I just received the following email below regarding a problem with a VIPRE update.

Last week there was an isolated incident that may compromise an operating system component. It was corrected with the next definition release, however some agents had the definitions long enough to still be affected. The affected computers will not reboot without a system restore. If you experience this in your environment, DO NOT reboot any additional computers until the following utility has been applied.

We have created steps to remedy this problem. You should follow these steps if you have version 3.1 of any CounterSpy or VIPRE agents installed on computers prior to October 20, 2008.

The instructions below will use the CSE/VIPRE console deployment to push out a utility. This utility was created specifically to remedy this problem. After this utility is run on the agent, it will be safe to reboot the machines. This utility takes 15 seconds to run (per agent) and will not require a reboot or otherwise change the installed agent or disturb the end user.

The goal of this utility is to delete these files:

C:\Windows\System32\sbfc.dat
C:\Program Files\Sunbelt Software\SBEAgent\definitions\sbts.dat

1. Stop the Counterspy/Vipre Enterprise Service.
2. Close the Counterspy/Vipre Console.
3. Navigate to the Counterspy/Vipre install directory.
4. Rename the Packages folder to Packages-Clean.
5. Save http://www.sunbeltsoftware.com/support/vipre/stopbootquar/packages.zip to the CSE/VIPRE install directory.
6. Extract the new Packages folder.
7. Start the Counterspy/Vipre Enterprise service.
8. Log onto the Counterspy/Vipre console.
9. Change the Deployment Timeout to 15 seconds. (System->Configuration->Advanced Settings)
10. Add “SBEAgentDeployW.exe” and “STOPBO~1.EXE” to the Admin-defined good for all policies. (Make sure to click the Good tab to prevent accidentally adding these to the Known bad).
11. Wait for the deferred work to be processed for all Installed agents.
WARNING: All agents with a status of “installed” must process their deferred work before proceeding. Failure to do so will result in this patch NOT being applied.
12. Deploy to a test agent using the Push method from the console.
13. Reboot the test agent to verify that the patch was correctly applied.
14. Apply the patch to each policy by selecting all the agents and then Deploying via the automated push method.
15. Test at least one machine from each policy before allowing all the agents to reboot. If the patch did not take, double check the exclusions and push it out again.

Once all machines have the patch applied, you can then replace the install package with the original.
1. Stop the Counterspy/Vipre Enterprise Service.
2. Close the Counterspy/Vipre Console.
3. Navigate to the Counterspy/Vipre install directory.
4. Delete the Packages folder.
5. Rename the Packages-Clean folder to Packages.
6. Start the Counterspy/Vipre Enterprise service.
7. Log onto the Counterspy/Vipre console.
8. Change the Deployment Timeout back to 120 seconds. (System->Configuration->Advanced Settings)

You can contact our support department if you have any questions on this or run into any issues. Support can be reached at support@sunbeltsoftware.com or by calling (877) 673-1153 Monday through Friday 9 a.m. to 6 p.m. EST.

We apologize for any inconvenience that this may cause.

Thank you,
Sunbelt Software