Video Screencast Help
Security Community Blog
Showing posts tagged with Endpoint Protection (AntiVirus)
Showing posts in English
Syed saied | 07 Feb 2013 | 0 comments

How To Create a GUP

First Installed SEP client on that machine which you want to create as a GUP. and then follow the below mention steps.

1. Login in to SEPM Console.

2. Click on Policy.

3. Then Click on Live Update.

4. Click on Add a LiveUpdate Settings Policy.

5. Then Given the Policy name and discriptions. and check mark on "Enable this Policy"

6. Click on Server Setting under Windows Setting.

7. Check mark on Use a Group update Provider and then click on Group Update Provider tab.

* If you want to create a single GUP:-

Click on Single Group Update Provider IP address or Host.


Vikram Kumar-SAV to SEP | 04 Feb 2013 | 0 comments


Symantec keeps tab on the changing Threat Landscape and incorporates relevant security on its products.Same is the story with SAV to SEP to now SEP 12..

When we had SAV in the market what our customer needed was just a Antivirus to protect their system from antivirus was looked more as a Availability facilitator than a core security product..till early 2000.

Even though we had SCS (firewall and IPS) seclected people used the other features.

Starting from 2006-2007 that was a high rise in malware being created and vulnerabilities being exploited..slowly the trend changed and it all came down to money making malwares..

FakeAntivirus, Downadup, Various Blackmailing Trojans the audience was not high profile..and SEP 11 very well detect and blocks and does whatever it can..Slowly people started using IPS, ADC and found much more can be done with SEP and they are doing it..

However in last few years there has been...

SebastianZ | 02 Feb 2013 | 0 comments

A small compilation from the Symantec Portfolio including Data Sheets of several Symantec Security Products.


- Symantec™ Endpoint Protection 12.1.2 (10/12)

- Symantec Endpoint Protection Small Business Edition 2013 (11/12)

- Symantec™ Protection Suite Enterprise Edition - Comprehensive, powerful endpoint, messaging, and Web protection, for less
money (06/11)

dotlike | 28 Jan 2013 | 0 comments


Today i had a strange problem regarding a HP Software installation. The client had Symantec Endpoint Protection 12.1 installed.

The windows event log had the following entry:

Target: C:Program FilesSymantecSymantec Endpoint Protection12.1.671.4971.105BinccSvcHst.exe 
Event Info: Open Process 
ActionTaken: Blocked 
Time: Sonntag, 11. März 2012 16:47:26

So the Tamper protection blocked the installation of the HP software.


To fix this you can adapt the 'Exeception Policy' and add an entry for the installation folder of the HP Software. Another way would be to disable tamper protection till the installation is done (remember to update the policy or wait for the policy to be updated)



.Brian | 15 Jan 2013 | 0 comments

Symantec Endpoint Protection (SEP) Manager is prone to a remote code-execution vulnerability.

Attackers can exploit this issue to execute arbitrary PHP code in the context of the application.

This issue is fixed in the following versions:

Symantec Endpoint Protection 11.0 RU7-MP3
Symantec Endpoint Protection 12.1 RU2

Versions affected:

Symantec Endpoint Protection 11.0 RU7 MP1 0
Symantec Endpoint Protection 11.0 RU6-MP3(11.0.6300) 0
Symantec Endpoint Protection 11.0 RU6-MP2(11.0.6200) 0
Symantec Endpoint Protection 11.0 RU6-MP1(11.0.6100) 0
Symantec Endpoint Protection 12.1 RU1-MP1
Symantec Endpoint Protection 12.1 MP1
Symantec Endpoint Protection 12.1
Symantec Endpoint Protection 12.0
Symantec Endpoint Protection 11.0 RU7 MP2
Symantec Endpoint Protection 11.0 RU7 MP1
Symantec Endpoint Protection 11.0 RU6-MP3(11.0.63...

jjesse | 14 Jan 2013 | 0 comments


I have been using Evernote for awhile but was recently introduced with the Chrome extension Evernote Clipper and this has changed how I browse the web and more importantly how I browse Symantec Connect.  So I started clipping various blog entries, articles and other information stored on the site to save for later.  In order to help share this information I will be creating a round up of various posts I've found interesting or important and post them to both my blog and also Symantec Connect.  Since I'm focusing on Symantec Security this year, these posts will be filed under the security portion of Connect.


So let's get started on Round Up #1 (maybe 1 day I'll come up with a better name or title)


  • ...
piero_depaoli | 08 Jan 2013 | 0 comments

Microsoft gets it. Today, it makes no sense to release an operating system, especially a game-changer like Windows 8, without some form of basic antivirus protection. That’s why Windows 8 comes preloaded with a default form of protection, Windows Defender, that automatically kicks in when the system does not boot up with installed third-party protection.


If you get Defender for free with Windows 8, is there any point to getting any further protection? Yes -- at least 83 to begin with…


The numbers tell a compelling performance story

In side-by-side tests conducted by PassMark, an independent laboratory, Windows 8 with Symantec Endpoint Protection 12 consistently outperformed Windows 8 without it (with Defender as its default). Consider the highlights:


  • 83% faster scanning: End users spend more time working, less time managing interruptions.
usacc23 | 31 Dec 2012 | 0 comments

The install of SEP 12.1 RU2 for Windows 8, works well.

Just make sure UAC is turned off.

Symantec you did well on this. Install time from Houston to London on our MPLS Netowrk 15 min and 3 min on reboot.

 Thank you. 

rs_cert | 24 Dec 2012 | 0 comments


Below are the Step which can help to Enable the Live Update Tab on that client which are managed by Server but not in office domain/network


Double click on Symantec Client shield from Taskbar.


From TROUBLESHOOT Tab Export the Policy from Policy Profile

Save it with name of Policy.xml in your Local System

Edit the Policy.xml in Notepad

Find the below Content and make the appropriate changes mention below.

AllowManualLiveUpdate, AllowPatchByLiveUpdate

 Set the Value as "1"

(I.E AllowManualLiveUpdate="1" , AllowPatchByLiveUpdate="1")

Than save the file in XML format and import the same.

Import Step