sophos Clean puts minimal load on the computer and a quick scan is completed in less than 5 minutes.<\/p>\n\n

Windows 7, 8, 8.1 and 10 are supported as operating systems (32-bit and 64-bit). The computer needs at least 1 GB of ram and must have access to the Internet so that unknown files can be uploaded to SophosLabs and analyzed during a scan.<\/p>\n\n

Sophos Clean in practice<\/h2>\n\n

In the following video, you can see Sophos Clean in action alongside Avast Antivirus. The video is intended to show that Sophos Clean, after scanning with Avast Antivirus, finds even more threats that would not have been noticed otherwise. Among the findings of Sophos Clean are Trojans…<\/p>\n\n

\n