Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people, just like you, are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
Solved

Symantec quarantine

Posted on 2014-11-07
5
250 Views
Last Modified: 2015-03-18
A file got flagged as a trojan from SEP 12.1.3. I want this file restored. It restores the file but a split second later if flagged it as a trojan again. Now the option to restore isn't available. Any way to get this file recovered?
0
Comment
Question by:chadfran
  • 2
5 Comments
 
LVL 63

Assisted Solution

by:btan
btan earned 250 total points
ID: 40430183
0
 
LVL 12

Accepted Solution

by:
jmlamb earned 250 total points
ID: 40441711
Qextract is for SEP 11.0. This link will take you to the SEPQuarantineTool that works with SEP 12.1.

http://www.symantec.com/docs/TECH150607

If you're certain this is a false-positive detection, then you should create an exception for this file before restoring it. Or it will only be re-detected.
0
 
LVL 63

Expert Comment

by:btan
ID: 40441889
In fact my posting stated both tools for v11 and v12. Also catch the "Best Practice when Symantec Endpoint Protection is Detecting a File that is Believed to be Safe" http://www.symantec.com/business/support/index?page=content&id=TECH98360
0

Featured Post

Networking for the Cloud Era

Join Microsoft and Riverbed for a discussion and demonstration of enhancements to SteelConnect:
-One-click orchestration and cloud connectivity in Azure environments
-Tight integration of SD-WAN and WAN optimization capabilities
-Scalability and resiliency equal to a data center

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

So you got the Conficker. You could go to each machine and run the eye chart test (http://www.confickerworkinggroup.org/infection_test/cfeyechart.html), but in a bigger environment, or if you prefer to work smarter and not harder, you need some …
PREFACE The purpose of this guide is to explain how to manually move a SEP client to a different client group by performing steps on the client-side. These steps may prove particularly useful because they allow the client to move after it has alrea…
Established in 1997, Technology Architects has become one of the most reputable technology solutions companies in the country. TA have been providing businesses with cost effective state-of-the-art solutions and unparalleled service that is designed…
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…

828 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question