The FP was caught by both a quick scan and scheduled deep scans. On Tue, Jan 26, 2010 at 9:30 AM, Sherry Abercrombie <[email protected]>wrote:
> How do you have this configured? I have only active protection enabled on > my database servers, quick scans daily and deep scans on weekends + active > protection enabled on all other servers and workstations and I'm not seeing > any of this. In fact, since I have had Vipre Enterprise installed (going on > 6 months now), I have seen from the forums & this list several of these type > of incidents happen, but have yet to experience any of the issues reported > here in my organization. > > On Tue, Jan 26, 2010 at 9:04 AM, Jeff Johnson > <[email protected]>wrote: > >> I am on 5638 and 3 out of 80 HP desktops reported this last night. >> >> >> >> *Jeff Johnson* >> >> *Systems Administrator* >> >> 714-773-2600 Office >> >> 714-773-6351 Fax >> >> [image: hydraflow] >> >> >> >> *From:* John Aldrich [mailto:[email protected]] >> *Sent:* Tuesday, January 26, 2010 6:53 AM >> >> *To:* NT System Admin Issues >> *Subject:* RE: Trojan-PWS.Win32.Qwak (v) >> >> >> >> I’ve got a Dell desktop with Roxio Easy CD Creator and I’m not affected, >> but some of my user’s workstations are affected. **shrug** It doesn’t >> seem to break anything, so I’m not too worried. J >> >> >> >> [image: John-Aldrich][image: Tile-Tools] >> >> >> >> *From:* Sherry Abercrombie [mailto:[email protected]] >> *Sent:* Tuesday, January 26, 2010 9:43 AM >> *To:* NT System Admin Issues >> *Subject:* Re: Trojan-PWS.Win32.Qwak (v) >> >> >> >> It appears to affect agent def. 5637 according to the forum link. If >> you're not on 5638, force an update of your def and all should be ok (my >> assumption, since that's the def I'm on & I haven't seen any issues with >> this). I've got all HP servers, but no HP desktops. Sunbelt is requesting >> that you contact support. >> >> On Tue, Jan 26, 2010 at 8:23 AM, Eric Wittersheim < >> [email protected]> wrote: >> >> Getting this too on HP desktops. >> >> >> >> On Tue, Jan 26, 2010 at 7:49 AM, Richard Stovall <[email protected]> >> wrote: >> >> FYI >> >> >> >> >> http://supportforums.sunbeltsoftware.com/messageview.aspx?catid=27&threadid=2812&enterthread=y >> >> >> >> On Tue, Jan 26, 2010 at 5:57 AM, John Aldrich < >> [email protected]> wrote: >> >> On Tuesday 26 January 2010, you wrote: >> > Have a nice day indeed! (OK, I had to look it up. My Latin is, well, >> > American.) >> > >> > But back to the original post, to which I meant to reply earlier today. >> > John, you might want to take this up on the Vipre Enterprise forum at >> > supportforums.sunbeltsoftware.com. Also note that the (v) designation >> > has to do with Vipre's whiz-bang virtual technology and isn't >> > necessarily indicative of a known threat. I didn't have any, so I >> > didn't pay careful attention, but there was a slew of false positives >> > reported yesterday (1.25.10). You might want to submit the quarantined >> > files to Sunbelt and Virustotal for analysis. >> > >> > 今日は! >> > >> > RS >> > >> >> Ok. Thanks. >> >> >> --- >> >> John Aldrich >> Blueridge Industries >> IT Manager >> >> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ >> ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ >> >> >> >> >> >> >> >> >> >> >> >> >> >> >> >> >> -- >> Sherry Abercrombie >> >> "Any sufficiently advanced technology is indistinguishable from magic." >> Arthur C. Clarke >> >> >> >> >> >> >> >> >> >> >> >> >> >> > > > -- > Sherry Abercrombie > > "Any sufficiently advanced technology is indistinguishable from magic." > Arthur C. Clarke > Sent from Keller, TX, United States > > > > > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~
<<image003.jpg>>
<<image004.jpg>>
<<image005.jpg>>
