Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 1178 replies
  • Subscribers 1 subscriber
  • Views 3260939 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Is any one else seing this alert - Shh/Updater-B False positives

leftout

Virus/spyware 'Shh/Updater-B' has been detected in "C:\Program Files\Sophos\Sophos Anti-Virus\Web Intelligence\swi_update.exe". Cleanup unavailable. This is trickling in as alerts but at an alarming rate.

:29723


This thread was automatically locked due to age.
Parents
  • 0

    Finally got my side fixed! Here is what I did:

    • Disabled on-access scanning from SEC
    • Updated SEC to the current update
    • Ran the batch file (provided earlier in the forum somewhere) via Dell Kace Scripting to all of my computers:

    net stop savservice
    del "C:\Program Files (x86)\Sophos\Sophos Anti-Virus\agen-xuv.ide" /f /q
    del "C:\Program Files\Sophos\Sophos Anti-Virus\agen-xuv.ide" /f /q
    xcopy "\\Sophos Updating Share\*.*" "C:\Program Files\Sophos\Sophos Anti-Virus\*.*" /y
    xcopy "\\Sophos Updating Share\*.*" "C:\Program Files (x86)\Sophos\Sophos Anti-Virus\*.*" /y
    net start savservice

    • The script fixed the computer updating errors
    • Then went into SEC and Acknowledged all of the Shh/Updater-B alerts
    • Reenabled on-access scanning in SEC

    Everything seems to be running smoothly now. I must also say that the update pushed out via Sophos did fix the initial major issue around 7:30pm EST as that is when I was able to get back into my SEC as it took over two hours to log into it due to the network traffic. All of my call center reps were then able to use their apps. I just was unable to get all of the PC's to update which the above stated corrected that issue. Hope this helps some.

    :30911
Reply
  • 0

    Finally got my side fixed! Here is what I did:

    • Disabled on-access scanning from SEC
    • Updated SEC to the current update
    • Ran the batch file (provided earlier in the forum somewhere) via Dell Kace Scripting to all of my computers:

    net stop savservice
    del "C:\Program Files (x86)\Sophos\Sophos Anti-Virus\agen-xuv.ide" /f /q
    del "C:\Program Files\Sophos\Sophos Anti-Virus\agen-xuv.ide" /f /q
    xcopy "\\Sophos Updating Share\*.*" "C:\Program Files\Sophos\Sophos Anti-Virus\*.*" /y
    xcopy "\\Sophos Updating Share\*.*" "C:\Program Files (x86)\Sophos\Sophos Anti-Virus\*.*" /y
    net start savservice

    • The script fixed the computer updating errors
    • Then went into SEC and Acknowledged all of the Shh/Updater-B alerts
    • Reenabled on-access scanning in SEC

    Everything seems to be running smoothly now. I must also say that the update pushed out via Sophos did fix the initial major issue around 7:30pm EST as that is when I was able to get back into my SEC as it took over two hours to log into it due to the network traffic. All of my call center reps were then able to use their apps. I just was unable to get all of the PC's to update which the above stated corrected that issue. Hope this helps some.

    :30911
Children
No Data