Endpoint Protection

 View Only

  • 1.  Client Infected and SEPM don't detect.

    Posted Sep 29, 2009 06:14 AM 
    
I had a big problem this week two computer inside my organization where infected by W32.downadup.b virus. we already are using the latest version of SEP and SEPM.

1 Problem - The client didn't report to the manager and even after we remove the virus with the symantec removal tool it still not report's to management server.
2 Problem - I haven't received any alert on the workstations or by mail(from manager) alerting me to this situation.

This is a situation that preoccupies me because i don't know if there is anything else on my network that i don't know and I was supposed to be alerted by SEPM.

Anyone else as a situation like this is this a bug from this version of SEPM or SEP client.


Thanks for any help


  • 2.  RE: Client Infected and SEPM don't detect.

    Posted Sep 29, 2009 06:24 AM
    Hi,

    You can refer to the following document for best practices for virus troubleshooting. Identify which steps have you performed out of them and take it from there. Once you are absolutely sure that the computer is not infected anymore, you can bring it back on the network and then use the other document for communication troubleshooting.

    Best,
    Aniket


  • 3.  RE: Client Infected and SEPM don't detect.

    Posted Sep 29, 2009 06:34 AM
    Update the ms patches kb960714&kb 958644 and load latest virus definition manually.Then do a scan in safemode and try