cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

“Here you have” Virus (aka W32/VBMania@MM)

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

“Here you have” Virus (aka W32/VBMania@MM)

Go to solution
grant_sturgis
Not applicable

‎09-10-2010 08:14 AM

New virus, described here:

http://www.avertlabs.com/research/blog/index.php/2010/09/09/widespread-reporting-of-here-you-have-vi...

Is this virus recognized by the PAN devices?  I'm not sure how to look that up, or I would do so myself.

If not, any thoughts on mitigating risk?  I don't see .scr files in file blocking.

Thanks,

Grant

--------------

0 Likes Likes
1 ACCEPTED SOLUTION

Accepted Solutions

Go to solution
blacksan
L1 Bithead

‎09-10-2010 08:21 AM

Palo Alto Web site  >  Support  >  Threat Database
drop down and select Virus.

I was just there looking for the same thing.

View solution in original post

0 Likes Likes
13 REPLIES 13

Go to solution
blacksan
L1 Bithead

‎09-10-2010 08:21 AM

Palo Alto Web site  >  Support  >  Threat Database
drop down and select Virus.

I was just there looking for the same thing.

View solution in original post

0 Likes Likes

Go to solution
grant_sturgis
Not applicable
In response to blacksan

‎09-10-2010 08:29 AM

Thanks, it looks to me like it's not recognized.

Any thoughts on mitigation?

0 Likes Likes

Go to solution
kbaldwin
L0 Member

‎09-10-2010 08:31 AM

It might be listed under a different name. Trend Micro recognizes it as WORM_MEYLME.B.

0 Likes Likes

Go to solution
twilson
Not applicable

‎09-10-2010 08:32 AM

I don't see anything on any virus. You would think you could just select from the drop down and hit enter and it would pull up a list, but I get nothing, even when I put something in there still nothing.

0 Likes Likes

Go to solution
grant_sturgis
Not applicable
In response to kbaldwin

‎09-10-2010 08:38 AM

unfortunately, no.

0 Likes Likes

Go to solution
grant_sturgis
Not applicable
In response to twilson

‎09-10-2010 08:39 AM

if you're not seeing anything, you're doing it wrong.

type w32 , change type to virus, hit find, and see an enormous list.

0 Likes Likes

Go to solution
bpappas
L6 Presenter
In response to kbaldwin

‎09-10-2010 08:48 AM

This was slated to be included in last night's emergency Threat/AV content release for PAN OS 3.1.x.

PAN OS 3.0.x will be addressed with next Tuesday's content release.

0 Likes Likes

Go to solution
KatanaNZ
L3 Networker
In response to grant_sturgis

‎09-14-2010 01:24 AM

I still dont see this added into the threat database...is it known by a different name in Palo Alto land?

0 Likes Likes

Go to solution
migration
L0 Member
In response to KatanaNZ

‎09-14-2010 01:44 AM

Hi,

Coverage for "Here you have" virus is as follows:

3.1

Virus Name: Trojan/Win32.swisyn.bofj

Content release: 271 (daily content release)

Release date: 5th August


Virus Name: Trojan/W32.swisyn.bxoh

Content Release: 299-364 (Daily A/V content update)

Release Date: 10th Sep

3.0

Virus Name: Trojan/Win32.swisyn.0804

Content release: 203 (weekly content release)

Release date: 25th August

Thanks,

Sandeep

0 Likes Likes
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!

LEGAL NOTICES
RESOURCES
Copyright 2007 - 2021 - Palo Alto Networks