12.1 - Old data causing new alerts
I have 1 client (12.1) causing some problems for me, for the last few weeks I have routinely gotten alerts about events months or years past.
Here's the most recent alert:
Risk name: (Unknown)
File path: Cookie:username@statse.webtrendslive.com\
Event time: Aug 5, 2011 9:16:30 AM
Database insert time: Jan 24, 2012 10:15:31 AM
Source: Heuristic Scan
Description: ""
User: username
Computer: computername
IP Address: x.x.x.x
Domain: Default
Server: Servername
Client Group: My Company\Corporate
Action taken on risk: Details pending
This alarm was generated at Jan 24, 2012 11:18:02 AM (Reporter host Time).
This alarm was generated by bsalyer, with the following filters:
Domain: %
Group: %
Server: %
Computer: %
Risk name: % -->
.attach_div {float:left;margin:3px;} .attach_content_div {font-size:14px; text-align:center;}
I've swept logs on the SEPM, I've reinstalled the client, and I've recreated the notification alert on the SEPM. Any suggestions?
Comments
hi
once you recreate the notifications and restart sepm services. they should not show up.
Please don't forget to mark your thread solved with whatever answer helped you : ) Rafeeq
I agree
Hello,
I agree with Rafeeq.
Could you try deleting the Notification and recreating the same notification again.
Hope that helps!!
Mithun Sanghavi
Symantec Technical Support Engineer, SEP
MIM | MCSA | SCTS | ITIL v3
Follow me on Twitter: @mithun_sanghavi
Don't forget to mark your thread as 'SOLVED' with the answer that best helped yo
Would you like to reply?
Login or Register to post your comment.