New to this and don't "speak" computer.  I just want to know that when I check the security history on the antivirus and I see that it says "Unauthorized access blocked (Open process Ticket)  and blocked.  What does the Open process Token mean?  For instance when I have opened Google Chrome it looks to me when I check the history in Norton that it was blocked but I still am using Google Chrome.  Sorry I am not stating my question clearly.  Will try later.

Hello,

I went into the "clients" then  went to one of the Folders clicked on "Install Packages" and added a package.  If i add a Package at the top level of a folder stucture will it pass down to all the folders or do i  have to create a seperate setting for each sub-folder?

Example:

My Company
     Main Building
           1st Floor
                 Dept A
                 Dept B
           2nd Floor
                 Dep C
           3rd Floor
   Second Building

If i setup a install package on "Main Building" will the others (1st Floor, Dept A, Dept B...) also get the update or do i need to set one up for each Sub-Folder?

Thank you

Daniel Schmidt

4461141 1283955305

Hello,

I am using the LiveUpdate Administration Utility v 1.5.4 to download the latest Symantec Virus definition , the files are correctly downloaded to the download directory
I am checking the following products line:

-Symante Antivirus Virus definition.
-Symantec Antivirus Corporate Editions.

i am checking the following for the languages:
-SymAllLanguages
-English
-French

On the client side i have Symantec v10 installed and after running LUALL i have a message that all Symantec products are up to date however when checking the logs and the registry i don't see that the client machine had the latest virus definition installed...

Is there a way i can check that the latest virus definition was correctly installed to clients? An action to be taken in case  client are not having the updates?

i am checking value "NAVCORP_70" of key ' HKEY_LOCAL_MACHINE\SOFTWARE\Symantec\SharedDefs'of registry

AND here is an extract from the logs:

 

9/7/2010, 10:13:54 GMT -> ***********************        Start of New LU Session        ***********************
9/7/2010, 10:13:55 GMT -> EVENT - SESSION START EVENT - The LiveUpdate session is running in Interactive Mode.
9/7/2010, 10:13:55 GMT -> Check for updates to:  Product: LiveUpdate, Version: 3.5.0.64, Language: French.  Mini-TRI file name: liveupdate_3.5.0.64_french_livetri.zip
9/7/2010, 10:13:55 GMT -> Progress Update: TRYING_HOST: HostName: "fep-reps-cai01" URL: "ftp://172.30.70.6/Symantec" HostNumber: 0
9/7/2010, 10:13:55 GMT -> Progress Update: TRIFILE_DOWNLOAD_START: Number of TRI files: 0 Downloading LiveUpdate catalog file
9/7/2010, 10:13:55 GMT -> LiveUpdate will download the first Mini-TRI file, liveupdate_3.5.0.64_french_livetri.zip
9/7/2010, 10:13:55 GMT -> Progress Update: DOWNLOAD_BATCH_START: Files to download: 1, Estimated total size: 0
9/7/2010, 10:13:55 GMT -> Progress Update: PRE_CONNECT: Proxy: "(not-available)" Agent: "Symantec LiveUpdate" AccessType: 0x0      
9/7/2010, 10:13:57 GMT -> Progress Update: CONNECTED: Proxy: "(not-available)" Agent: "7i9eVhqBoKjOOFllQLsr5OlRwS4PRCGTAAAAAA" AccessType: 0x0      
9/7/2010, 10:13:57 GMT -> Progress Update: DOWNLOAD_FILE_START: URL: "ftp://172.30.70.6/Symantec/liveupdate_3.5.0.64_french_livetri.zip", Estimated Size: 0, Destination Folder: "C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads"
9/7/2010, 10:13:57 GMT -> CstInetGetFile::DoTransfer() successfully impersonated the COM client.
9/7/2010, 10:13:57 GMT -> CstInetGetFile::DoTransfer() finished impersonating the COM client.
9/7/2010, 10:13:58 GMT -> CstInetGetFile::DoTransfer() - InternetOpenUrl returned extended error: 550 /Symantec/liveupdate_3.5.0.64_french_livetri.zip: The system cannot find the file specified.

 

9/7/2010, 10:13:58 GMT -> Progress Update: DOWNLOAD_FILE_FINISH: - NOTE - URL: "ftp://172.30.70.6/Symantec/liveupdate_3.5.0.64_french_livetri.zip", Full Download Path: "(null)" HR: 0x80072EE3
9/7/2010, 10:13:58 GMT -> Progress Update: DOWNLOAD_BATCH_FINISH: HR: 0x0       , Num Successful: 0
9/7/2010, 10:13:58 GMT -> LiveUpdate will check for Mini-TRI file support on the server since the first Mini-TRI file <liveupdate_3.5.0.64_french_livetri.zip> was not available.
9/7/2010, 10:13:58 GMT -> Progress Update: DOWNLOAD_BATCH_START: Files to download: 1, Estimated total size: 0
9/7/2010, 10:13:58 GMT -> Progress Update: DOWNLOAD_FILE_START: URL: "ftp://172.30.70.6/Symantec/minitri.flg", Estimated Size: 0, Destination Folder: "C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads"
9/7/2010, 10:13:58 GMT -> CstInetGetFile::DoTransfer() successfully impersonated the COM client.
9/7/2010, 10:13:59 GMT -> CstInetGetFile::DoTransfer() finished impersonating the COM client.
9/7/2010, 10:13:59 GMT -> CstInetGetFile::DoTransfer() - InternetOpenUrl returned extended error: 550 /Symantec/minitri.flg: The system cannot find the file specified. 9/7/2010, 10:13:59 GMT -> Progress Update: DOWNLOAD_FILE_FINISH: - NOTE - URL: "ftp://172.30.70.6/Symantec/minitri.flg", Full Download Path: "(null)" HR: 0x80072EE3
9/7/2010, 10:13:59 GMT -> Progress Update: DOWNLOAD_BATCH_FINISH: HR: 0x0       , Num Successful: 0
9/7/2010, 10:13:59 GMT -> LiveUpdate is doing a legacy mode download of the livetri.zip file.
9/7/2010, 10:13:59 GMT -> Progress Update: DOWNLOAD_BATCH_START: Files to download: 1, Estimated total size: 0
9/7/2010, 10:13:59 GMT -> Progress Update: DOWNLOAD_FILE_START: URL: "ftp://172.30.70.6/Symantec/livetri.zip", Estimated Size: 0, Destination Folder: "C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads"
9/7/2010, 10:13:59 GMT -> CstInetGetFile::DoTransfer() successfully impersonated the COM client.
9/7/2010, 10:13:59 GMT -> CstInetGetFile::DoTransfer() finished impersonating the COM client.
9/7/2010, 10:14:04 GMT -> Progress Update: DOWNLOAD_FILE_FINISH: URL: "ftp://172.30.70.6/Symantec/livetri.zip", Full Download Path: "C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\livetri.zip" HR: 0x0      
9/7/2010, 10:14:05 GMT -> Progress Update: DOWNLOAD_BATCH_FINISH: HR: 0x0       , Num Successful: 1
9/7/2010, 10:14:07 GMT -> Progress Update: HOST_SELECTED: Host IP: "172.30.70.6" URL: "ftp://172.30.70.6/Symantec" HostNumber: 0
9/7/2010, 10:14:07 GMT -> EVENT - SERVER SELECTION SUCCESSFUL EVENT - LiveUpdate connected to server 172.30.70.6 at path /Symantec via a FTP connection. The server connection connected with a return code of 200, Le téléchargement du fichier TRI a réussi
9/7/2010, 10:14:07 GMT -> Progress Update: UNZIP_FILE_START: Zip File: "C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\livetri.zip", Dest Folder: "C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads"
9/7/2010, 10:14:07 GMT -> Progress Update: UNZIP_FILE_PROGRESS: Extracting file: "liveupdt.grd"
9/7/2010, 10:14:07 GMT -> Progress Update: UNZIP_FILE_PROGRESS: Extracting file: "liveupdt.sig"
9/7/2010, 10:14:07 GMT -> Progress Update: SECURITY_SIGNATURE_MATCHED: GuardFile: "C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\liveupdt.grd"
9/7/2010, 10:14:07 GMT -> Progress Update: UNZIP_FILE_FINISH: Zip File: "C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\livetri.zip", Dest Folder: "C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads", HR: 0x0      
9/7/2010, 10:14:07 GMT -> Progress Update: UNZIP_FILE_START: Zip File: "C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\livetri.zip", Dest Folder: "C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads"
9/7/2010, 10:14:08 GMT -> Progress Update: UNZIP_FILE_PROGRESS: Extracting file: "liveupdt.tri"
9/7/2010, 10:14:08 GMT -> Progress Update: UNZIP_FILE_FINISH: Zip File: "C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\livetri.zip", Dest Folder: "C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads", HR: 0x0      
9/7/2010, 10:14:08 GMT -> Progress Update: TRIFILE_DOWNLOAD_END: Number of TRI files: "1"
9/7/2010, 10:14:08 GMT -> ********* Finished Finding Available tri files for Updates ********* 9/7/2010, 10:14:08 GMT -> LiveUpdate did not find any new updates for the given products.
9/7/2010, 10:14:08 GMT -> EVENT - SESSION END SUCCESSFUL EVENT - The LiveUpdate session ran in Interactive Mode. LiveUpdate found 0 updates available, of which 0 were installed and 0 failed to install.  The LiveUpdate session exited with a return code of 100, La session LiveUpdate s'est exécutée avec succès. Aucune nouvelle mise à jour n'est disponible pour vos produits.
9/7/2010, 10:18:03 GMT -> LiveUpdate released 2 of 2 progress callback(s).

Thanks in advance!

During scaning Norton Pc check was scannig a file "c:/users/..../local/temp/e-card.exe"   this file pass the antivirus scan. But after searchnig for this file manualy, I could not find it.
I looked in the folder. also, I used search from windows and finally I used command line "dir" and "find". But none was able to find the file. How come Norton can see a file that I can not locate after the scan? I'm a;lmost sure it is a virus but it pass norton scan.

Anyone else having issues with DAT files getting backed up (read not processed) in the data\inbox\agentinfo directory?  We've had it happen a couple of times and restarting the SEPM service seems to remedy the situation at least temporarily.  We are running version 11.6a

We have a case open with Symantec in regards to this but are being told that this is a known issue, yet there is no public documentation that states that this issue exists in 6a (It is documented in the release notes for MR4 MP2)

Slow process of DAT files in the Inbox\Agentinfo folder on the Manager
Fix ID: 1513330
Symptom: Large numbers of files in the Inbox\Agentinfo folder. The number of files continually increases.
Solution: Updates to Avman and Agentinfo processing along with SQL batching of statements, and configurable multi-threading to the Agentinfo processing.

Has anyone seen before the Symantec server Requesting continues scans from the clients attached to it.

Is it good idea to implement Symantec Central Quarantine for 2000+ PC? Because i got some branch office with 200+ PC, Just wondering if branch office pc starts sending Quarantine file to SEMP there will be a lode on WAN Link

Can any body explain the differences between the two products?

Is  Critical System Protection is supported by 98?

Because we have some NT systems and also other system where we want to implement SEP.As SEP is not supported on NT and 98 so we want to check with Critical System Protection.But in Critical system protection can we protection from virus attacks and we cant use two products for this purpose if SCS supports stopping virus out breaks in the same Environment.

Can any one suggest so that we can use a single product for both windows 2000 and above as well as for windows 98 and NT.Eventhough support is not there for NT and 98,we want to see if we can find some product...

Thanks in Advance.....