That's what it does - it quarantines the files so they can't be accessed any other way than thru the Vipre interface. If you catch the system before it reboots, you can remove the files from quarantine no problem. If the system reboots, it blue screens and you can't get into the Vipre interface to release the files - catch 22, hence the need for a stand along tool to manage the quarantine.
.Tim > -----Original Message----- > From: Kim Longenbaugh [mailto:[email protected]] > Sent: Monday, July 06, 2009 2:41 PM > To: NT System Admin Issues > Subject: RE: Vipre monday madness... > > I haven't started on our Vipre trials yet. Is there a way to configure > the software so that when it detects something (FP or not), it > quarantines the suspects instead of deleting them? > I suppose that would help only if you had a way to boot the server and > you knew where the quarantined items came from so you could move them > back. > > -----Original Message----- > From: Davies,Matt [mailto:[email protected]] > Sent: Monday, July 06, 2009 4:30 PM > To: NT System Admin Issues > Subject: RE: Vipre monday madness... > > Information from sunbelt a little while ago. > > We have new definitions out version 5230, the false positive should be > resolved in these definitions, please verify your agents are getting > this update. > > Also here are some more detailed instructions on how to recover the HP > computers. > > http://support.sunbelt-software.com/Default.aspx?answerid=1871 > > Here are some more details instructions on the Lenovo laptops. > > http://support.sunbelt-software.com/Default.aspx?answerid=1870 > > > > -----Original Message----- > From: Gene Giannamore [mailto:[email protected]] > Sent: 06 July 2009 21:58 > To: NT System Admin Issues > Subject: RE: Vipre monday madness... > > Suggestion: create a bootable CD to allow admins to restore quarantined > files, and/or a BartPE plugin to do the same. Just in case this were to > happen again (no one can guarantee the future). > > > > > Gene Giannamore > Abide International Inc. > Technical Support > 561 1st Street West > Sonoma,Ca.95476 > (707) 935-1577 Office > (707) 935-9387 Fax > (707) 766-4185 Cell > [email protected] > www.abideinternational.com > > > > -----Original Message----- > From: Alex Eckelberry [mailto:[email protected]] > Sent: Monday, July 06, 2009 12:19 PM > To: NT System Admin Issues > Subject: RE: Vipre monday madness... > > That's correct -- an FP this morning was detecting certain of the Shock > Detection files on Thinkpads as malware. This has been corrected and we > are doing a major review of our internal processes and procedures. As > with any of these types of things, it was a combination of circumstances > which led to this definition even getting out in the first place. > > I sincerely apologize. We are not happy this detection was able to get > out and are committed to not letting it happen again. > > > Alex > > Alex Eckelberry, CEO > Sunbelt Software > 33 N. Garden Avenue, Clearwater, FL 33755 p: 727-562-0101 x220 > e: [email protected] MSN: [email protected] > w: www.sunbeltsoftware.com b: www.sunbeltblog.com > > > > > -----Original Message----- > From: Andy Ognenoff [mailto:[email protected]] > Sent: Monday, July 06, 2009 12:37 PM > To: NT System Admin Issues > Subject: RE: Vipre monday madness... > > Active Protection System - the shock detection stuff. > > - Andy O. > ________________________________________ > From: Rod Trent [mailto:[email protected]] > Sent: Monday, July 06, 2009 11:34 AM > To: NT System Admin Issues > Subject: RE: Vipre monday madness... > > Is the software that is being flagged really needed for the Lenovo's to > function? I remember IBM was always bad at putting unnecessary stuff on > their systems. > > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ > ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ > > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ > ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ > > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ > ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ > > > > > _____________________________________________________________ > This e-mail (including all attachments) is confidential and may be > privileged. > It is for the exclusive use of the addressee only. If you are not the > addressee, > you are hereby notified that any dissemination of this communication is > strictly > prohibited. If you have received this communication in error, please > erase all > copies of the message and its attachments and notify us immediately at > [email protected] <mailto:[email protected]>. Thank You. > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ > ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ > > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ > ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~
