Anti-Virus Apps

22K

Solutions

23K

Contributors

Anti-virus software was originally developed to detect and remove computer viruses. However, with the proliferation of other kinds of malware, antivirus software started to provide protection from other computer threats. In particular, modern antivirus software can protect from malicious browser helper objects (BHOs), browser hijackers, ransomware, keyloggers, backdoors, rootkits, trojan horses, worms, malicious layered service providers (LSPs), dialers, fraud tools, adware and spyware. Some products also include protection from other computer threats, such as infected and malicious URLs, spam, scam and phishing attacks, online identity theft (privacy), online banking attacks, social engineering techniques, Advanced Persistent Threat (APT), botnets and DDoS attacks.

Share tech news, updates, or what's on your mind.

Sign up to Post

We are contemplating whether to use McAfee endpoint security's firewall or Windows firewalls
on our 30+ branches : the branches have some crucial Desktops running database services:
though the branches (ie spoke) connect back to our DC (ie hub), potentially some branches
may have their own broadband (or even just via 4G).

It's a debate between our Windows Desktop & our Firewall admins which one to use.

I know in previous Deep Security, I will have to create numerous 'policies' : one for each
branch though the branches have the same desktops running database services listening
on the same ports and when I upgrade the agents centrally from the EPO, had run into
issues:  modules (eg: Firewall or File Integrity Monitoring) that are not enabled previously
(say for servers), got auto-enabled.

So not sure if McAfee Firewall has similar or any other issues: kindly elaborate
0
AV software best compatible with O365. Any suggestion? Local outlook emails? Thanks
0
I downloaded Sophos, but am not sure it's the best I can use on my Android.
0
1. Is it recommended to have both Windows Defender and
     Symantec EndPoint Protection running at the same time ?

 2. If not, how can I setup my MDT image
    so it does not deploy Windows Defender ?
-----------------------------------------------
Environment
  ** Windows Server 2012 R2 test domain
  ** Symantec EndPoint Protection deployed
       to Windows 10 Pro client via MDT image
0
A Trickbot Infestation has ravaged my network. It has wormed its way on to all workstations and servers. Does anyone know how to eradicate it and keep it from re-infecting other computers? If not, does anyone know of a company that specializes in removing this particular malware. I've tried different malware software removal tools and they identify and  remove it but it keeps coming back.
0
I have a question about Symantec Endpoint Protection.  We are trying to block USB access but are running into an issue with one of our devices.  From what I can tell, things like imaging devices are not supposed to be blocked.

However, many of our stations have ID scanners that are being blocked.  When I look in the device manager the ID scanners do show up as imaging devices.  

I'm not seeing how you white list a device.  

Thanks in advance for any help.
0
I try to install Symantec antivirus version 14 on a Windows 10 laptop and it tells me "This software is not compatible with this version of Windows". In the past I got this message when I tried to install Symantec version 12 but never on version 14, does anyone know how to bypass the error to install antivirus?
Thanks,
0
A friend is using Windows 10 (which is kept up to date).
He also has AVG Antivirus.
He normally uses Paypal for purchases (without any problems).

This morning, within an hour of using his actual Visa Debit Card on Government
website (motortax.ie) his card number was fraudulently used on some dating website.
(The bank phoned and cancelled the transaction and his card).

I'm going to run some scans tomorrow
- MalwareBytes scan in safe mode
- Hitman pro
- AVG

Any other suggestions?
0
I am trying to see if there is any way to detect and stop encryption process on a windows server.

Basically one of the workstation opened a ransomware (SIGMA) and it has encrypted everything on her computer which is to be expected. However, it also encrypted everything on the mapped driver from the file server. The file-server has antivirus and even anti-ransom but it still encrypted the stuff on the mapped drives. All drives or folders that were not mapped to this particular workstation are fine.
So the question would be if there is anything to prohibit any type of encryption that is initiated from a workstation. If not, maybe someone knows a good solution to prevent this in another way.

By the way, I do have backups, however since I only have backups every 24 hours, I lots one days work. I do not really care about the files on the workstation because I simply restore a clean image but if it messes with my files on the domain server, it becomes a huge issue and I need to find some solution.

Any tip is very much appreciated. Thanks to all that are willing to assist me.
The server is Windows Server 2016
0
Need to rid it of viruses

How to do this
1
who know how to install avast 2018 offline?
Avast 2018 Download
0
We are running Kaspersky EndPoint Security 10 for Windows (Recently installed), we are doing inplace upgrade from Windows 7 to windows 10 Enterprise.
When we  run windows 10 setup, it gives the error attached.
What patch we have to install for Kaspersky to bypass that check?
thanks.
Windows10Setup.PNG
0
does norton go after viruses
malware bytes goes after malware

do I need both

windows10
0
How can I remove maleware bytes trial and get another trial


windows 10
0
Good afternoon,

I am currently experiencing problems with my McAfee Policy Orquestrator version 5.3.2 console. Motivated by the fall of the console on many occasions, during these two days, the console is falling several times. The operating system where I installed the console is Windows Server 2012.

Actions done:

- Restart Mcafee services, the console works for a few moments and fails again.

- Run a Performance Monitor and in the report I see no signs of console failure.

- The server responds to the ping, at the network level I have no problems.

- Restart the server and, for the moment, I have not presented the problem, but as a precaution, I want to know what else I can validate.

Revisions we have not made:

- We have an external database for Mcafee, I have my doubts, if there may be a failure. The database is SQL Server 2012.
- Could try the ODBC connection to validate if there are connection problems with the database.
- I could validate the record (regedit). To validate the installation parameters of the console.
I validated the error a bit, I did not find much, just this McAfee KB, but it did not help much.

https://kc.mcafee.com/corporate/index?page=content&id=KB83647

Is there anything else I suggest I can review, does it sound more like an operating system or application failure? At the level of the operating system that other revisions can I execute? Should I open a report with Microsoft and McAfee to receive assistance?
0
My SBS 2011 Standard server cannot install updated definitions for Windows Defender (KB915597). Windows Update fails with Error Code 8050A005 ("unknown error"). This problem only affects the server.

I am running Symantec Endpoint Protection so I don't think I need Windows Defender. But I can't figure out how to uninstall or permanently disable Windows Defender on the server or how to un-deploy this update to the server. Windows Updates are managed by Windows Server Update Services.

I tried manually downloading and installing the standalone update package but I didn't see a download for my operating system.

I appreciate your help.
0
I am administering an isolated network without any internet access.   We are using Mcafee Endpoint Security managed by EPO and Windows 10 clients with McAfee agents.  I update the repository directory with current DAT files manually every couple of weeks and then run update master repository and update clients.

Windows 10 Action center keeps nagging that AV is out of date. How does Windows 10 know when an update might be due if network is isolated?
Is there any way to adjust the Action Center to provide out of date warning to match my manual update schedule.  note: I do not want to turn off AV notifications altogether, since I do want reminders.

Thank you
0
We are running currently Symantec Endpoint version 12.1.6 on windows 2008 32 bit server. We now want to go to Endpoint version 14.1 which I know wont work on 32 bit OS.
So is there a way to build the new server on say 2012 R2 and install version 14.1 and then migrate over the database from the 12.1.6 version that is running on server 2008 32 bit?
If so, is there a good document to follow to make this happen?
0
ClamAV Not working ...ERROR: Could not lookup : Servname not supported for ai_socktype

have problems with clamdscan   ...no problems with freshclam

I have  installed and configured clamAV on a new rhel 7 (Red Hat Enterprise Linux Server release 7.4 (Maipo)) box.

steps followed for installation are below.

yum -y install clamav-server clamav-data clamav-update clamav-filesystem clamav clamav-scanner-systemd clamav-devel clamav-lib clamav-server-systemd

cp /etc/clamd.d/scan.conf /etc/clamd.d/scan.conf.backup
sed -i 's|^Example|#Example|'  /etc/clamd.d/scan.conf
ln -s /etc/clamd.d/scan.conf /etc/clamd.conf
sed -i 's|^#LocalSocket /var/run/clamd.scan/clamd.sock|LocalSocket /var/run/clamd.scan/clamd.sock|'  /etc/clamd.d/scan.conf

cp /etc/freshclam.conf /etc/freshclam.conf.bakup
sed -i -e "s/^Example/#Example/" /etc/freshclam.conf

freshclam     ##update database signatures

systemctl start clamd@scan
systemctl enable clamd@scan
systemctl status clamd@scan

clamconf   ##validate the configuration

clamdscan  --fdpass  /var/log/*       ###test run

How ever i recieve the following errors ...

[root@OS-AUTO-INSTALL-TESTING emx_os_cfg]# clamdscan --fdpass /var/log/*
/var/log/aide: OK
ERROR: Could not lookup : Servname not supported for ai_socktype
ERROR: Could not lookup : Servname not supported for ai_socktype
ERROR: Could not lookup : Servname not supported for ai_socktype
ERROR: Could …
0
Here are the pop ups that i am getting, if i click Ok, i am getting like parameter incorrect.:  Here are the pop ups that i am getting, if i click Ok, i am getting like parameter incorrect.Whenever I plug in my charger, a small tap is popping continuously saying php update available, then i click OK, but it's again coming like update available. i am using Lenovo-idea pad-1470 series. can anybody help me please?
IMG_9388.jpg
0
We are using Kaspersky Endpoint Security 10 for Windows on all our Domain computers, Just wanted to know is there a way that in Kaspersky we can define that whenever a computer  connects to our network if it has no AV, it detects and installs the AV by itself?
0
All of my assets laptops and servers run semantic for antivirus and protection, the security operation center that’s now providing additional security use McAfee. how will this impact my server and laptop loads?

There are live scans and after hours
0
Why is my physical Windows Server host port scanning a virtual server, and how can I stop it doing so unnecessarily?
1
I have a serious issue on one old terminal server (2003).

I have recurring virus, coinminer it seems, which I don't know how it passes into the computer. It is quite isolated environment.

It creates either gfxdrv.exe or gxdrv.exe in windows\temp and coin mines.

Did anyone encountered this problem? I don't know how to get dir of it.

0
I have a client who had a scareware event with a threatening dialog that offered a number to call to "help him".  I disinfected, as I normally do, with Adwcleaner, Malwarebytes, and Hitmanpro64, which usually does a nice job eradicating the beasts.  Another has appeared that seems familiar, and so I'm concerned that I might have missed something   The dialog, which my client sent me, and I didn't myself experience, is attached.  

My question is how can I find the source of that dialog, or others of that ilk, and know that I've removed it, or not, using the above system or another.

Your insights are appreciated.
IMG_2917.mov
0

Anti-Virus Apps

22K

Solutions

23K

Contributors

Anti-virus software was originally developed to detect and remove computer viruses. However, with the proliferation of other kinds of malware, antivirus software started to provide protection from other computer threats. In particular, modern antivirus software can protect from malicious browser helper objects (BHOs), browser hijackers, ransomware, keyloggers, backdoors, rootkits, trojan horses, worms, malicious layered service providers (LSPs), dialers, fraud tools, adware and spyware. Some products also include protection from other computer threats, such as infected and malicious URLs, spam, scam and phishing attacks, online identity theft (privacy), online banking attacks, social engineering techniques, Advanced Persistent Threat (APT), botnets and DDoS attacks.