Video Screencast Help
Symantec to Separate Into Two Focused, Industry-Leading Technology Companies. Learn more.

Security risk report

Created: 04 Mar 2011 | 4 comments

Hi,

Please look at the attchment. Last 2 days I am getting this report.

Can anyone please give me a small explanation? That will be very helpful for me to take necessary steps.

Thankx in advance.

Comments 4 CommentsJump to latest comment

Kurt G.'s picture

You may also be able to get more information about what is occuring by opening Monitors>Logs within the SEPM. Select Log type: Network Threat Protection & Log content: Attacks. Also ensure that you have a time range selected that would include the time frame that these attacks were logged in the report you have received.

Kurt G.
Symantec Technical Specialist: Endpoint Security Advanced Team

Symantec Corporation www.symantec.com

Symantec Enterprise Support: (800) 342 0652 

VSK's picture

Do you recognise these  ip addresess?

10.1.20.131
110.1.155.229

 

If you  think that these are the  computers, in your network, then, scan these  computer, with latest  SEP Definitions. You can also run sep support  tool-loadpoint  on these.

 

If these  IP addressess are  not of your  network, then you  czan simply  block these  IP adddresses..

-VSK

akaki's picture

Hi,

Sorry for very late answer.

I can't recognize those IP, but in "HR1" in "Top Targets attacked by clients" section, is my networks Laptop.

So, from where I'll block those IP, from that laptop?

~r