I just happened to notice that most of the workstations here all show Not Scanned In 30 Days and the “fix” URL doesn’t fix it. I am thinking it could be our upgrade to the Symantec Cloud based antivirus.<\/p>\n
What should I open or exclude in the Symantec Cloud settings? Or could this be something else?<\/p>\n
Thanks…<\/p>","upvoteCount":2,"answerCount":10,"datePublished":"2015-11-13T20:03:26.000Z","author":{"@type":"Person","name":"PassRusher","url":"https://community.spiceworks.com/u/PassRusher"},"acceptedAnswer":{"@type":"Answer","text":"
file and printer sharing (ports 135, 137/139 perhaps).<\/p>","upvoteCount":0,"datePublished":"2015-11-13T20:05:22.000Z","url":"https://community.spiceworks.com/t/not-scanned-in-30-days-fix-wont-help/451273/2","author":{"@type":"Person","name":"Rod-IT","url":"https://community.spiceworks.com/u/Rod-IT"}},"suggestedAnswer":[{"@type":"Answer","text":"
I just happened to notice that most of the workstations here all show Not Scanned In 30 Days and the “fix” URL doesn’t fix it. I am thinking it could be our upgrade to the Symantec Cloud based antivirus.<\/p>\n
What should I open or exclude in the Symantec Cloud settings? Or could this be something else?<\/p>\n
Thanks…<\/p>","upvoteCount":2,"datePublished":"2015-11-13T20:03:26.000Z","url":"https://community.spiceworks.com/t/not-scanned-in-30-days-fix-wont-help/451273/1","author":{"@type":"Person","name":"PassRusher","url":"https://community.spiceworks.com/u/PassRusher"}},{"@type":"Answer","text":"\n\n
<\/div>\n
Rod-IT:<\/div>\n
\nfile and printer sharing (ports 135, 137/139 perhaps).<\/p>\n<\/blockquote>\n<\/aside>\n
Giving that a shot.<\/p>","upvoteCount":0,"datePublished":"2015-11-13T20:36:20.000Z","url":"https://community.spiceworks.com/t/not-scanned-in-30-days-fix-wont-help/451273/3","author":{"@type":"Person","name":"PassRusher","url":"https://community.spiceworks.com/u/PassRusher"}},{"@type":"Answer","text":"
if from the SW server you can connect to \\machinename\\admin$ then you should be ok.<\/p>\n
Be sure pings are enabled too<\/p>","upvoteCount":0,"datePublished":"2015-11-13T20:37:30.000Z","url":"https://community.spiceworks.com/t/not-scanned-in-30-days-fix-wont-help/451273/4","author":{"@type":"Person","name":"Rod-IT","url":"https://community.spiceworks.com/u/Rod-IT"}},{"@type":"Answer","text":"
Just as a test manually force a scan of a device that hasn’t scanned in over 30 days. Make sure it is online with a ping and make sure that what DNS says the IP address of the device is matches what you confirmed on the device.<\/p>\n
I’m having the same exact issue in a customer’s environment. I see waves of systems that haven’t scanned in 30 days. Groups will seem to stop scanning on specific dates. If I force the system to scan (from the device details toosl->scan now) it will scan the device and pull in the current inventory, but the device will not scan during the normal daily scans. For full disclosure they did move from another vendor to Symantec SEP 12 earlier in the year. But because the device does scan we ruled out SEP. I do have a ticket open with Spiceworks support but right now we don’t have an answer or a solution. I’m now interested in seeing if you are having a similar set of conditions.<\/p>","upvoteCount":0,"datePublished":"2015-11-13T20:40:54.000Z","url":"https://community.spiceworks.com/t/not-scanned-in-30-days-fix-wont-help/451273/5","author":{"@type":"Person","name":"george1421","url":"https://community.spiceworks.com/u/george1421"}},{"@type":"Answer","text":"
George, I’d be interested to know something if you find out from SW.<\/p>\n
I would believe forcing a scan tries to connect to said device and scan, directly, however running a scan from the main menu, I am going to guess does a ping sweep, finds nothing and moves on - the forced scan if I am right would just try to scan the device by name, moving past the ping sweep detection.<\/p>\n
Let me know if you get confirmation.<\/p>","upvoteCount":1,"datePublished":"2015-11-13T20:44:27.000Z","url":"https://community.spiceworks.com/t/not-scanned-in-30-days-fix-wont-help/451273/6","author":{"@type":"Person","name":"Rod-IT","url":"https://community.spiceworks.com/u/Rod-IT"}},{"@type":"Answer","text":"\n\n
<\/div>\n Garak0410:<\/div>\n
\n\n\n
<\/div>\n
Rod-IT:<\/div>\n
\nfile and printer sharing (ports 135, 137/139 perhaps).<\/p>\n<\/blockquote>\n<\/aside>\n
Giving that a shot.<\/p>\n<\/blockquote>\n<\/aside>\n
I think this did it…the number of not scanned in 30 days is going down… will report back final result.<\/p>","upvoteCount":0,"datePublished":"2015-11-13T21:12:26.000Z","url":"https://community.spiceworks.com/t/not-scanned-in-30-days-fix-wont-help/451273/7","author":{"@type":"Person","name":"PassRusher","url":"https://community.spiceworks.com/u/PassRusher"}},{"@type":"Answer","text":"
Good to hear<\/p>","upvoteCount":0,"datePublished":"2015-11-13T21:13:56.000Z","url":"https://community.spiceworks.com/t/not-scanned-in-30-days-fix-wont-help/451273/8","author":{"@type":"Person","name":"Rod-IT","url":"https://community.spiceworks.com/u/Rod-IT"}},{"@type":"Answer","text":"
Just for clarity, here are the spiceworks firewall recommendations.<\/p>\n
http://community.spiceworks.com/education/projects/Windows_Firewall<\/a><\/p>\nFor those systems we’ll generally create a PDQ deployment package and push out the firewall settings to all computers prior to a first scan, just to get that issue out of the picture. Ideally, we would create a GPO firewall policy to ensure these ports remain open.<\/p>","upvoteCount":0,"datePublished":"2015-11-13T22:12:03.000Z","url":"https://community.spiceworks.com/t/not-scanned-in-30-days-fix-wont-help/451273/9","author":{"@type":"Person","name":"george1421","url":"https://community.spiceworks.com/u/george1421"}},{"@type":"Answer","text":"\n\n
<\/div>\n
Rod-IT:<\/div>\n
\nLet me know if you get confirmation.<\/p>\n<\/blockquote>\n<\/aside>\n
Right now we are trying to chase down a possible wbem repository corruption on the target computer, but I don’t think that is the root of the issue.<\/p>","upvoteCount":0,"datePublished":"2015-11-13T22:13:16.000Z","url":"https://community.spiceworks.com/t/not-scanned-in-30-days-fix-wont-help/451273/10","author":{"@type":"Person","name":"george1421","url":"https://community.spiceworks.com/u/george1421"}}]}}
PassRusher
November 13, 2015, 8:03pm
1
I just happened to notice that most of the workstations here all show Not Scanned In 30 Days and the “fix” URL doesn’t fix it. I am thinking it could be our upgrade to the Symantec Cloud based antivirus.
What should I open or exclude in the Symantec Cloud settings? Or could this be something else?
Thanks…
2 Spice ups
Rod-IT
November 13, 2015, 8:05pm
2
file and printer sharing (ports 135, 137/139 perhaps).
PassRusher
November 13, 2015, 8:36pm
3
Rod-IT
November 13, 2015, 8:37pm
4
if from the SW server you can connect to \machinename\admin$ then you should be ok.
Be sure pings are enabled too
george1421
November 13, 2015, 8:40pm
5
Just as a test manually force a scan of a device that hasn’t scanned in over 30 days. Make sure it is online with a ping and make sure that what DNS says the IP address of the device is matches what you confirmed on the device.
I’m having the same exact issue in a customer’s environment. I see waves of systems that haven’t scanned in 30 days. Groups will seem to stop scanning on specific dates. If I force the system to scan (from the device details toosl->scan now) it will scan the device and pull in the current inventory, but the device will not scan during the normal daily scans. For full disclosure they did move from another vendor to Symantec SEP 12 earlier in the year. But because the device does scan we ruled out SEP. I do have a ticket open with Spiceworks support but right now we don’t have an answer or a solution. I’m now interested in seeing if you are having a similar set of conditions.
Rod-IT
November 13, 2015, 8:44pm
6
George, I’d be interested to know something if you find out from SW.
I would believe forcing a scan tries to connect to said device and scan, directly, however running a scan from the main menu, I am going to guess does a ping sweep, finds nothing and moves on - the forced scan if I am right would just try to scan the device by name, moving past the ping sweep detection.
Let me know if you get confirmation.
1 Spice up
PassRusher
November 13, 2015, 9:12pm
7
I think this did it…the number of not scanned in 30 days is going down… will report back final result.
Rod-IT
November 13, 2015, 9:13pm
8
george1421
November 13, 2015, 10:12pm
9
Just for clarity, here are the spiceworks firewall recommendations.
http://community.spiceworks.com/education/projects/Windows_Firewall
For those systems we’ll generally create a PDQ deployment package and push out the firewall settings to all computers prior to a first scan, just to get that issue out of the picture. Ideally, we would create a GPO firewall policy to ensure these ports remain open.
george1421
November 13, 2015, 10:13pm
10
Right now we are trying to chase down a possible wbem repository corruption on the target computer, but I don’t think that is the root of the issue.
