Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 4 replies
  • Subscribers 1 subscriber
  • Views 6388 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Removed from quarantine list

Shana

I have noticed a new Action Taken catagory within the Sophos Enterprise Console  for Endpoint Secuirty and Control ver 9 call "Removed from quarantine list".  What does this mean?  DId the user remove the virus from the Quarantine manager or did Sophos do something internally?

:1184


This thread was automatically locked due to age.
Parents
  • 0

    I agree with jak, this was the response I got from support (sorry I never got around to posting it!)

    You may have another threat that is dropping the file, you might have a new variant of a threat that is causing the file to reappear, or it might be an older alert on that system that didn't get cleared. Clearing the existing alerts locally on the system will confirm it is not an older alert that didn't get cleared. By running the full scan all of your files and it will look to make sure the file is cleaned, adding the suspicious files and PUA scanning options to that scan will also look for other things on the system you might not be scanning for as part of your on access scanning. In order for cleanup to be an automatic all components of the a threat must be found on the system and that is why all files should be scanned.

    :8081
Reply
  • 0

    I agree with jak, this was the response I got from support (sorry I never got around to posting it!)

    You may have another threat that is dropping the file, you might have a new variant of a threat that is causing the file to reappear, or it might be an older alert on that system that didn't get cleared. Clearing the existing alerts locally on the system will confirm it is not an older alert that didn't get cleared. By running the full scan all of your files and it will look to make sure the file is cleaned, adding the suspicious files and PUA scanning options to that scan will also look for other things on the system you might not be scanning for as part of your on access scanning. In order for cleanup to be an automatic all components of the a threat must be found on the system and that is why all files should be scanned.

    :8081
Children
No Data
Unfiltered HTML