Hi all,
Nothing that I'm aware of has been changed in the config of how our Symantec Anti-virus (10.1.8.8000) works but for the past couple of days we have started to get hundreds of virus alerts reporting things like below:
Alert: 806
Virus name: Suspicious.Lop.2
Computer: LAPTOP
IP address: 10.10.10.10
File/Path: C:/Masters/Sysprep/mysysprep.exe
User: SYSTEM
Alert date/time in reporting server time: 2010-04-17 13:42:08
Database insert date/time: 2010-04-21 09:52:02
Source: Auto-Protect scan
I have read into what this kinda means - but my main question is has something been turned on for this to just start happening or has something been added to one of the latest virus definitions for this?
Kind regards,
Anthony