Message Image

Skip main navigation (Press Enter).

Data Center Security

View Only

Back to discussions

Expand all | Collapse all

Processes that should not start... will ALWAYS start?

Jump to Best Answer

Will VAug 28, 2015 10:06 AM

While tracking down an unrelated issue, I happen to look at the list of processes that should not start ...

Migration UserSep 03, 2015 04:45 AMBest Answer

Will, I run into this KB from Symantec, it seems to be an open issue: https://support.symantec.com/en_US/article.TECH215302.html ...

Will VSep 04, 2015 03:16 PM

Thanks MIguel, I'll keep an eye on that KB. Will

1. Processes that should not start... will ALWAYS start?

0 Recommend
Will V
Posted Aug 28, 2015 10:06 AM

Reply Reply Privately
While tracking down an unrelated issue, I happen to look at the list of processes that should not start (Global Options > General > Global Poliy Lists) and I noticed that every entry has a Signature Flag of 'Q01'. Does anyone have an idea of why this flag is present? It seems to be some kind of bogus entry. If, for example, I try to launch fpt.exe, I will never see the Q01 flag in the event details. The net effect is that none of these processes will be stopped without altering the list. The bogus flag ensures a match will never happen.

Thoughts?

Will
2. RE: Processes that should not start... will ALWAYS start?
Best Answer

0 Recommend
Migration User
Posted Sep 03, 2015 04:45 AM

Reply Reply Privately
Will,

I run into this KB from Symantec, it seems to be an open issue:

https://support.symantec.com/en_US/article.TECH215302.html

Regards

Miguel
3. RE: Processes that should not start... will ALWAYS start?

0 Recommend
Will V
Posted Sep 04, 2015 03:16 PM

Reply Reply Privately
Thanks MIguel,

I'll keep an eye on that KB.

Will

Copyright 2019. All rights reserved.

Powered by Higher Logic