Re: New Worm/Variant -- MSDTC32?
From: Jeff Anderson (jeff.anderson_at_usask.ca)
Date: 04/12/04
- Next message: RD2: "SecureWin personal edition - can anyone help"
- Previous message: johns: "Re: Dropper in web page?"
- In reply to: Ant: "Re: New Worm/Variant -- MSDTC32?"
- Next in thread: Jeff Anderson: "Re: New Worm/Variant -- MSDTC32?"
- Reply: Jeff Anderson: "Re: New Worm/Variant -- MSDTC32?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Mon, 12 Apr 2004 12:41:45 -0600
Ant wrote:
> "Jeff Anderson" wrote...
>
>
>>I sent them a sample on Thursday, and they sent out an IDE on Friday
>>to supposedly provide protection against this variant. It still does
>>not detect this worm. Here's what Sophos wrote:
>>
>>"Name: W32/Agobot-GA [...]"
>
>
> Did you put the IDE in the Sophos Sweep directory? You then need to
> stop and restart the Sophos services (or reboot).
>
> If it then still fails to detect, you should inform Sophos.
>
>
We have Sophos configured to update from a Central installation Directory (CID) on our server so
Sophos has updated from there. The IDE is present but not detecting this worm. I will contact
Sophos and see what's going on.
- Next message: RD2: "SecureWin personal edition - can anyone help"
- Previous message: johns: "Re: Dropper in web page?"
- In reply to: Ant: "Re: New Worm/Variant -- MSDTC32?"
- Next in thread: Jeff Anderson: "Re: New Worm/Variant -- MSDTC32?"
- Reply: Jeff Anderson: "Re: New Worm/Variant -- MSDTC32?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
