Virtual Secure Web Gateway

  • Private Community
 View Only

  • 1.  SCN Toolbar

    Posted May 17, 2011 02:15 AM

    Hello,

    We recieve every now and then notifications of SCN Toolbars as follows:

     

    Date/Time Stamp

    Hostname

    Login Name

    Department

    Detection Name

    Category

    Class

    Severity

    		  

    Action

    Detection Type

    Hits

    05/17/2011 08:05

    PC1

    user1

    Dep

    SCN Toolbar

    Browser Hijacker

    Spyware

    Major

    		  

    Blocked

    Infection

    1

     

    I don't want to block every toolbar in the company, so does anyone know how I can verify the purity of these toolbars? If that is the issue... maybe it's something else that I don't know about.

     

    Thanks!



  • 2.  RE: SCN Toolbar

    Posted May 17, 2011 09:45 AM

    I would bet it is a real threat. There are too many of these spyware risks to keep track of.

    Here is an example of a toolbar risk. http://www.threatexpert.com/report.aspx?md5=dc3a20113522f0fbcd79793ae05865ea



  • 3.  RE: SCN Toolbar

    Posted May 23, 2011 10:17 AM

    OK, How do I find the source application?



  • 4.  RE: SCN Toolbar

    Posted May 23, 2011 11:02 AM

    Run the SEP Support tool. Select the Load Point Analysis option to scan for common load points of these threats.

    http://bit.ly/kVzDgk

    About the Load Point Analysis feature in the Symantec Endpoint Protection Support Tool -

    http://bit.ly/lNKqqZ