• All Community
    • All Community
    • Forums
    • Ideas
    • Blogs
Advanced

Not what you are looking for? Ask the experts!

Kudos0

Suspicious.AD

On my Symantec Start-Up scan I get over 7000 suspicious.AD files shown as a possible threat and cleaned. At the finish of the scan I reboot as directed.  The next day the start-up scan again shows over 7000 Suspicious.AD files.  These are all in Windows/Temp.  Why does this keep coming up after they have been cleaned and why after several year am I getting all of these threats?  Thanks

Replies

Kudos0

Re: Suspicious.AD

If you have Symantec Antivirus or Endpoint, you will need to visit the corporate forums for an answer.  Please clarify the product version you are using if it is a Norton product.

www.symantec.com/connect

Under certain circumstances profanity provides relief denied even to prayer.Mark Twain
Kudos0

Re: Suspicious.AD

Are you kidding about the 7000 count?

Suspcious.AD message is pretty much self-explanitory. The files are suspect. More detail here: http://www.symantec.com/security_response/writeup.jsp?docid=2010-031623-1355-99.

What OS and Symantec product and version number do you have? Did you just install the Symantec product on a PC that has been in use for some time?

Kudos0

Re: Suspicious.AD

The temp folder holds only unneeded files. Press Winkey+R and type temp. Delete all the contents in the opened folder. then press Winkey+R and type %temp% and also delete teh contents of the opened folder. This will also free up disk space.

Kudos0

Re: Suspicious.AD

I'm not sure the version I have but it has been on my computer for 3 years and updates regularly.  My normal start-up for the past seldom had any files it had to delete but since last week's update, I have been having this problems.  Sometimes it takes two days of scanning before it ends at about 7400.  Then the next time I start my computer it does the same thing.  How do I determine the version I have?

Kudos0

Re: Suspicious.AD

I tried to delete the temp folder but it won't let me because I'm using something in another program.

Kudos0

Re: Suspicious.AD

I'm not sure the version I have but it has been on my computer for 3 years and updates regularly.

___________________________________________________________________________________

Do you have an account at www.mynortonaccount.com?  If so, you can go there to find your product and version number.  If NIS or NAV there should be a link to support in the top right corner of the main screen.  Click on that and navigate to "about" to see your product name and version number.  Have you been purchasing annual updates for the product?

Under certain circumstances profanity provides relief denied even to prayer.Mark Twain
Kudos0

Re: Suspicious.AD

Also, which specific temp folder/s is the error message/s referring to? They are many, many, temp folders. 

Kudos0

Re: Suspicious.AD


michaael wrote:

I'm not sure the version I have but it has been on my computer for 3 years and updates regularly.  [ ... ].  How do I determine the version I have?


Look under Help-Support / About where it is in the format nn.nn.nn.nnn

 

Please also say whether you have Norton Internet Security, Norton AntiVirus or Norton 360 ... or something else!

What version of Windows do you have including the Service Packs and whether 32 bit or 64 bit -- Press the WINKEY + Pause keys at the same time will give you System Information with that information. If it does not say 64 bit then you have 32 bit .....

Hugh
Kudos0

Re: Suspicious.AD

It is the Symatec Client Security program.

Kudos0

Re: Suspicious.AD

I'm using Windows XP with Service Pack 3.

Kudos0

Re: Suspicious.AD

I suspect something something is wrong with your Symantec Endpoint client installation. Where did you get it from? From your employer under a special Symantec corp license that allow employees to install it for personal use? If so, your only avenue for support would be the forums for Symantec Endpoint.

Is your Endpoint product functioning properly? Is autoprotect turned on and the icon in your bottom desktop toolbar properly displayed.

Again it is best you go to the Symantec corp. forums for support.

Download and install the free version of MalwareBytes Anti-Malware from here: http://www.malwarebytes.org/

Run a quick scan and see if it finds anything. Post your results.

Kudos0

Re: Suspicious.AD


michaael wrote:

It is the Symatec Client Security program.


That's a Symantec business group program and those are not supported here but in: http://www.symantec.com/connect/   to the best of my knowledge.

Hugh
Kudos0

Re: Suspicious.AD

It is functioning properly and the autoprotect is  turned on and the icon in your bottom desktop toolbar is properly displayed.  I ran the malawarebytes scan and the were no problems.  I continue to get the 7,000 or so Suspicious AD detected and and then cleaned at each startup scan.

Kudos0

Re: Suspicious.AD


michaael wrote:

It is functioning properly and the autoprotect is  turned on and the icon in your bottom desktop toolbar is properly displayed.  I ran the malawarebytes scan and the were no problems.  I continue to get the 7,000 or so Suspicious AD detected and and then cleaned at each startup scan.


Please go to the correct area as posted abaove to deal with this program that is not supported here.

Hugh
Kudos1 Stats

Re: Suspicious.AD

I agree.

You have to go to the Connect forums. I saw postings over there that there were issues like yours that were caused by a bad virus definition download that hosed a bunch of Endpoint RU5 machines.

This thread is closed from further comment. Please visit the forum to start a new thread.