Hi, I have recently purchased a site license for NOD32 but have not deployed it fully yet. On our Proxy/ISA and mail server we are still running Etrust AV + ETRUST gateway AV. [By the way it is fully up to date] I got an alert from NOD32 running on one of our terminal servers indicating a user had just been sent the phishing virus. The thing that interests me is that the virus[?} got through the firewall antivirus with packet inspection. It then got through the gateway AV and also the etrust Exchange AV. Is this really a virus? Program Virus Alert EMON - Microsoft Outlook email monitor triggered on Termserv1: computerfrom: support_num_7 at lasallebank.com to: Office with subject LaSalle Bank: Account Update dated 06/23/2005 13:32 infected with HTML/Phishing.gen trojan.