Q:
After the packet filtering, filter filtering, or antivirus function is enabled on the firewall, intranet clients can access websites but cannot download .exe files from the websites. Why?
A:
Check the log. The threat name is Packed.Win32.Huer.64, which indicates that a packed file is blocked by the firewall. View the configuration file to check whether heuristic-detect enable is configured to enable the antivirus heuristic detection function.
If the function is enabled, the firewall considers .exe files as viruses and blocks them. To resolve this problem, you can disable this function if having no high security requirements.
Notice:
The antivirus heuristic detection function can detect high-risk files, which are probably virus-infected files. Therefore, this function is recommended for environments that have high security requirements. However, this function reduces virus detection performance and may generate false positives. So this function is disabled by default.
For details, Clicks: Why Cannot I Download EXE Files After the Antivirus Function Is Enabled?
