User Group Security & Compliance Deutschland

 View Only

niwis SEP Event Monitor 

Sep 06, 2012 01:51 AM

This little service provides configurable actions trigged by certain Symantec Endpoint Protection 12.1.x Events.

Please Note: This is neither supported or endorsed by Symantec and is it to be used at the user's own risk.

Use Cases

  • When a virus is found, NSEPEM can display a popup window and start a scan.
  • When a virus is found, NSEPEM can send Syslog UDP packages.
  • When a virus is found, NSEPEM can launch anything you want, e. g. command or batch file, executable, scripts etc.

The software that we have uploaded here is a trial licence and will display a dialog window every 20 minutes. To get the full version, please contact me here or use

niwis consulting gmbh
Ulf Spangenberg


Symantec AntiVirus User Group Germany

0 Favorited
1 Files
zip file   118 KB   1 version
Uploaded - Feb 25, 2020

Tags and Keywords


May 13, 2020 06:21 AM

NSEPEM 3.0 now allows you to create an exception for a specific maleware, e. g. "WS.Reputation.1" or "WS.Reputation*" with a wildcard.

Aug 22, 2017 03:01 AM

NSEPEM 2.5 has a new switch which can change the action triggered for IPS alerts.

For example, if the IPS engine logs an event with a prefix of "Web attack" NSEPEM does not trigger. But if the IPS engine detects an event with a prefix of "System infected" it triggers a predefined action, like performing a full scan and placing the SEP client into a quarantine location.

Jun 23, 2017 01:33 AM

NSEPEM 2.0.1 now also works with Windows 10, Windows Server 2016 and Symantec Endpoint Protection 14.x. We have added support für IPS Alerts as well.

Related Entries and Links

No Related Resource entered.