If you look up this virus it says: Note: Definitions dated prior to 28th March 2005, may detect this threat as Trojan dropper. Tim Raymond wrote: > Stef, > Has anyone scanned sav10_0_2_2001-unmanaged.exe, sav10_0_2_2001-managed.exe > and sav10_1_0_401-unman.exe with some non-Symantec scanners to verify if there > is a virus in there or not? > > Thanks. > > On 6/12/2006 9:26 AM Stefanie Ploof wrote the following: > >>Everyone, >> >>We have two threads going, please continue using this one so we can keep >>track. Continue to report what you are experiencing and the AV team will >>work with your information then report back to you as soon as we have >>answers. >> >>Thank you! >> >>---- >>Stefanie Ploof >>CIT Client Services >>CALS Information Technology Office >>University of Vermont, Burlington >> >>On Mon, 12 Jun 2006, John Cooley wrote: >> >> >>>The problem is the new version of Symantec. >>> >>>I have been running the older version 10.0.2.2020. All was fine until I >>>started downloading the latest version - 10.1.0.401 Symantec immediately >>>nailed it as suspect. >>> >>>So I guess I will not have my folks download the new version until this >>>gets fixed. Keep us posted.... >>> >>>John cooley >>> >>> >>>At 08:34 AM 6/12/2006, you wrote: >>> >>>>My home machine found a couple of files that contained Trojan.Dropper -- older >>>>versions of Symantec!! >>>> >>>>I just opened my folder where I keep old versions of Symantec and yes, it said >>>>they were contaminted with Trojan.Dropper again. This was >>>>sav10_0_2_2001-unmanaged.exe and sav10_0_2_2001-managed.exe. >>>> >>>>So the question is, is there really a virus in those files or is it a problem >>>>with the definition files (6/11/06 rev. 6)? >>>> >>>>On 6/12/2006 8:20 AM Larry Kost wrote the following: >>>> >>>>>In the process of updating Norton Anti-Virus a couple of folks over here >>>>>have been notified that something called Trojan.Dropper was detected and >>>>>cleaned by deletion. I don't know that these are related but it did >>>>>happen twice. One of these people said that a later scan found it >>>>>again. I looked on line and Symantec recommends starting in Safe Mode >>>>>and doing a scan (also with System Restore turned off). Is this the >>>>>best advice or is there something else to do? >>>>> >>>>>Larry Kost >>>> >>>>-- >>>>Tim Raymond [log in to unmask] >>>>Manager CEMS Computer Facility >>>>233 Votey Burlington Vt. 05405 >>>>The University of Vermont (802) 656-0508 > > -- Sharon Provost Informtn Tech Profssnl Sr Account Services Computing and Information Technology University of Vermont 238 Waterman Bldg. 85 So. Prospect St. Burlington, VT 05405 E-mail: [log in to unmask] E-mail: [log in to unmask] 802-656-2006 Account Services 802-656-1290 Direct Line 802-656-0872 Fax Number