This article describes how to apply an
Extra.DAT locally using the ENS Client. With a standalone ENS installation that doesn't use a central update repository, such as ePolicy Orchestrator, you must apply the
Extra.DAT locally.
For more information, see the "Download and load an Extra.DAT file on a client system" section of the
Endpoint Security 10.7.x Product Guide.
An
Extra.DAT is a temporary detection file that Trellix Labs creates. An
Extra.DAT detects and removes threats that haven't yet been added to the daily DAT files. Apply an
Extra.DAT to the infected system and any systems that can potentially be compromised. An
Extra.DAT automatically expires after 30 days.
IMPORTANT: An
Extra.DAT is released with limited testing and is provided with the sole purpose of addressing a specific threat. We recommend that when you deploy an
Extra.DAT to more than a few systems, you test deploying the
Extra.DAT to a subset of these systems. After you've verified that there's no problem with the
Extra.DAT, then deploy it to all affected systems.
NOTE: Negative
Extra.DAT files suppress a detection. These files don't show up in the
Help,
About Endpoint Security screen.
To apply the Extra.DAT locally:
- Open the ENS Client.
- From the Action menu in the top-right corner, select Load Extra.DAT.
- Click Browse, navigate to the location where you downloaded the Extra.DAT file, and click Open. Make sure that the file is named Extra.DAT.
- Click Apply.