mercredi 16 avril 2014

[SCEP] Side effect of the 1.171 definition updates

After applying the signature update of Microsoft SCEP you probably notice on of these side effect:
  • crash
  • freezes 
  • performance issues

A workaround exist while waiting for a fix:

If you could still access to your sessions, an update of the applied policies as described below temporary fix the issue:
  1. Open the policy properties
  2. Go to the Real-Time protection node
  3. Update the Enable behavior monitoring setting to No
It could take maximum to apply the update to the impacted computers.

If you could access to a session only through the safe mode, you could use the following command line on an elevated command line prompt:
reg add "HKLM\SOFTWARE\Policies\Microsoft\Microsoft Antimalware\Real-Time Protection" /f /v "DisableBehaviorMonitoring" /t REG_DWORD /d "1"

[UPDATE] The definition update seems to resolve the issue.

Aucun commentaire:

Enregistrer un commentaire