Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 1178 replies
  • Subscribers 1 subscriber
  • Views 3261275 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Is any one else seing this alert - Shh/Updater-B False positives

leftout

Virus/spyware 'Shh/Updater-B' has been detected in "C:\Program Files\Sophos\Sophos Anti-Virus\Web Intelligence\swi_update.exe". Cleanup unavailable. This is trickling in as alerts but at an alarming rate.

:29723


This thread was automatically locked due to age.
Parents
  • 0
    AZJim_K wrote:

    Nathan

    I managed to copy files back in place that were deleted on my server and I have the SEC on the server updated and the ALMON.exe works on the SEC on the Server.

    Also in SCC the Update option finally works.  I told it to populate down to the endpoints.  The only problem is the endpoints still have the ALMON.exe error and it doesn't load, so they are not updating.

    I have tried rereading through the 87 pages of this board.  On the workstations what is my next best step.

    Thanks for your reply last night.  At least you got me started.

    Jim K in AZ

    Someone posted in the last 5 or 6 pages a batch file that copies the Autoupdate files from the update location to the endpoint. I think something like that is your best bet. Post back if you weren't able to find the batch file I'm referring to.

    :31757
Reply
  • 0
    AZJim_K wrote:

    Nathan

    I managed to copy files back in place that were deleted on my server and I have the SEC on the server updated and the ALMON.exe works on the SEC on the Server.

    Also in SCC the Update option finally works.  I told it to populate down to the endpoints.  The only problem is the endpoints still have the ALMON.exe error and it doesn't load, so they are not updating.

    I have tried rereading through the 87 pages of this board.  On the workstations what is my next best step.

    Thanks for your reply last night.  At least you got me started.

    Jim K in AZ

    Someone posted in the last 5 or 6 pages a batch file that copies the Autoupdate files from the update location to the endpoint. I think something like that is your best bet. Post back if you weren't able to find the batch file I'm referring to.

    :31757
Children
No Data