Hi All,
We are using SEP 11 RU 7. We have not scheduled any scans. But only in one managed system, Scan is starting daily morning when the updates are downloaded. Please help us.
Thanks & Regards
Vamsi
it looks like active scan is enabled, check this link to disable it
http://www.symantec.com/business/support/index?page=content&id=TECH106098
Hi Pete,
Thanks for the reply.
We have not enabled "Run startup scans when users log on & Run an Active scan when new definitions arrive" options. The problem system is a member of group which contains more than 500 systems. All other systems of the same group are working fine. The problem system is updating regularly without fail. But whenever updated it is starting the scan and it is consuming more CPU resource. So the user is unable to work properly.
did you check is it full scan? and it is immediately after update?
can you post the scan log?
is the client reporting to the sepm? is it having the same policy as other clients?
Yes it is full scan and it is immediately after update.
Right now user is not available. He will come back on Monday. I can send you the scan log on the same date. Is it possible to check the scan settings on client side, in any file...?
At client side, you can do the following:
HTH!
Examine client registry for scheduled scan information To verify whether any scheduled scans exist in the registry for that client, navigate to
HKEY_LOCAL_MACHINE\SOFTWARE\Symantec\Symantec Endpoint Protection\AV\Local Scans\*
check scan log