Endpoint Protection

Hi All,

We all have a tendancy to jump up and down when something goes wrong, but less of a tendancy to praise when somehting goes right....

I just wanted to share the fact the SEP may have just saved my bacon.

Packed.Generic.232 coming in on dozens of emails.

Passing straight through our external email AV provider (Postini AKA Google), passing straight through Sophos AV on our internal mail servers.

SEP is picking it up up thankfully.

I'm not saying that the other vendors are 'bad' because they didn't pick it up (although it is concerning why 2 of the three didn't get it - 1 I might accept as normal)
But this does highlight why multiple vendors are a good idea.

Nick

Thats very nice of you..that you took out time to appreciate it..
Otherwise normal human tendency is to blame when when it doesn't work..
But when it works good..we think it is doing what it is supposed to do..

Good to know we all chose the right product for enpoint protection.
And kudos to your setup. I'm guessing top level management is unconcerned about this since the network is still safe. Thumbs up!

Great to see people praising SEP too. It's pretty good, not perfect yet, but it's getting there.

Thumbs up for you Nick.

Cheers.

Comments like this will definitely increase our Net Promoter Score.

Cheers !!!

Nickf, Thanks for the positive story. We all tend to forget that with all the negative issues presented to us, that there are  many customers that are happy with theses products. Thanks again.

Cheers,
Thomas

We've had a flood of the Packed.Generic.232 as well. We're running Symantec CE 10 and it's catching it as well. I do wonder why there's no information on Symantec's site regarding this particular trojan....reg keys to check, etc.

Julie,

I am checking on why that threat is not listed. I will update here when I have new information.

Thomas

You almost never hear when things are going well with a product, but always hear about the bad stuff.  I mean people dont join and post on these forums to only post positive experiences...

@ Julie,

We do not have a write-up for Packed.Generic.232 threat. This threat family tends to have a generic write-up stating:

"Packed.Generic.XXX is a heuristic detection for files that may have been obfuscated or encrypted in order to conceal them from antivirus software."


Let me know if you need more info.

Cheers,
Thomas

Thanks, Thomas! I think our staff is confident that SAV is taking care of these as they come in. Have a great day!

Thanks Nick...

I am sure this would make all of us smile .. THUMBS UP from me..


Thanks :-)

Thanks Nick, your comments are refreshing to see on a forum.

there are a lot of folks here to help.

Eric

Big thumbs up from me as well. All we usually hear is SEP didn't pick this virus up but blank and blank anti-virus did. I am glad you took the time out to write out that SEP picked up something that others didn't. Like others have said this is very refreshing. Made me happy to read through all of the positive comments : )

Grant-

Symantec Endpoint Protection is one of the best business antivirus software solutions available. The software protects all your business computers, including servers, with powerful protection and advanced features. The system is quite flexible, and easy to implement and manage. Symantec is completely equipped to protect your business, and makes the integration and maintenance simple.

http://anti-virus-software-review.toptenreviews.com/small-business-antivirus/symantec-antivirus-corporate-edition-review.html

Good to hear you that, I agreed that SEP is Good AV when it comes to Virus detection, although some end user doesnt satisfy to it But I ignore them I believe on what I see and experienced.

Thanks there is an AV like this .

SEP MR4 MP2 running company wide.  up to date definitions.
conficker just went through network.  symantec is stupid enough to detect it and notify but not actually stop it from spreading.
won't be renewing.

SEP isnt supposed to be the end all be all. It is part of your overall security solution. I have my complaints about SEP, but I havent seen a better single source alternative.

Endpoint has improved a lot if compared with 11.0.780 version. But still there are lots of issues to be fixed which I am sure will be fixed in the coiming upgardes.

I'd like to know your complaints. Just to prepare myself for my client. And you could also turn your complaints into ideas.

Please post your complaints and we will help you resolve that.

It is good when someone appreciatte SEP's good perf and still doesn't give negative feedback on others..

Positive comments are really good...
specially adding the deatils of resolution...
thanks nick for sharing this to us...

by the way, what action did Symantec Av did to the Packed.Generic.232 virus?
did you still need physicall intervention or was it automatic?
thanks... 

Appriciating story.

Good to hear that we all are participating in a good product's Forum.

Keep the momentum going

Symantec is THE NO.1 Enterprise Security Company in the World, THE NO.1 Customer Security Company in the World, THE NO.1 Backup Company in the World....

and surely Comments like this will definitely increase our Net Promoter Score.....


Kudos to you....

People tend to forget or they are not aware that there are a large number of variants for a single strand of viruses, and the number of samples that we have for testing is limited, but even with the limit of the samples that we have, we are making a pretty good job of detecting viruses, provided the AV is up-to date.

The employees in a company should also act responsible by not visiting sites or running software that may provide a path for virus to get in.

All i hear from people when i am with Sys admin would be that the SEP does not detect viruses or SEP detects it but does not remove the viruses. Is that the case with all the viruses, SEP detects lots and lots of viruses but may miss upon 1 or 2 that too because of the system environment or the way a profile is configured.

Little do people know that SEP has a way of scanning which no other vendor has, its OFS, open file scanning. When enabled all those viruses that were not removed by SEP due to "access Denied" would be removed.

When things are used and when properly maintained little chance of it going bad.

We have and will be maintaining "OUR SEP" in a way that no other av can even be called as a match for SEP

 Nice to hear about something like this. Keep it up with more positive feedback :)

NickF,

I'd like to take this opportunity to express our deepest and heartfelt appreciation for choosing Symantec.

Again, thank you so much, we value you as a customer.

Hello to all Professional's Network Admins.
Realy i think that, when the Yellow Shield of SEP with Green DOT is Present on Windows Status bar, it's like a Police that lookup Around your Machines & Check All Network Activities withou notification to anybody & we fill Safety around ourself.
When the users sometime look at the SEP icon's in, it Seems that Confident will help to work Better & Better. Remember that, when SEP is working smootely, Everything is OK & nobody knows, what's Behind it, Sometimes when some Errors Accured, maybe the Helpdesk show us the SEP Logs & at that time, we know that, How SEP is working. But Sometimes, Some Worms or ... will Scape & so, SEP dosn't know it or such a thing ...
So, we will Angry about it & we Call Support & OUTCRY about it  "  Like me & sometimes you too  :-)  ". So, is we JUSTICE  about it. SEP is one of the Quiet Antiviruses on the World & i think that we Sohould say to SEP  ( THANK YOU, VERY MUCH SEP ) .

Best Regards, Jalal Nourbakhsh - System Administrator & Security Manager
 

Dear Nourbakhsh,
Salam
Because I have a problem with SEP,I think you can help me.
Please informed me your phone or mobile by PM or Email.
Best regards
Hamvatan