So far, I've been waiting for 1,5 months for a proper response. I reported my theory to Symantec/Broadcom (with videos) but unfortunately the support technician doesn't take my issue seriously and keeps me waiting with useless canned responses. Anti-MAC spoofing, denial of service detection, and IP traffic settings should remain untouched. After all, the lock/unlock slider on the dashboard is meant to allow or keep users from changing firewall settings on the client. I did some thorough testing to narrow it down and I'm convinced that this is a bug. The settings are: "Enable anti-MAC spoofing", "Enable denial of service detection", as well as the "Unmatched IP Traffic Settings" which jump from "Allow IP traffic" to "Allow only application traffic" (when the firewall settings are unlocked). This happens even though in the firewall settings they're turned on. I dug into it and fount out, that whenever I unlock the firewall settings, a couple of settings on the client are turned off. UExplorerRun: C:\Users\kclark4\AppData\Roaming\231106.I enrolled all devices to the new Symantec Endpoint Protection platform since the Broadcom takeover and now I noticed that printing is quite slow. MRun: "C:\ProgramData\Anti-phishing Domain Advisor\visicom_antiphishing.exe"ĭRun: C:\PROGRA~1\Ford\MS Communicator\utl\setcmusr.vbs MRun: C:\Program Files (x86)\WebEx\Productivity Tools\PTIM.exe Under the Blocked Devices section, click Add, select USB and click OK. Right click the Application and Device Control Policy and select Edit. MRun: "C:\Program Files (x86)\Microsoft Office Communicator\communicator.exe" /fromrunkey In the SEPM, Under View Policies, select Application and Device Control. MRun: "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
URun: "C:\Program Files (x86)\PC Speed Maximizer\SPMTray.exe" URun: "C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE" URun: C:\Program Files\Ford\XPM\XPM_Utility.exe VMreset off ĪV: Symantec Endpoint Protection *Enabled/Updated* - C:\Program Files (x86)\blekkotb_soc\blekkotb_019X.dll HKLM\SOFTWARE\Microsoft\Security Center|UpdatesDisableNotify (圜enter) -> Bad: (1) Good: (0) -> No action taken.Ĭ:\Windows\e3298ujdamdashdhdsaud.exe (Trojan.Agent) -> No action taken. HKLM\SOFTWARE\Microsoft\Security Center|FirewallDisableNotify (圜enter) -> Bad: (1) Good: (0) -> No action taken.
HKLM\SOFTWARE\Microsoft\Security Center|AntiVirusDisableNotify (圜enter) -> Bad: (1) Good: (0) -> No action taken. HKLM\SOFTWARE\Google\Chrome\Extensions\kincjchfokkeneeofpeefomkikfkiedl (PUP.FCTPlugin) -> No action taken. HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Live Security Platinum (Rogue.LiveSecurityPlatinum) -> No action taken. HKCR\bho_project.bho_object.1 (Trojan.BHO) -> No action taken. HKCR\bho_project.bho_object (Trojan.BHO) -> No action taken. Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM If I closed your topic and you need it to be reopened, simply PM me. If you need more time, simply let me know.