Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 12 replies
  • Subscribers 6 subscribers
  • Views 9198 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos 'Unable to connect to Primary Server 'and threats detected!

gk

Hi ,

I can't update Sophos online as it tells me I am 'unable to connect to Primary Sever'.When I looked at the anti-virus log it showed a corrupt file error and a threat detected at the same time as the primary server access went down, which seems like it would be linked! I ran a quarantine scan on the named file in my cache, but no threats came up...

Here is an abbreviated version of the log in case it sheds some light.....

Any suggestions much appreciated.

Many thanks

Error:    Could not contact primary server at 08:54 on 18 October 2011
com.sophos.autoupdate:     Access was denied
com.sophos.autoupdate:
com.sophos.intercheck: Corrupt file: /Users/....... /Downloads/e2S6KPoB.doc.part
com.sophos.autoupdate: Error:    Could not contact primary server at 09:54 on 18 October 2011
com.sophos.intercheck: 2011-10-18 10:57:38 +0100 Threat: 'Exp/MS04-028' detected in /Users/....... /Library/Caches/Firefox/Profiles/qmypr6ys.default/Cache/8/F4/E94AFd01
com.sophos.intercheck:                              Access to the file denied

:1004193


This thread was automatically locked due to age.
Parents
  • 0

    These two are likely not linked... that's a Windows-based exploit, which likely triggered due to the file not being complete (that's a partial download of a Word document).  By the time the next bits of the file were downloaded by Firefox, the detection should vanish.

    Access Denied is likely due to the server being under heavy load when you attempted to update.  I suppose it's also possible it was due to attempting to update while a detection was in progress.  Have you been able to update since?  Does disabling on-access and then updating work?

    :1004197
Reply
  • 0

    These two are likely not linked... that's a Windows-based exploit, which likely triggered due to the file not being complete (that's a partial download of a Word document).  By the time the next bits of the file were downloaded by Firefox, the detection should vanish.

    Access Denied is likely due to the server being under heavy load when you attempted to update.  I suppose it's also possible it was due to attempting to update while a detection was in progress.  Have you been able to update since?  Does disabling on-access and then updating work?

    :1004197
Children
No Data