Endpoint Protection

 View Only

  • 1.  Export Risk Log

    Posted Dec 07, 2009 09:44 PM
    Is there a way to export risk log from somewhere else instead of the normal View Risk Log and Export?

    One of my users is heavily infected for some reason that was not picked up by SEP and was noticed when it hammered my firewall to the ground.
    Unable to export the Risk Log as SEP will go out of memory or try to fire up VB for debugging.

    Thanks


  • 2.  RE: Export Risk Log
    Best Answer

    Posted Dec 07, 2009 09:49 PM
    the logs are stored under

    <OS>:\Documents and Settings\All Users\Application Data\Symantec\Symantec Endpoint Protection\Logs

    you can copy this folder, and place it on any other client machine...( may be a test machine)

    put the logs folder under the same path.

    you should be able to see the logs.


    once you are done, you can revert back the changes.


    you can view  the logs from the manager console, if the clinets are managed
    open sepm
    click on monitors
    click on logs
    select risk,
    click on advanced settigns option
    put the computer name or ip which is infected
    create  log, you can export this log too by clicking export button.

    let me know if you have any questions.


  • 3.  RE: Export Risk Log

    Posted Dec 07, 2009 09:59 PM
    types of reports you can create.

    About the different types of Symantec Endpoint Protection Manager Reports

    http://service1.symantec.com/SUPPORT/ent-security.nsf/docid/2009081409151448


  • 4.  RE: Export Risk Log

    Posted Dec 07, 2009 10:39 PM
    Great! thanks for the information