Video Screencast Help
Security Community Blog
Showing posts tagged with Endpoint Protection (AntiVirus)
Showing posts in English
IanZ | 20 Jul 2009 | 1 comment

Last year, we started looking at SEP11. As we're still running on SAV8 for majority of the servers and clients, with a few SAV9 and SAV10, I believe it's about time to start upgrading to the latest version. I checked the features, documentations, forums, blogs, articles and everything about SEP and I'm getting a negative feedback, a lot of people are complaining. Some even call it a nightmare! Very discouraging. I kept on thinking, as the Server Technology Analyst and only 1 year with the company, I don't want to risk my new job as well as mess around with the servers. Is SEP11 ready for primetime, or is it a disaster? SEP11 is September 11, hmmm, a 9/11 disaster! So we didn't rushed to deploy this. Instead, I started working on test servers and clients. At the same time, as I'm the only one who's going to deploy and implement this, I need to have a plan, a very safe one.

I created a project plan, first looking at the existing SSC setup and...

Vikram Kumar-SAV to SEP | 20 Jul 2009 | 3 comments


I work as a Security Consultant for my company and obviously as an Antivirus specialist.

So this story is about a client who had about 8,000 clients and was currently using MacAfee. They were at the end of their contract,  in few months,so they were looking for a better solution as they were hit by number of outbreaks in the last couple of years and were not satisfied with the support provided.

So a Conference call was scheduled and I was invited to give my views on which antivirus solution to consider migrating,  and why to switch.  We also discuss the Pros and Cons.

Their requirement were pretty simple, but very strict, and they wanted a secure and Malware free environment due to the recent outbreaks which cost them too much with high downtimes and un-availability of critical production servers.

So when I joined the Conference, there were about 8 members with their own views and recommendations.  ...

Abhishek Pradhan | 19 Jul 2009 | 7 comments

I was recently roped in as an Independent consultant to help evaluate, design / architect and then implement a robust Security Solution for a Unit of the Defense Services in India. Can’t take names and place locations due to NDA's in effect with them, but can say this much that they deal with some pretty sensitive material and data, and they were having a hellish time in keeping Viruses and worms off their networks.

I was specifically tasked along with 4 other independent consultants, for evaluating other security solutions, which Included Symantec solutions as well since the authorities were concerned with the growing portability of USB data devices, and their main concern was that the smaller the device, the harder it is to try and detect it and prevent someone from waltzing in and making merry with their critical data, AND also introducing say a targeted threat / Trojan on the network, and continue to siphon the data / info away.

We were given the...

Rafeeq | 16 Jul 2009 | 8 comments

Hi There,

I'm Rafeeq, I work as a security consulant for a client, we handle their entire security infrastructure,including IPS signatures and network monitoring.
My client has around 2000+ computers in their environment. They had a mixed enviroment consisting of SAV 8.x and SAV10 running on two different domains with mixed mode. Their license was about to end for SAV 10 this september , hence they decided to go for an upgrade , client did not have any second thoughts of chosing different antivirus vendors no matter even if it comes for free, the reason they had (i'm sure we all agree to these points :) )

1) The detection rate of symantec is higher than any other antivirus companies i agree to this coz symantec has global sensors all over for this detection

              4 symatnec SOC
              74 symantec Monitored Countries...

Abhishek Pradhan | 14 Jul 2009 | 0 comments

1 To prevent an automatic sweep of the database until after a backup occurs, increase the Site Properties Log Settings to their maximum permissible value.

2 Perform the backup, as you may feel appropriate.

3 On the computer where the manager is installed, open a Web browser and type the following URL:


After you have performed this task, the log entries for all types of logs are saved in the alternate database table. The original table is kept until the next sweep is initiated.

4 To empty all but the most current entries, perform a second sweep. The original table is cleared and entries then start to be stored there again.

5 Reconfigure the Site Properties Log Settings to the initial preferred values.

Bijay.Swain | 11 Jul 2009 | 4 comments

As a system Admin my job was to secure user data and provide minimal down time for a network consisting of 1500+ PCs, 300+ terminals, 300+ Thin Clients, 50+ laptops, all within an area of 15 kilometers..  I was unable to do so because of the number of viruses spread throughout our network. 

Here's the history behind the issue, and how Symantec's Endpoint Solutions helped.  In the past,  we had no antivirus solution for our network .  Maintenance agencies were using some free AV product to clean infected Pcs. Because of  this process, Pcs were formatted regularly, at least once every 2-3  months. This  was causing serious problems for some of the important departments like purchase, marketing, project management, materials management etc. Additionally, some departments use digital signatures for banking, e-tender purposes, among others. After formatting those Pcs,  too many problems would arise. We...

Subhi Pattiam | 09 Jul 2009 | 1 comment


 i am using symantec,recently i got an error saying that " scan engine retuned an error 0*20000058".I have followed the basic steps.Upgraded the version & also tried to complete reinstallation & installation.Still facing the same issue.

Hear4U | 07 Jul 2009 | 0 comments

We are launching a new contest called "Connect and Protect" - tell us how you protect your data and you could receive a Flip camera, and an opportunity to win 2,000 Connect Rewards Points (redeemable for a Nintendo Wii, various iPods, etc.,)

If you are interested in entering this contest, just follow the link below and read the details of the contest. 

In a nutshell,
1.  Submit a blog of 1200 words answering a few questions (listed on the Landing page).
2.  If your blog is chosen, we'll send you a Kit, which includes the Flip Cam!
3.  Create and submit a video blog answering the same questions as your original blog.
4.  Wait and see if you win the grand prize!

This is a great way to earn some additional points, receive a flip camera, and share your story!

RolandAY | 30 Jun 2009 | 1 comment

 Keeping system folder to a minimum comes very handy in term of backup still to small might result in System running out of disk space which causes SEP and the whole system performance to lag
How to proceed?

1. On safe mode cut past the Symantec Endpoint folder content on a different location
2. create a clean partition
3. Windows + R type diskmgmt.msc
4. Right click on the new partition and select New Partition
5. Follow the instructions until you reach Assign Drive Letter or Path section
6. Select Mount in the following empty NTFS folder radio button and select Browse…
7. Highlight the C: drive and click on Symantec empty Folder
8. Complete the wizard
9. Copy back the Symantec Endpoint folder content
10. Reboot the system

Just remember to keep this action documented in the server history

in case you realise SEP content folder keeps growing follow...

mon_raralio | 25 Jun 2009 | 4 comments

Misleading applications are applications that pretend to do one thing while doing another. A good example are rogue security softwares that decieves or misleads the user into thinking that there are security issues with the computer he or she is currently using and requires the installation of software to remove the “threat”.

They usually use the web browser pop-up and make the user think that this is their Explorer and then shows that it is being scanned. Previous versions just show a small pop-up (similar to when you do something with files, except this one pretends to scan)

I've come upon this at home while surfing the internet. The current websites open are Facebook, Youtube, and Google (3 of the most visited sites in the world). Everybody I know visit this page every now and then and I'm pretty sure there are no malwares in their sites. So there I was, looking into my profile and noticed that one of my friends became a fan of someone. So I moved over...