Endpoint Protection

 View Only
Back to discussions
Expand all | Collapse all

Online Banking can not access when IPS for browser is enabled

  • 1.  Online Banking can not access when IPS for browser is enabled

    Posted Jun 19, 2013 04:15 AM

    I use Windows XP with sp3 and IE8.

    I encounter an issue when I access my online banking. Here is the link of online banking http://ebank.spdb.com.cn/en/index.html

    Click "sign in" Without installing the security component, a new windlows will pop out and the page will display correctly.

    After I install the security component and "sign in" again, the windows pops out but the page is stuck and no response.

    When I disable the IPS for browser or uninstall SEP client, everything is OK.

    But I remember that I can access my online banking last month.

    So I restore my OS with SEP installed but the virus definition date is last year, and I can access my online bank.

    After virus definition is up to date, I encounter the same issue. 

    So what should I do?  Call the bank to upgrade the security component or this is a bug of SEP?



  • 2.  RE: Online Banking can not access when IPS for browser is enabled

    Posted Jun 19, 2013 04:22 AM

    Add the site to the trusted site list in IE and check again.



  • 3.  RE: Online Banking can not access when IPS for browser is enabled

    Posted Jun 19, 2013 04:38 AM

    thanks for reply, but this site is added into the trusted site list already.



  • 4.  RE: Online Banking can not access when IPS for browser is enabled

    Posted Jun 19, 2013 05:38 AM

    create an exclusion for the bank domain

    http://www.symantec.com/business/support/index?page=content&id=HOWTO55167#v38528395



  • 5.  RE: Online Banking can not access when IPS for browser is enabled

    Posted Jun 19, 2013 07:15 AM

    Does the Security log show what signature is firing?



  • 6.  RE: Online Banking can not access when IPS for browser is enabled

    Posted Jun 19, 2013 07:28 AM

    open  your av and change settings then exceptions then add security risk exception in that you can see web domain then copy and past that site addres

    may it wrk

    tnx



  • 7.  RE: Online Banking can not access when IPS for browser is enabled

    Posted Jun 19, 2013 10:34 PM

    Nothing was logged in NTP log. So I don't know how to create an exception.



  • 8.  RE: Online Banking can not access when IPS for browser is enabled

    Posted Jun 19, 2013 10:35 PM

    Nothing was logged in NTP log. So I don't know how to create an exception.

     



  • 9.  RE: Online Banking can not access when IPS for browser is enabled

    Posted Jun 19, 2013 10:49 PM

    thank's for your advice. But it doesn't work. :-(



  • 10.  RE: Online Banking can not access when IPS for browser is enabled

    Posted Jun 24, 2013 01:22 PM

    Check every log on the client, it might be hitting on something other than NTP. SONAR perhaps?



  • 11.  RE: Online Banking can not access when IPS for browser is enabled

    Posted Jun 24, 2013 08:33 PM

    Nothing was logged. I also look for the log from NTP, SONAR, but nothing related.



  • 12.  RE: Online Banking can not access when IPS for browser is enabled

    Posted Jul 04, 2013 05:55 AM

    did you check network threat protection log?



  • 13.  RE: Online Banking can not access when IPS for browser is enabled

    Posted Jul 04, 2013 06:03 AM

    HI, 

    Creating exceptions for Symantec Endpoint Protection

    You can create different types of exceptions for Symantec Endpoint Protection.

    Any exception that you create takes precedence over any exception that a user might define. On client computers, users cannot view the exceptions that you create. A user can view only the exceptions that the user creates.

    Table: Creating exceptions for Symantec Endpoint Protection

    Task

    Description

    Exclude a file from virus and spyware scans

    Supported on Windows and Mac clients.

    Excludes a file from virus and spyware scans.

    Note:

    File exceptions do not apply to SONAR. To exclude a file from SONAR, use an application exception.

    Exclude a folder from scans

    Supported on Windows and Mac clients.

    Excludes a folder from virus and spyware scans, SONAR, or all scans on Windows clients. You can also exclude a folder from virus and spyware scans on Mac clients.

    Exclude a known risk from virus and spyware scans

    Supported on Windows clients.

    Excludes a known risk from virus and spyware scans. The scans ignore the risk, but you can configure the exception so that the scans log the detection. In either case, the client software does not notify users when it detects the specified risks.

    If a user configures custom actions for a known risk that you configure to ignore, Symantec Endpoint Protection ignores the custom actions.

    Security risk exceptions do not apply to SONAR.

    Exclude file extensions from virus and spyware scans

    Supported on Windows clients.

    Excludes any files with the specified extensions from virus and spyware scans.

    Extension exceptions do not apply to SONAR.

    Force an application detection

    Supported on Windows clients.

    Use the Application to monitor exception to force virus and spyware scans or SONAR to detect an application. When clients detect the application, you can create an exception to allow or block the application.

    Specify how scans handle detected or downloaded applications

    Supported on Windows clients.

    Specifies how Symantec Endpoint Protection handles an application that is detected by virus and spyware scans (including Download Insight), SONAR, Tamper Protection, or application learning. You can use the exception to specify how Download Insight handles an application that your users try to download.

    You can force Symantec Endpoint Protection to detect an application by specifying an Application to monitor exception. Then you can create an Application exception to specify how scans handle the application.

    The application exception is a SHA-2 hash-based exception. Legacy exceptions for TruScan proactive threat scans appear as SHA-1 hash-based exceptions. Legacy clients support SHA-1 exceptions only. The file fingerprint in the exceptions list is preceded by a 2 or a 1 respectively to indicate the file hash type.

    Exclude applications from application control

    Supported on Windows clients.

    Occasionally application control interferes with an application. You can configure an exception to exclude an application from application control.

    Exclude a Web domain from scans

    Supported on Windows clients.

    Download Insight scans the files that users try to download from Web sites and other portals. Download Insight runs as part of a virus and spyware scan. You can configure an exception for a specific Web domain that you know is safe.

    Download Insight must be enabled for the exception to have any effect.

    Note:

    If your client computers use a proxy with authentication, you must specify trusted Web domain exceptions for Symantec URLs. The exceptions let your client computers communicate with Symantec Insight and other important Symantec sites.

    Create exceptions for Tamper Protection

    Supported on Windows clients.

    Tamper Protection protects client computers from the processes that tamper with Symantec processes and internal objects. When Tamper Protection detects a process that might modify the Symantec configuration settings or Windows registry values, it blocks the process. You might need to allow an application to modify Symantec settings. You might want to stop Tamper Protection for certain areas of the registry or certain files on the client computer.

    In some cases, Tamper Protection might block a screen reader or some other assistive technology application. You can create an exception so that the application can run on client computers.

    Regards

    Ajin