Hanumax: February 2009

Monday, February 16, 2009

Update Symantec AntiVirus Corporate Edition definitions without using LiveUpdate

Question/Issue:
Your primary Symantec AntiVirus Corporate Edition server cannot automatically download virus definitions using LiveUpdate. Alternately, you want the process of downloading the daily definitions update download by hand.

Solution:
Download the attached *.vdb files.

To download an .vdb file from Symantec

Go to the vdb folder on the Symantec FTP site.
Click the .vdb file with the latest date, and select Save to disk from the dialog box.
If the .vdb file downloads with a .zip extension, remove the .zip extension by renaming the file.
The file name should be similar to the following:
vd2ca005.vdb

To copy an .vdb file to a Symantec AntiVirus server

Copy the .vdb file to the Symantec AntiVirus program folder.
- For NetWare servers, the default location is SYS:SAV.
- For antivirus servers on Windows computers, the default is C:\Program Files\SAV\ for Symantec AntiVirus 8.x, or C:\Program Files\Symantec AntiVirus for Symantec AntiVirus 9.x.

The location of the folder can vary if you upgraded from a previous version.
For help with this, see the "To find the Symantec AntiVirus program folder" section in the Technical Information section of this document.

How to automatically update Symantec AntiVirus Corporate Edition definitions without using LiveUpdate

Question/Issue:
Your primary Symantec AntiVirus Corporate Edition server cannot automatically download virus definitions using LiveUpdate. Alternately, you want to automate the process of downloading the daily definitions update download by using an FTP script.

Solution:
Download and modify the attached Cegetter.bat and Cescript.txt files, and then use the Windows Task Scheduler to schedule them to download daily virus definition updates.

Notes:

These files are provided as an example to assist administrators with downloading the virus definitions without using LiveUpdate. Symantec does not provide technical support for these files, so use them at your own risk.

The location of the files downloaded by these files may change, causing the updates to fail. In this case, you may need to manually edit the files to point to the new location or refer back to this document for updated versions of the attached files.
Cescript.txt was last updated on February 8, 2005. If you are using a previous copy of Cescript, replace it with the current file attached to this document. For additional information about recent changes to the file, read the article Cegetter.bat fails to download daily virus definitions after February 8, 2005.

There are different Cegetter files for Symantec AntiVirus and Norton AntiVirus Corporate Edition 7.x. Read the article How to automatically update Norton AntiVirus Corporate Edition 7.x Definitions without using LiveUpdate if you need to update definitions with Norton AntiVirus Corporate Edition 7.x.

Read the article How to update virus definitions for Symantec AntiVirus Corporate Edition for a description of other supported update options for Symantec AntiVirus.

Download the Cegetter.bat and Cescript.txt files.

You must modify the Cegetter.bat to copy definitions to the directory where Symantec AntiVirus Corporate Edition is installed on the Primary Symantec AntiVirus Server.

Both the Cegetter.bat and Cescript.txt should be stored on the root of the Windows boot drive on the computer where it will be executed. If Windows is installed on a drive other than C:, edit the Cescript.txt file to change the drive letter. See the section below titled "To modify the Cescript.txt file to reflect the proper drive letter."

To modify Cegetter.bat to run from the Primary Server
If you plan to schedule and execute Cegetter.bat on the Primary Server, use the following procedure. If you plan to run Cegetter.bat on a computer that is not the Primary Server, skip to the section "To modify Cegetter.bat to run from a computer that is not the Primary Server."

Right-click the Cegetter.bat file, and click Edit.
Find the following line in the Cegetter.bat file:move %systemdrive%\*.xdb
If you are using Windows 2000, XP, or 2003, add the characters /y after the word move. The line should look like the following:

move /y %systemdrive%\*.xdbIf you are using Windows NT 4.0, do not add /y.
Replace with the path to the folder in which Symantec AntiVirus Corporate Edition is installed. The default path depends on the version of Symantec AntiVirus:
- Symantec AntiVirus Corporate Edition 8.x:
  C:\Program Files\SAV
- Symantec AntiVirus Corporate Edition 9.x:C:\Program Files\Symantec AntiVirus
  
  If long path names are used, then make sure to enclose all path names in quotations, as shown in the Examples section.
Test Cegetter.bat by executing each command, line by line, from a command prompt.
A DOS window shows the progress of the download.
Schedule Cegetter.bat to get regular definition updates. Cegetter will download the version of Navup8.exe that is released daily.

Examples
The Cegetter.bat file should appear as follows if Symantec AntiVirus Corporate Edition 8.x was installed to the default path:

ftp -s:cescript.txt call "%systemdrive%\navup8.exe" move %systemdrive%\*.xdb "C:\Program Files\SAV" del /q %systemdrive%\navup8.exe

The Cegetter.bat file should appear as follows if Symantec AntiVirus Corporate Edition 9.x was installed to the default path:

ftp -s:cescript.txt call "%systemdrive%\navup8.exe" move %systemdrive%\*.xdb "C:\Program Files\Symantec AntiVirus" del /q %systemdrive%\navup8.exe

To modify Cegetter.bat to run from a computer that is not the Primary Server

Right-click the Cegetter.bat file, and click Edit.
Find the following line in the Cegetter.bat file:move %systemdrive%\*.xdb
If you are using Windows 2000, XP, or 2003, add the characters /y after the word move. The line should look like the following:

move /y %systemdrive%\*.xdbIf you are using Windows NT 4.0, do not add /y.
Change to the directory where Symantec AntiVirus Corporate Edition is installed on the Primary Server. By default, this directory is shared as VPHOME.

Note: can be a mapped drive to the Primary Server or a UNC path. Symantec recommends using short file names. For example, if the server is mapped as drive x, you could use the following line:

move %systemdrive%\*.xdb x:\VPHOMEYou can also specify a UNC path such as the example below, where you replace with the name or IP address of the Primary Server:

move %systemdrive%\*.xdb \\\VPHOME

To copy files into the VPHOME share, change the share permissions to allow access (Full Control) to the account that Cegetter is running under. The default permissions on that share is "Read" for "Everyone."

If you are running Windows 95/98/Me, then remove the "/q" from the following line:

del /q %systemdrive%\navup8.exe
Test Cegetter.bat by executing each command, line by line, from a command prompt.
A DOS window shows the progress of the download.
Schedule Cegetter.bat to get regular definition updates. Cegetter will download the version of Navup8.exe that is released daily.

To modify the Cescript.txt file to reflect the correct drive letter

Right-click the Cescript.txt file, and then click Edit.
Find the following line in the Cescript.txt file: lcd C:\
Change the C to the drive letter of the drive where Windows is installed.
Save your changes.

Common problems and solutions

Incorrect path: Verify that the path to the directory where Symantec AntiVirus Corporate Edition is installed is correct. The file path should use short file names (DOS). If using long file names, enclose the path in quotation marks.
Proxy or firewall issues: If you are using a proxy or firewall that blocks FTP communications, Cegetter will not work. You must allow FTP traffic for the FTP session to succeed. If your proxy or firewall requires authentication, be sure to run the scheduled event using a user name and password that will authenticate and allow access.
Permissions: Verify that you can copy the .XDB file into the location on the Primary Server under the account that Cegetter is scheduled with.
Running under Windows 95/98/Me: A modified Cegetter.bat file is needed to run under Windows 95/98/Me. For additional information, read the document entitled Error: "File not found - C:\temp\*.vdb - 0 file(s) copied" when using Cegetter.bat to update virus definitions.
Edit Cegetter.bat to contain the following text:

ftp -s:cescript.txt choice /n/t:c,30/c:cc "%systemdrive%\navup8.exe" choice /n/t:c,30/c:cc move %systemdrive%\*.xdb del %systemdrive%\navup8.exe

Updating virus definitions for Symantec AntiVirus Corporate Edition 8.x and 9.x

Question/Issue:
This document describes the procedures to update virus definitions for Symantec AntiVirus Corporate Edition.

Solution:

Before you begin:
If you use ymantec AntiVirus Corporate Edition 10.x or Symantec Client Security 3.x, read the document Updating virus definitions for Symantec AntiVirus Corporate Edition 10.x and Symantec Client Security 3.x.

There are four methods for updating virus definitions:

The Virus Definition Transport Method (VDTM)
LiveUpdate
Copying an .xdb file
Intelligent Updater

Read the following descriptions, and choose a method or combination of methods that works best for your environment.

The Virus Definitions Transport Method (VDTM)
The VDTM is a fully automated solution for virus definitions distribution, and is enabled by default between servers and their managed clients. With the VDTM, it is only necessary to update one server in order to update all computers in the network. The server gets definitions updates using LiveUpdate or an .xdb file, and then automatically distributes the definitions to each of its clients on the network. Read the document How to use the Virus Definitions Transport Method (VDTM) in Symantec AntiVirus Corporate Edition for an overview and instructions. LiveUpdate
LiveUpdate is a program that connects to a server, downloads the latest definitions, and applies the definitions to the computer on which it is running. You can run LiveUpdate from Symantec System Center, or within Symantec AntiVirus. LiveUpdate can retrieve definitions files either from the Symantec server (which it does by default) or from an internal Web, FTP, or file server created with the LiveUpdate Administration Utility.

To run LiveUpdate on a primary server from the Symantec System Center Console

Right-click the primary server, and then click All Tasks > Symantec AntiVirus > Virus Definition Manager.
Click Configure.
Click Update Now.
LiveUpdate now runs silently in the background on the primary server. If the VDTM is enabled, it will distribute virus definitions to any secondary servers and clients when LiveUpdate finishes.

To run LiveUpdate on managed clients from the Symantec System Center Console

Right-click a client or client group, and then click All Tasks > Symantec AntiVirus > Virus Definition Manager.
Click Configure.
Click Update Now.
The affected clients try to obtain virus definitions from the parent server. After this attempt, the managed clients then run LiveUpdate.

To run LiveUpdate from the Symantec AntiVirus Corporate Edition interface

Start Symantec AntiVirus Corporate Edition.
Click LiveUpdate.
Follow the on-screen prompts to download the latest definitions. If the computer is a parent server and the VDTM is enabled, it will distribute virus definitions to any subordinate servers and clients when LiveUpdate finishes.

Schedule LiveUpdate
You can schedule LiveUpdate to run periodically, either from the Virus Definition Manager within Symantec System Center, or by clicking File > Schedule Updates from within Symantec AntiVirus.

The LiveUpdate Administration Utility
On very large or widely distributed networks, it may be desirable to create an internal server and have clients use LiveUpdate to retrieve updates from that server, rather than using the VDTM.
For information on how to determine whether the LiveUpdate Administration Utility is necessary, and for instructions for its implementation, read the document How to configure the LiveUpdate Administration Utility.

Copying an .xdb file
You can update any Symantec AntiVirus server or client by downloading the .xdb file from Symantec. You can also copy an .xdb file from the VPHOME share on any Symantec AntiVirus server. The modified date of the .xdb file matches the date of the virus definitions. When you use this method, Rtvscan.exe checks for new .xdb files and then initiates the update process. Rtvscan.exe checks for new .xdb files approximately every 10 minutes by default. If you do not want to wait, you can manually initiate the update process by stopping and restarting the Symantec AntiVirus Server process.

To download an .xdb file from Symantec

Go to the xdb folder on the Symantec FTP site.
You can also find the file from the Symantec Security Response Virus Definitions Download Page.
Click the .xdb file with the latest date, and select Save to disk from the dialog box.
If the .xdb file downloads with a .zip extension, remove the .zip extension by renaming the file.
The file name should be similar to the following:
vd12bc02.xdb

To copy an .xdb file to a Symantec AntiVirus server

Copy the .xdb file to the Symantec AntiVirus program folder.
- For NetWare servers, the default location is SYS:SAV.
- For antivirus servers on Windows computers, the default is C:\Program Files\SAV\ for Symantec AntiVirus 8.x, or C:\Program Files\Symantec AntiVirus for Symantec AntiVirus 9.x.

Copy the .xdb file to the correct folder, depending on the program version:
- For clients that run Windows 2003/XP/2000, the default folder is one of the following:
  - C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus Corporate Edition\7.5\
  - C:\Documents and Settings\All Users\Application Data\Symantec\Symantec AntiVirus Corporate Edition\7.5\
    
    The Application Data folder may be hidden. To show hidden and system folders, read the document How to make Windows show all files.
- For clients that run Windows 98/Me, the following is the default folder:
  C:\Program Files\Symantec_Client_Security\Symantec AntiVirus\ or C:\Program Files\Symantec AntiVirus\
- For clients that run Windows NT 4.0, the following is the default folder:
  C:\WinNT\Profiles\All Users\Application Data\Symantec\Norton AntiVirus Corporate Edition\7.5\

Automatically updating definitions using the .xdb file
Symantec provides a batch file that you can schedule to update the definitions with the latest .xdb file. This batch file automatically downloads and extracts the latest .xdb file from a statically named executable (Navup8.exe), and copies the .xdb file to the appropriate location. For more information, read the document How to automatically update Symantec AntiVirus Corporate Edition definitions without using LiveUpdate.

Intelligent Updater
The Intelligent Updater file is an executable file that you can use to update virus definitions on legacy (Norton AntiVirus Corporate Edition) servers.

WARNING: If you are updating a Symantec AntiVirus server, then you must download the .xdb file from Symantec, as described in the "Copying an .xdb file" section in this document. If you apply the x86.exe or .vdb definition update then you may experience problems updating secondary servers and clients. Read the document Primary server does not update secondary servers or clients using the VDTM for more information.

To download and apply the Intelligent Updater

Go to the Symantec Security Response Virus Definitions Download Page.
Select the appropriate Language and Product (Symantec AntiVirus Corporate Edition), and then click Download Updates.
Download and run the -x86.exe file, where indicates the date and version of the definition file.

Technical Information:
To find the Symantec AntiVirus program folder

On the Windows taskbar, click Start > Run.
In the Open box, type the following text:

cmd
Click OK.
At the command prompt, type the following:

net share
Under Share name, find the VPHOME listing.
The folder that is listed in the Resource column is the Symantec AntiVirus program folder.

Thursday, February 12, 2009

How to update Symantec AntiVirus Corporate Edition definitions without using LiveUpdate

Question/Issue:
Your primary Symantec AntiVirus Corporate Edition server cannot automatically download virus definitions using LiveUpdate.

Solution:
Download navup8.exe and *.xdb files into the location on the Primary Server., and then run navup8.exe to update virus definition. :

The default location on the Primary Server depends on the version of Symantec AntiVirus:

Symantec AntiVirus Corporate Edition 8.x:
C:\Program Files\SAV
Symantec AntiVirus Corporate Edition 9.x:C:\Program Files\Symantec AntiVirus

Source:
navup8.exe: ftp://ftp.symantec.com/AVDEFS/norton_antivirus/static/navup8.exe
or
ftp://ftp.symantec.com/AVDEFS/norton_antivirus/static/

*.xdb: ftp://ftp.symantec.com/AVDEFS/norton_antivirus/xdb/

Run: Run navup8.exe to update virus definition and then remove navup8.exe. Finish.

I use Symantec AntiVirus Corporate Edition server Version 8, it's ok.

Tuesday, February 10, 2009

Nero 7: don't want to install NeroScout or How to remove it?

You need to put the below code into a .reg file and merge it with the Registry:

Windows Registry Editor Version 5.00

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MyComputer\NameSpace \{3D6BE802-FC0D-4595-A304-E611F97089DC}]
@="Nero Scout"

No need to restart, the Nero Scout will be removed imediately.

Put my own maded Logo into System Properties Tab below the Windows Logo in XP and Support Information.

To put my own maded logos on system properties tab.
Like other companies does. (IBM, DELL, SONY etc.)
and also how can i put a button of Support Information on System Tab to put Some cutomized Information.

Create your logo of size 128*128 or less and save it with name "oemlogo.bmp". i.e. it should be with extension bmp only, jpg/gif not allowed..
Then put this bmp image in c:\windows\system32 folder and restart pc. that's it. you have done.. now check out system properties...

Add Logo To Windows Vista System Properties

How could you add a logo or portrait of dream girl to Windows Vista System Properties?

Well, this is just a little Vista trick that involves editing Windows Registry and preparing a BMP file format in a size measured at 120 x 120 pixel.

How to add a logo or portrait to Windows Vista System window?

Using your favourite image editor to resize or crop the target image (logo or portrait of your dream girl) to 120 x 120 pixels in size and save it as BMP file format.
Copy / move the 120x120 pixels BMP file to System32 directory, e.g.
move Logo.BMP C:\Windows\System32
(assuming you've saved the BMP file as Logo.BMP)
Open up Windows Registry (i.e. click the Vista Orb button, type regedit.exe in the Start Search textbox, click the regedit.exe shortcut listed in the Program list)

Browse to this Registry key path:

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\OEMInformation

While at the OEMInformation Registry key, right-click on the right-pane, select New then String Value and name it as logo
Double-click the logo Registry and enter the full path of BMP file in System32, i.e. C:\Windows\System32\Logo.BMP

Now, the Windows Vista System window should display the new logo/portrait immediately.

* If you want to add manufacturer information to Windows Vista System window;

Browse to Register key path:

     HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\OEMInformation

At the OEMInformation Registry key, right-click on the right-pane, select New then String Value and name it as Manufacturer

Double-click the Manfacturer Registry and enter the manufacturer information, i.e. IBM, Sony, HP, or yourname.