Morgan81
01-11-2005, 02:19 PM
Hello,
I just got an interesting little message from our Anti-Virus guys.
This is what they sent me: "This system is triggering a high number of "RPC DCOM Exploit and SHELLCODE x86 0x90 unicode NOOP" alarms. From recent experience, it is probably infected with the W32/Sdbot worm or a variant."
The system is a Tandberg 1000, running B9.0 which was recently upgraded from B4.1 a few days before the new year. TMS v8.0 was used to do the upgrading (along with a few hundred other systems) but no other system came up flagged.
I don't know antivirus technology, so I don't know what that message is saying at all, however I'm pretty sure I know that a 1000 can't be infected by a virus but not 100% sure.
Anyone ever hear or see anything like this?
I just got an interesting little message from our Anti-Virus guys.
This is what they sent me: "This system is triggering a high number of "RPC DCOM Exploit and SHELLCODE x86 0x90 unicode NOOP" alarms. From recent experience, it is probably infected with the W32/Sdbot worm or a variant."
The system is a Tandberg 1000, running B9.0 which was recently upgraded from B4.1 a few days before the new year. TMS v8.0 was used to do the upgrading (along with a few hundred other systems) but no other system came up flagged.
I don't know antivirus technology, so I don't know what that message is saying at all, however I'm pretty sure I know that a 1000 can't be infected by a virus but not 100% sure.
Anyone ever hear or see anything like this?