What exactly does Norton do when it quarantines a virus on your PC?
From what I gathered, it simply prevents that program from executing.
AFAIK, Norton scans my incoming emails, and if it finds something amiss, it will first attempt repair or removal of the offending code. The nasty stuff is placed in quarantine, along with files or attachments which could not be cleansed. That way you can have a look before pulling the flush handle. :eek:
While I am unfamiliar with Norton specifically, the standard function of “quarantining” on anti-virus, anti-spyware, etc programs just moves the file to a special quarantine directory, preventing that file from being used any more.
Other refinements include renaming it, or stuffing it in a quarantine archive, thus preventing accidental execution.
It moves the offending file to a specific folder which is its “quarantine” area, and renames it, IIRC, with the extension “.vir”. It’s intended that you use the Norton tool to access it and manipulate it, but there’s nothing to stop you from messing with it directly. It may mess with the permission bits, or flag the file as “hidden”, too. I no longer have Norton installed on the machine I’m using, so I can’t check.
In case you don’t realize it, you can delete any and all stuff in Norton’s Quarantine.
The names of the files were:
Counter.class
Verifierbug.class
Worker.class
Norton called these dudes the Trojan.ByteVerify.
Thanks for the replies.