Security
Marcopollo
|
November 8th, 2009
Hi guys,
I tryed install SEP 11 in netbook running Windows 7 but it returns a error message about "Processor not Supported".
The netbook is a Microboard one with Atom 1.6 and 2GB RAM. Witch such configuration I think that any AV should work. McAfee Enterprise do.
If SEP 11 doesn't run with Atom, Symantec's web page is out-of-date. There stats EXCEPT Itanium, all Intel processors are supported (and I think Atom is a Intel processor).
Have anyone of you SEP running on a netbook? If so wich version should I install.
Thank you all.
James.
3 comments
Mosack
|
November 8th, 2009
Keep getting this message every 20 minutes or so. I scanned with SEP and it picked up nothing, additionally I've used about 5-7 other programs to try and fiure it out, and nadda. If there is something on my computer and it knows it's there, why is SEP blocking it and not attempting to get rid of it?
3 comments
joebach
|
November 8th, 2009
re: Symantec Endpoint Protection has detected that there are pending system changes that require a reboot..
For this either you restart the system or delete the registry key for pendingfilerenameoperations
I have no registry key named: "pendingfilerenameoperations" only a key named filerenameoperations which I deleted and that did not work.
Rebooting does not work.
There are no pending operations I know of.
3 comments
Bijay.Swain
|
November 8th, 2009
http://www.zdnet.com.au/blogs/securifythis/soa/Why-popular-antivirus-apps-do-not-work-/0,139033343,139264249,00.htm
Why Ingram micro who sells symantec product says symantec doesn't detect 80% threat.The link is above and below is the content on the link
Why popular antivirus apps 'do not work'
Posted by Munir Kotadia @ 16:38 77 comments
Antivirus applications from Symantec, McAfee or Trend Micro -- the three leading AV vendors in 2005 -- are far less likely to detect new viruses and Trojans than the least popular brands.
This has nothing to do with the quality of the software or how long it takes the respective firms to update their clients with signatures and other malware countermeasures.
AV companies continue to refine their products and most will tell you they stopped relying on purely signature-based systems many years ago. These days they use all sorts of clever methods to try and detect suspicious behaviour but the problem is that malware authors are also very clever. Very,...
Security, IT Risk Management, Performance, Endpoint Protection (AntiVirus), Enterprise Security Manager, Security Information Manager, Symantec Connect
0 comments
hemu
|
November 8th, 2009
Is these any way by which i can creat 1600 GUPS in 1600 diff group...........i need to recreat my DB.......
Please help
2 comments
MadhaviR
|
November 8th, 2009
Hi Folks
I have installed Symantec 11.0.5000.329 on Windows 7 and there is no date for virusdefintions it is blank.
4 comments
naorp
|
November 8th, 2009
Hi,
As the title says, i would like to update policies manually on a managed client, is that possible?
Just to make it clear i will describe the situation: there is a computer installed as a managed client so that he will get device control policies and more.
then we unplugged the computer from the network so that we could experiment on the computer (including infecting the computer with viruses), now we would like to change policies on the comptuer but there is 80% chance that the computer is infected and i do not wish to infect the entire network. is there a way that its possible (with administrative rights of course)?
now about an unmanaged computer, most of the SEP functionalities are un-available in the unmanaged mode, is there a way to alter the SEP Client and use managed propeties on the Unmanaged client?
Thanks.
Naor .p.
4 comments
MadhaviR
|
November 8th, 2009
Hello Folks
We are in testing Phase of Symantec 11.0 . When we compare that with the SAV Corp it has some more features. I want to know about NTP and PTP? I tried to find knowledge base but was not able to get that exact and appropriate information. What ever information I could get it seems that NTP is the firewall . But I need some more information on the same.
Thanks in Advance
1 comments
TSE-JDavis
|
November 7th, 2009
I recently received a case where a customer wanted to test the Symantec Scan Engine functionality where it can forward a threat to a Central Quarantine server.
After a lot of testing, we were able to determien that EICAR would not be forwarded, it only get deleted. I talked with the Symantec Security Response team and they provided me with a fake macro test file that Scan Engine detected and forwarded successfully!
I am still waiting for confirmation on if this is a file that can be shared with customer as a test file. I will post it if I can!
0 comments
plockel
|
November 7th, 2009
Bonjour,
Peut-on exporter la configuration de Symantec Mail Security for SMTP 5.0 vers Symantec Brightmail Gateway 8.0X ?
Merci d'avance pour la réponse
1 comments
George78
|
November 7th, 2009
Hi all
I am evaluating SEP Suite for the purpose of a customer of mine. This customer is receiving huge amount of spam and virus.Symantec does a good job on stopping both risks but not with the archiving folder on exchange 2003.
I would like to know if there is any different procedure to filter all mail that is saved on exchange 2003 archive mailbox as i dont know why all spam messages are not going to junk folder.
Thanks
George
0 comments
Monica Alexander
|
November 7th, 2009
Hi....
Am unable to uninstall SEP from a client machine...An error stating "Live Update is still running"....We have also run clean wipe to uninstall it....After clicking on the prompts....there is no progress...It only stops with the Windows Installer Dialog box....Please help out with a soln....
Regards,
Monica
6 comments
Bijay.Swain
|
November 7th, 2009
How to turn off replication between two sites?
I want to reinstall my replication site again so how to turn off replication before uninstalling it.
Security, Basics, IT Risk Management, Best Practice, Configuring, Features, Installing, Performance, Reporting, Endpoint Protection (AntiVirus), Tip/How to, Upgrade
1 comments
Samir Patil
|
November 6th, 2009
When we analyzed spam data from the past few years, we observed that holiday seasons spirit up malware spam campaigns using e-cards, video player downloads or ActiveX download attacks. We have found that greeting card or e-card spam are the most common. Due to this reason spammers are employing this technique in other spam campaigns.
When analyzing spam messages from the Symantec Probe Network, we came across an interesting phishing attack where spammers are misrepresenting e-card services.
In this unique phishing attack, a URL for the animated e-card is provided in the message. When the user clicks on this link, an animated video is played in a flash player. Surprisingly, the personal message section is invaded by a typical phishing message.
The greeting card message is shown in the image below:
Message translation:
Subject: Acknowledgment of e-card.
URGENT ... [removed] Hello,
The card you selected has been sent to [Message Details Removed] on November 1, 2009
To see the card you...
1 comments
Day7Theory
|
November 6th, 2009
it reads "Unsolicited incoming ARP reply detected, this is a kind of MAC spoofing that may consequently do harm to your computer" ive done a few tracert reports and didnt see any alarm there. I am also on a wireless network and my question is could this be the network im on "bridging" trying to find my IP address causing the Message above? and should this be any concern for alarm?
Emerging Threats, Security, 10.x, Internet Security Threat Report, Security Risks, Reporting, Endpoint Protection (AntiVirus)
4 comments
Gersh
|
November 6th, 2009
Hi,
I upgraded from MR4MP1a to RU5
After I login, the Home, Monitor,Reports icons are blank, and I get an error "Unable to communicate with reporting component"
SEOM installed On Windows Server 2003 R2, Using Embadded Database
Tested the ODBC > Successful
6 comments
ant2010
|
November 6th, 2009
My Domain server has this problem 2 weeks ago. it worked fine before.
About every one day, the DC server will automatically create user's profile under "document and setting" in server. No roaming profile was set. when we have this problem, we cannot access the shared folder in server. Restart the server solve it temporary but about 10 hours later, same problem come again.
I searched the solutions for this problem, some one suggested uninstall symantec, so I stopped all symantec service in DC server, and seems the problem fixed.
we use symantec antivirus version 10.1.5.5002.
any one know how to fix it?
Any suggestion would be appreciated..
Thanks,
Ant
Security, 10.x, IT Risk Management, Security Risks, Configuring, Features, Endpoint Protection (AntiVirus)
2 comments
hrsand
|
November 6th, 2009
All week I've been fighting with a persistant pop up that's been accompanying repeated "Packaged Generic 214" and "Trojan Vundo" blocks by my SEP. I've enabled multiple pop-up blockers, tried Firefox and IE 8, and have scanned numerous times in safe mode, in regular mode, with system restore turned on and turned off (per advice from link at SEP Antivirus Protection Log PDF attached). Anyone else have this experience? Any advice how to resolve? TIA!
2 comments
Steelejaxon
|
November 6th, 2009
New to SSIM. I have made several changes to the correlation rules (ex. changed the Windows account lockout to excude a certain username who frequently gets locked out). However, even after making the change, I am still getting incidents based on these changes. Another examples is the Spyware Not Quarentined events. I made a change to exclude any events in which the words "google search bar" appear in the Name field as this is a common false positive for us. Again, I have seen incidents with events which should be excluded pop up after I made the changes. I have the custom (User) rule checked and the default (System) is deselected. Any ideas?
1 comments
Minh_at_Symantec
|
November 6th, 2009
The Symantec Enterprise Early Adopter Program is now accepting applications to participate in the Symantec Mail Security for Exchange v6.5 Beta.
Symantec Mail Security for Exchange v6.5 provides comprehensive protection for your Exchange 2010, 2007, and 2003 mail servers. In addition to Exchange 2010 support, this release will provide a number of performance and resource enhancements for both virus and spam scanning.
This Beta will commence on November 30, 2009 and end on December 30, 2009. This release is scheduled for availability on February 15th, 2010.
Please click on the link below to pre-register.
https://symbeta.symantec.com/callout/default.html?callid=%7b48BD7140-1E55-4DCB-A860-414B22234B78%7d
0 comments
Minh_at_Symantec
|
November 6th, 2009
The Symantec Enterprise Early Adopter Program is now accepting applications to participate in the Symantec Mail Security for Exchange v6.5 Beta.
Symantec Mail Security for Exchange v6.5 provides comprehensive protection for your Exchange 2010, 2007, and 2003 mail servers. In addition to Exchange 2010 support, this release will provide a number of performance and resource enhancements for both virus and spam scanning.
This Beta will commence on November 30, 2009 and end on December 30, 2009. This release is scheduled for availability on February 15th, 2010.
Please click on the link below to pre-register.
https://symbeta.symantec.com/callout/default.html?callid=%7b48BD7140-1E55-4DCB-A860-414B22234B78%7d
0 comments
Samir Patil
|
November 6th, 2009
Scammers based in Nigeria have long been known for using legitimate email formats for spreading infamously fraudulent 419 messages. We have already monitored e-card services, social networking invites, and various other services provided on social networking sites. Yet another example is a calendar service being abused for sending scam messages.
Sadly there is an addition to this list, where the “send link to friend” service is exploited for sending scam messages. Many news websites provide an option to send news links to another person. A text area is also provided to write personalized messages. It is a general tendency of netizens to share important news with friends by forwarding the links along with their comments on the news. In a recent spam attack we monitored a typical 419 scam message injected into the text area of a news article. With this, scammers smartly introduce a scam message in an otherwise very legitimate looking mail.
The “Subject” line of...
0 comments
Advanta
|
November 6th, 2009
Antivirus client should never allow to mark a message as "Sent" by user EMail client BEFORE EMailScanner sucessfully sent it.
0 comments
camerons
|
November 6th, 2009
I've running a endpoint protection server V11.0.4204.MR4.MP2. I've created a set of Antivirus/Antispyware policies which I've assigned to the appropiate group. When I goto create my client install package I setup the group in the menu that I've assigned the special policies.
The problem when I deploy the application, it appears as unmanaged, and doesn't contain any of the policies I've applied. I've verified the policies are applied and re-created the package, with exactly the same results.
The installation of the client goes textbook, but it use's the wron settings.
Any idea's?
Thanks,
0 comments
David Fanning
|
November 6th, 2009
Is there a way to select which SEPMs can be used to download updates?
We have a total of 6 SEPM's but I only want two SEPMs to download updates from the Internet. Then the other SEPMs can receive updates from the content downloaded from the SEPM, which grab updates from the Internet.
The other SEPMs have slow Internet connections.
We are running SEP 11 MR4 MP2.
Thanks.
6 comments