An organization is troubleshooting a SONAR false positive and has created an exclusion for the in-house application generating the detection. How can the organization use Process Explorer to verify that the exclusion works?
A) Use Process Explorer to see if secars.dll is still there. If secars.dll is still present in the application as an injected process, ensure the updated policy is applied to the group Use Process Explorer to see if secars.dll is still there. If is still present in the application as an injected process, ensure the updated policy is applied to the group
B) Use Process Explorer to see if UMEngx86.dll is still there. If UMEngx86.dll is still present in the application as an injected process, ensure the updated policy is applied to the group UMEngx86.dll
C) Use Process Explorer to see if IPSFFPI.dll is still there. If IPSFFPI.dll is still present in the application as an injected process, ensure the updated policy is applied to the group IPSFFPI.dll
D) Use Process Explorer to see if sysfer.dll is still there. If sysfer.dll is still present in the application as an injected process, ensure the updated policy is applied to the group sysfer.dll
Correct Answer:
Verified
Q95: What SEPM report should an administrator utilize
Q96: An organization has a small group of
Q97: An organization has a group of 500
Q98: What Symantec Endpoint Protection component facilitates distributing
Q99: What two core technologies does Symantec Endpoint
Q101: Where could a SEP Administrator specify a
Q102: An organization needs to add a collection
Q103: An organization identified a threat in their
Q104: What is the difference between a Block
Q105: An organization would like to control the
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents