“Here you have” Virus (aka W32/VBMania@MM)

cancel
Showing results for 
Search instead for 
Did you mean: 

“Here you have” Virus (aka W32/VBMania@MM)

Not applicable

New virus, described here:

http://www.avertlabs.com/research/blog/index.php/2010/09/09/widespread-reporting-of-here-you-have-vi...

Is this virus recognized by the PAN devices?  I'm not sure how to look that up, or I would do so myself.

If not, any thoughts on mitigating risk?  I don't see .scr files in file blocking.

Thanks,

Grant

--------------

13 REPLIES 13

Thanks,

What about the ability to block .scr files. It seems odd to me that there is a way to custmize nearly everything but not a way to add a file extention to the picklist???

Is .scr going to be included in some future release? Or the ability for the end user to add his own file extensions for blocking?

.scr files are included in the category "Portable Executables" (aka PE).

on my firewall i created a file block rule for the PE filetype in both directions.

Message was edited by: bpappas

Apparently the PA support guy I talked to yesterday did not know this... Is this knowledge in a document somewhere?

How do we search for this? looking for VBmania, or "here you have" comes up with no results.

As much as vendors have their own names for malware, its pointless when we can't search for

it so we can let our customer know they're protected.

Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!