| Event ID | 168 |
| Source | Symantec Mail Security for Microsoft Exchange |
| Description | The process SAVFMSESp.exe was restarted. |
| Event Information | Situation: A Microsoft Exchange server has Symantec Mail Security 4.x and a Symantec corporate edition product installed. A review of the Application log in the Event viewer shows entries for Event ID: 5 with Event Source: Norton AntiVirus. Event ID: 103 with Event Source: Symantec Mail Security follows this entry. These entries appear multiple times. The Symantec corporate edition product installed is one of the following: Norton AntiVirus Corporate Edition 7.x Symantec AntiVirus Corporate Edition 8.x Symantec AntiVirus Corporate Edition 9.xSolution: The presence of these entries in the Application log can indicate exclusions for Microsoft Exchange are not properly set within the Symantec corporate edition product. To ensure exclusions are set properly go to the appropriate document in the following section. |
| Reference Links | Event ID: 5 followed by Event ID: 103 can indicate exclusions not properly set within a Symantec corporate edition product |
Catch threats immediately
We work side-by-side with you to rapidly detect cyberthreats
and thwart attacks before they cause damage.