Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 1178 replies
  • Subscribers 1 subscriber
  • Views 3261236 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Is any one else seing this alert - Shh/Updater-B False positives

leftout

Virus/spyware 'Shh/Updater-B' has been detected in "C:\Program Files\Sophos\Sophos Anti-Virus\Web Intelligence\swi_update.exe". Cleanup unavailable. This is trickling in as alerts but at an alarming rate.

:29723


This thread was automatically locked due to age.
Parents
  • 0
    dreec wrote:

    Hi Nathan,

    The advisory has worked for 8 out of my 10 clients.

    However I have 2 clients where either the SEC or Control Centre will no longer download updates.

    Basically my SEC last updated at 2114 last night. (BST)

    Since then I have been getting the "Threat Detection data update failed" (80040404) ,  "Software Update failed" (80040401) & "Delivery failed for software subscription......" (80040406)

    I have spent most of the day troubleshooting and investigating these errors just in case they had nothing to do with this issue.

    However I have had no joy.   It was only when my colleague m,entioned that they were getting the same issue on another server that I realised it MUST be related to this issue.   

    I followed the advisory to the letter, and as mentioned above it has worked on the majority of my clients,  however I'm still stuck with 2 clients who can not get thier AV updated.

    Regards,

    dreec

    Hi Dreec,

    It sounds like you are still having problems with the Sophos Anti-Virus scanner blocking necessary files due to the false positive. Can you confirm if the program files\sophos\sophos anti-virus\ directory contains agen-xuv.ide and NOT javab-jd.ide? If so, do the following:
    1. net stop savservice
    2. delete agen-xuv.ide
    3. net start savservice

    Try updating SUM after doing the above. Let me know if it still fails!

    :31665
Reply
  • 0
    dreec wrote:

    Hi Nathan,

    The advisory has worked for 8 out of my 10 clients.

    However I have 2 clients where either the SEC or Control Centre will no longer download updates.

    Basically my SEC last updated at 2114 last night. (BST)

    Since then I have been getting the "Threat Detection data update failed" (80040404) ,  "Software Update failed" (80040401) & "Delivery failed for software subscription......" (80040406)

    I have spent most of the day troubleshooting and investigating these errors just in case they had nothing to do with this issue.

    However I have had no joy.   It was only when my colleague m,entioned that they were getting the same issue on another server that I realised it MUST be related to this issue.   

    I followed the advisory to the letter, and as mentioned above it has worked on the majority of my clients,  however I'm still stuck with 2 clients who can not get thier AV updated.

    Regards,

    dreec

    Hi Dreec,

    It sounds like you are still having problems with the Sophos Anti-Virus scanner blocking necessary files due to the false positive. Can you confirm if the program files\sophos\sophos anti-virus\ directory contains agen-xuv.ide and NOT javab-jd.ide? If so, do the following:
    1. net stop savservice
    2. delete agen-xuv.ide
    3. net start savservice

    Try updating SUM after doing the above. Let me know if it still fails!

    :31665
Children
No Data