I have been evaluating the Symantec System Recovery Desktop Edition backup and recovery software and I noticed that if I backup over the network smc.exe from SEP runs at a very high utilization rate for about 30 seconds, then drops to almost nothing for a few seconds, and then spikes again.
At first I figured it was auto-protect causing the issues but that doesn't seem to be the case because this issue doesn't happen if I backup locally to a thumb drive or external USB disk. I also disabled NTP and the high CPU utilization goes away almost immediately and then if NTP is enabled it comes back again. The other interesting note is that when NTP is enabled the time for the backup completion increases and then after NTP is disabled the time to complete drops a pretty good amount.
My firewall rule is set to allow all with no logging. I do have IPS enabled as well. Device control is enabled but is not actively blocking anything, monitoring anything, or logging anything.
Since I'm not logging with the firewall or blocking I'm not sure how I get around this issue? It's as if I need a way to ignore the traffic generated from this application but all I can do is allow or block it.
Anyone experienced these issues as well?
SEP RU6 MP2 and SSR 2011 desktop edition on Windows XP Mode