Thread Info
Options
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

W32/Cabble-A

KnollJRH

Running Sophos 9.5, running a locally initiated scan on a server drive; getting the following message on MANY files...

File "T:\share\Imagistics\ImagisticsLoad.exe" belongs to virus/spyware 'W32/Cabble-A'.

What does it mean when it notes "belongs to"? I have seen that verbiage related to authorized PUAs, but I cannot find anywhere that I have authorized anything called "W32/Cabble-A"...

TIA!!!

:10413


This thread was automatically locked due to age.
  • 0

    It really means that it is a component of the malware.  Sophos recognises threats as either a single component threat or multi component.  Multi-component suggests that you probably need to perform a full scan to fully clean the threat.  I would sugest performing a full scan of the server to find all components to ensure nothing is left behind.


    Regards,

    Jak

    :10419
    • 0

      If you read the analysis for W32/Cabble-A it tells you that this is a PE infector (a virus) and thus it is very likely that other executables have been compromised as well. The Action tab refers to the instructions for disinfecting PE executables. They tell you more detailed what Jak has already said.

      HTH

      Christian

      :10431
      Unfiltered HTML