Questions tagged [quarantine]
Quarantine is a functionality in antivirus programs intended to render malware files harmless.
21
questions
0
votes
1
answer
184
views
Create quarantine/safe partition on external hard drive
I have a laptop I fear is compromised. I've run all the scans possible and nothing came up, but still I am dubious given that one night, just for a split second or so, I saw the mouse moving without ...
1
vote
1
answer
197
views
User Access to Quarantined Emails
Are there any industry recommendations with regards to allowing users access to quarantined emails in Office 365? Should users be notified of quarantined emails. Should they be allowed to request the ...
0
votes
1
answer
160
views
Is it safe to copy an encrypted file from quarantine to another computer for analysis?
Is it safe to configure the antivirus to automatically copy the file from the quarantine to a network share?
The antivirus should copy the encrypted archive (with password intact) from the quarantine ...
0
votes
1
answer
201
views
Security Tools - File Encryption vs Corruption
When security tools quarantine files, why do they tend to use encryption, rather than simple file corruption?
The main goal of quarantining a file is to make it impossible to run on a system. This ...
3
votes
1
answer
454
views
How can I improve my sheep dipping process?
Problem:
The hiring department occasionally sends me Word documents asking to clear the file as "safe" to open and review for purposes like resumes etc.; they can come from anywhere and are ...
0
votes
0
answers
129
views
Is quarantine threats absolutely necessary? Every time I do, all my Chrome tabs crash
I have been talking backwards and forwards with a MalwareByte support, because every time I run 'quarantine threats' all my Chrome tabs crash. This guy keeps asking me to switch Google sync off, and ...
2
votes
1
answer
182
views
As a Software Industry Editor, how to avoid my software being quarantined?
I'm a well established software company. For more than 30 years, my business has been delivering both hardware and software.
My Windows software is being quarantined by some of my customer's ...
20
votes
2
answers
5k
views
How to remove quarantined virus securely?
There is a file found by antivirus program and it was put into the virus' quarantine section (its not a false positive). Now I don't know how to handle this "quarantined" files.
What is the best ...
2
votes
2
answers
3k
views
Bypassing Windows Defender VBA custom code
I've recently written a simple keylogger using classic DLL-injection technique. I wanted to simulate a real phishing attack where the user opens an Office document with macros and by enabling them he ...
0
votes
2
answers
477
views
Python Antivirus comparing hashes [closed]
I'm writing an antivirus in python mostly to learn and for research purposes, I do understand it would be more efficient to do this in something like C and eventually I will port this over. So far I ...
0
votes
0
answers
167
views
Unknown process attempted to execute code
This morning I booted up my computer and not long afterward, got a notification from ByteFence (unsubscribed) that an unknown process attempted to execute a command that was deemed unwanted. ByteFence ...
0
votes
2
answers
452
views
If a host is infected is the sandbox environment infected?
Say my host machine is infected and I have a sandbox program. Will that sandbox environment then be infected also?
If the answer is yes, what if I have an AV running inside of the sandbox. Will it ...
4
votes
2
answers
590
views
MalwareBytes Quarantine
MalwareBytes has the ability to quarantine or to quote MB:
At that time, they were removed from the disk location where they were
stored, placed in quarantine, and modified so that they could not ...
0
votes
1
answer
351
views
Programmatically Quarantining files
Situation: Using Python to make a simple quarantine software for malware.
What I know:
I do understand (from this forum no less) that one of the ways is to put the file in a quarantine directory and ...
0
votes
1
answer
300
views
Are there differences between McAfee quarantine and other AV quarantining mechanisms?
I'm working on a documentation of an IT system and I want to describe what is happening, when McAfee finds and quarantines a suspicious file. I have read the many questions on quarantining, but all ...