Solved

Symantec quarantine

Posted on 2014-11-07
5
198 Views
Last Modified: 2015-03-18
A file got flagged as a trojan from SEP 12.1.3. I want this file restored. It restores the file but a split second later if flagged it as a trojan again. Now the option to restore isn't available. Any way to get this file recovered?
0
Comment
Question by:chadfran
  • 2
5 Comments
 
LVL 61

Assisted Solution

by:btan
btan earned 250 total points
Comment Utility
0
 
LVL 12

Accepted Solution

by:
jmlamb earned 250 total points
Comment Utility
Qextract is for SEP 11.0. This link will take you to the SEPQuarantineTool that works with SEP 12.1.

http://www.symantec.com/docs/TECH150607

If you're certain this is a false-positive detection, then you should create an exception for this file before restoring it. Or it will only be re-detected.
0
 
LVL 61

Expert Comment

by:btan
Comment Utility
In fact my posting stated both tools for v11 and v12. Also catch the "Best Practice when Symantec Endpoint Protection is Detecting a File that is Believed to be Safe" http://www.symantec.com/business/support/index?page=content&id=TECH98360
0

Featured Post

How your wiki can always stay up-to-date

Quip doubles as a “living” wiki and a project management tool that evolves with your organization. As you finish projects in Quip, the work remains, easily accessible to all team members, new and old.
- Increase transparency
- Onboard new hires faster
- Access from mobile/offline

Join & Write a Comment

PREFACE The purpose of this guide is to explain what the SEPC Status Utility is and how it works. I have written the utility using AutoIt and have included the source code for your review. You are welcome to modify the code to your liking, but I wi…
For those of you actively in the Malware fightling business, we now have available an amazing new tool in the malware wars (first recommended to me by rpggamergirl (http://www.experts-exchange.com/M_3598771.html), the Zone Advisor for the Virus and …
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…
This video demonstrates how to create an example email signature rule for a department in a company using CodeTwo Exchange Rules. The signature will be inserted beneath users' latest emails in conversations and will be displayed in users' Sent Items…

763 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

8 Experts available now in Live!

Get 1:1 Help Now