Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1413
  • Last Modified:

How to remove Risk Found! from Symantec AntiVirus primary server?

We have Symantec AntiVirus corporate (10.1.6.6000) I haven't had any experience managing it, though now I have that task. I have opened up Symantec System Centre on the primary server (we have only 1 antivirus server) and it shows Risk Found! for the primary server. This is also a Domino server and runs Symantec Mail Security for Domino. Attempting anything in System Centre gives an error about being unable to find the server (itself). Would really appreciate some guidance to deal with this issue.
0
cameronsaa
Asked:
cameronsaa
  • 4
  • 2
1 Solution
 
jimmymcp02Commented:
was the virus found in the server or was the virus found in one of the clients that the server manages?
try restarting the server running the sav for exchange and try again.

0
 
jimmymcp02Commented:
or youcan right click on the client that is show as infected then there is an option that say clear risk status....that will make the client not show up as infected but you still need to make sure the file was succesfully quarentine or deleted
0
 
cameronsaaAuthor Commented:
@jimmymcp02: Thanks for replying. No, no clients were showing as infected. btw its sav for Domino, not Exchange. The server itself showed with the Risk Found!. Scan of the server comes up clean.

Management console running on the server can't contact the server. Server still seems to be downloading and pushing out updates to clients ok.
0
Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 
jimmymcp02Commented:
>>Management console running on the server can't contact the server. Server still seems to be downloading and pushing out updates to clients ok.

That should not happen....look at your event logs perhaps and upadate was installed and it requireds a reboot in order to take effect.
0
 
cameronsaaAuthor Commented:
The server reboots daily.
There are a bunch of warnings in the app log: Could not scan 1 files inside <file path> due to extraction errors encountered by the Decomposer Engines.
Event ID: 6
Source: Symantec AntiVirus

I updated definitions on a client (to 3/11/08) and find that the server is still on an older set (2/11/08), that shouldn't be either I don't think!

Hopefully its just a misconfiguration and we haven't been pwned!
0
 
jimmymcp02Commented:
Ok thanks for clarify.

as for the could not scan 1 file you will see that when the scan tries to scan zip files that contain exe. (most of the time is the virus def folders or databases) in which case you dont have to worry but you should double check your scan settings to make sure its setup propertly there are certain folders and files that need to be excluded from scans.
0

Featured Post

Evaluating UTMs? Here's what you need to know!

Evaluating a UTM appliance and vendor can prove to be an overwhelming exercise.  How can you make sure that you're getting the security that your organization needs without breaking the bank? Check out our UTM Buyer's Guide for more information on what you should be looking for!

  • 4
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now