Video Screencast Help
Give us your opinion and win with Symantec! Please help us by taking this survey to tell us about your experience with Symantec Connect, so that we can continue to grow and improve.  Take the survey.

Top Sources of Attack Report in SEPM

Created: 08 Jan 2010 • Updated: 21 May 2010 | 1 comment
Brɨan's picture
This issue has been solved. See solution.

Is there a way to get more info on this report other than just the machine name? I would like to see what it's infected with and how / what it's doing that it's considered an attack.

Comments 1 CommentJump to latest comment

Vikram Kumar-SAV to SEP's picture

You might need to drill down the NTP ( firewall + IPS ) logs to find out what type of attack these machines launched

http://service1.symantec.com/SUPPORT/ent-security.nsf/docid/2009081410460448 

Vikram Kumar

Symantec Consultant

The most helpful part of entire Symantec connect is the Search button..do use it.

SOLUTION