Working on the second on this weekend now Jeff. Here are sample details: Machine: RVSDWIN (10.40.1.9) User: Scan Date: 7/26/2010 6:28 AM Software Version: 4.0.3275 ThreatDB Version: 6640 Policy: Servers ----------------- Threat: Trojan.Win32.Generic!BT Category: Trojan Severity: High Risk Action: UnKnown Traces Found: File: C:\Windows\System32\Oobe.exe
----------------- Threat: Trojan.Win32.Generic!BT Category: Trojan Severity: High Risk Action: UnKnown Traces Found: File: C:\Windows\System32\ProvisionStorage.exe >>> Jeff Cain <je...@sunbelt-software.com> 7/26/2010 9:08 AM >>> These should have been addressed in def version 6636. If not please let us know right away. Thanks, Jeff Cain – supp...@sunbeltsoftware.com Technical Support Analyst Sunbelt Software, part of the GFI Software family www.sunbeltsoftware.com Tel: 1-877-757-4094 Fax: +1 727-562-3402 From:Eric Wittersheim [mailto:eric.wittersh...@gmail.com] Sent: Monday, July 26, 2010 9:01 AM To: NT System Admin Issues Subject: Re: Vipre false positives? Same here On Mon, Jul 26, 2010 at 7:43 AM, Richard Stovall <rich...@gmail.com> wrote: You are not alone... On Mon, Jul 26, 2010 at 8:40 AM, Tom Miller <tmil...@hnncsb.org> wrote: Anyone having issue with Vipre false positives on their Windows 2008 servers? Last weekend, Friday night's scan reported a virus on each of my 2008 servers. The Sunbelt team investigated and it was a false positive. Same thing this weekend, and again a false positive. I have a third I'm working on with support now that looks like another false positive. I am wondering if this is Vipre or possibly my policy configuration for my servers? I run deep scan several times a week on those systems in any case. The first thing I do not want to see in my Inbox on Saturday and Sunday morning is pages of Vipre notifications. I have not seen false positives on our XP/Win 7 machines or 2003 Servers. This is getting really old. Nothing special about these servers. Some are DCs, others member servers, others just for apps or storage. Most don't have anything other than the Windows 2008 NOS installed. Tom Miller Engineer, Information Technology Hampton-Newport News Community Services Board 757-788-0528 Confidentiality Notice: This e-mail message, including attachments, is for the sole use of the intended recipient(s) and may contain confidential and privileged information. Any unauthorized review, use, disclosure, or distribution is prohibited. If you are not the intended recipient, please contact the sender by reply e-mail and destroy all copies of the original message. Confidentiality Notice: This e-mail message, including attachments, is for the sole use of the intended recipient(s) and may contain confidential and privileged information. Any unauthorized review, use, disclosure, or distribution is prohibited. If you are not the intended recipient, please contact the sender by reply e-mail and destroy all copies of the original message. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~