Endpoint Protection

 View Only

  • 1.  SEP and LogMeIn

    Posted Jul 17, 2010 12:19 PM
    Recently, SEP has been flagging LogMeIn as infected.  It disables/quarantines, and then I can log in remotely.  LogMeIn assures me that there is no virus.  I added the LogMeIn folder to the exceptions, but it still flagged it.  Anyone dealing with this?


  • 2.  RE: SEP and LogMeIn

    Posted Jul 17, 2010 01:32 PM
    you need to check what is flagging log me in ,
    is it file system autoproect or tamper protection based on that create a centralized exception, here is the document to create exception for log me in
    http://service1.symantec.com/SUPPORT/ent-security.nsf/docid/2009022412404548


  • 3.  RE: SEP and LogMeIn

    Posted Jul 17, 2010 01:44 PM
    I suspect it's being detected as a commercial remote control tool - that's what normally gets it for me. You can stop it happening by creating an exception for TruScan Proactive Threat Scan. You can create that either locally on the client or from the SEPM


  • 4.  RE: SEP and LogMeIn

    Posted Sep 08, 2010 02:26 PM

    What do you add as the exception?  The report says that TruScan is detecting it, but it is not showing up as a detected process in Centralized Exceptions.  The SEPM reports the file only as "LogMeIn"...


  • 5.  RE: SEP and LogMeIn

    Posted Sep 08, 2010 02:37 PM

    In TruScan under AV/AS policy, set "When a commercial remote control application is detected" to Ignore

    Also, in Monitors tab, TruScan Threat logs, it should show in there. select it and set the action to "Add Process to Centralized Exception Policy" and hit Start


  • 6.  RE: SEP and LogMeIn
    Best Answer

    Posted Sep 08, 2010 02:37 PM
    PTP does not take action on LogmeIn

    So in Antivirus Policy --Truscan--

    Set to ignore Commercial Remote Applications or Disable the Notification.