File monitor, using when deal with virus issue

Updated: 06 Aug 2009 | 1 comment

Symantec Employee

Accredited

Certified

0 0 Votes

Hi All

When a virus infects a machine/client, there is a common scenario that antivirus products like SAV or SEP detect - one file, again and again. For such situations, we need to check the source of the detected file. Afterwhich, we need to open the file monitor, allow it to track all the files "read-and-write." This will let us identify the suspicious process.

wish this tool can help.

Ivan

Filemon.zip

download Filed Under:

Security, Endpoint Protection (AntiVirus) - 11.x, Endpoint Protection (AntiVirus), Endpoint Protection Small Business, IT Risk Management, Security Risks

Login or register to post comments
Comments RSS Feed

Comments

Aug

2009

0 Votes 0

Nourbakhsh

Sysinternal Suit

Hello & Thanks Ivan

As you may know, there is Very Usefull Utilities for Admins from Sysinternal called Sysinternal Suit and these utilities can help Admins to most of necessary jobs that we need when we have problem & need to do some Disaster functions to find Threats or such a things .

Best Regards, Nourbakhsh

File monitor, using when deal with virus issue

Comments

Sysinternal Suit

Would you like to reply?

Links

Technical Support

Symantec.com

Store

Community Stats