Hello,

I went into the "clients" then  went to one of the Folders clicked on "Install Packages" and added a package.  If i add a Package at the top level of a folder stucture will it pass down to all the folders or do i  have to create a seperate setting for each sub-folder?

Example:

My Company
     Main Building
           1st Floor
                 Dept A
                 Dept B
           2nd Floor
                 Dep C
           3rd Floor
   Second Building

If i setup a install package on "Main Building" will the others (1st Floor, Dept A, Dept B...) also get the update or do i need to set one up for each Sub-Folder?

Thank you

Daniel Schmidt

4461141 1283955305

Hello,

I am using the LiveUpdate Administration Utility v 1.5.4 to download the latest Symantec Virus definition , the files are correctly downloaded to the download directory
I am checking the following products line:

-Symante Antivirus Virus definition.
-Symantec Antivirus Corporate Editions.

i am checking the following for the languages:
-SymAllLanguages
-English
-French

On the client side i have Symantec v10 installed and after running LUALL i have a message that all Symantec products are up to date however when checking the logs and the registry i don't see that the client machine had the latest virus definition installed...

Is there a way i can check that the latest virus definition was correctly installed to clients? An action to be taken in case  client are not having the updates?

i am checking value "NAVCORP_70" of key ' HKEY_LOCAL_MACHINE\SOFTWARE\Symantec\SharedDefs'of registry

AND here is an extract from the logs:

 

9/7/2010, 10:13:54 GMT -> ***********************        Start of New LU Session        ***********************
9/7/2010, 10:13:55 GMT -> EVENT - SESSION START EVENT - The LiveUpdate session is running in Interactive Mode.
9/7/2010, 10:13:55 GMT -> Check for updates to:  Product: LiveUpdate, Version: 3.5.0.64, Language: French.  Mini-TRI file name: liveupdate_3.5.0.64_french_livetri.zip
9/7/2010, 10:13:55 GMT -> Progress Update: TRYING_HOST: HostName: "fep-reps-cai01" URL: "ftp://172.30.70.6/Symantec" HostNumber: 0
9/7/2010, 10:13:55 GMT -> Progress Update: TRIFILE_DOWNLOAD_START: Number of TRI files: 0 Downloading LiveUpdate catalog file
9/7/2010, 10:13:55 GMT -> LiveUpdate will download the first Mini-TRI file, liveupdate_3.5.0.64_french_livetri.zip
9/7/2010, 10:13:55 GMT -> Progress Update: DOWNLOAD_BATCH_START: Files to download: 1, Estimated total size: 0
9/7/2010, 10:13:55 GMT -> Progress Update: PRE_CONNECT: Proxy: "(not-available)" Agent: "Symantec LiveUpdate" AccessType: 0x0      
9/7/2010, 10:13:57 GMT -> Progress Update: CONNECTED: Proxy: "(not-available)" Agent: "7i9eVhqBoKjOOFllQLsr5OlRwS4PRCGTAAAAAA" AccessType: 0x0      
9/7/2010, 10:13:57 GMT -> Progress Update: DOWNLOAD_FILE_START: URL: "ftp://172.30.70.6/Symantec/liveupdate_3.5.0.64_french_livetri.zip", Estimated Size: 0, Destination Folder: "C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads"
9/7/2010, 10:13:57 GMT -> CstInetGetFile::DoTransfer() successfully impersonated the COM client.
9/7/2010, 10:13:57 GMT -> CstInetGetFile::DoTransfer() finished impersonating the COM client.
9/7/2010, 10:13:58 GMT -> CstInetGetFile::DoTransfer() - InternetOpenUrl returned extended error: 550 /Symantec/liveupdate_3.5.0.64_french_livetri.zip: The system cannot find the file specified.

 

9/7/2010, 10:13:58 GMT -> Progress Update: DOWNLOAD_FILE_FINISH: - NOTE - URL: "ftp://172.30.70.6/Symantec/liveupdate_3.5.0.64_french_livetri.zip", Full Download Path: "(null)" HR: 0x80072EE3
9/7/2010, 10:13:58 GMT -> Progress Update: DOWNLOAD_BATCH_FINISH: HR: 0x0       , Num Successful: 0
9/7/2010, 10:13:58 GMT -> LiveUpdate will check for Mini-TRI file support on the server since the first Mini-TRI file <liveupdate_3.5.0.64_french_livetri.zip> was not available.
9/7/2010, 10:13:58 GMT -> Progress Update: DOWNLOAD_BATCH_START: Files to download: 1, Estimated total size: 0
9/7/2010, 10:13:58 GMT -> Progress Update: DOWNLOAD_FILE_START: URL: "ftp://172.30.70.6/Symantec/minitri.flg", Estimated Size: 0, Destination Folder: "C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads"
9/7/2010, 10:13:58 GMT -> CstInetGetFile::DoTransfer() successfully impersonated the COM client.
9/7/2010, 10:13:59 GMT -> CstInetGetFile::DoTransfer() finished impersonating the COM client.
9/7/2010, 10:13:59 GMT -> CstInetGetFile::DoTransfer() - InternetOpenUrl returned extended error: 550 /Symantec/minitri.flg: The system cannot find the file specified. 9/7/2010, 10:13:59 GMT -> Progress Update: DOWNLOAD_FILE_FINISH: - NOTE - URL: "ftp://172.30.70.6/Symantec/minitri.flg", Full Download Path: "(null)" HR: 0x80072EE3
9/7/2010, 10:13:59 GMT -> Progress Update: DOWNLOAD_BATCH_FINISH: HR: 0x0       , Num Successful: 0
9/7/2010, 10:13:59 GMT -> LiveUpdate is doing a legacy mode download of the livetri.zip file.
9/7/2010, 10:13:59 GMT -> Progress Update: DOWNLOAD_BATCH_START: Files to download: 1, Estimated total size: 0
9/7/2010, 10:13:59 GMT -> Progress Update: DOWNLOAD_FILE_START: URL: "ftp://172.30.70.6/Symantec/livetri.zip", Estimated Size: 0, Destination Folder: "C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads"
9/7/2010, 10:13:59 GMT -> CstInetGetFile::DoTransfer() successfully impersonated the COM client.
9/7/2010, 10:13:59 GMT -> CstInetGetFile::DoTransfer() finished impersonating the COM client.
9/7/2010, 10:14:04 GMT -> Progress Update: DOWNLOAD_FILE_FINISH: URL: "ftp://172.30.70.6/Symantec/livetri.zip", Full Download Path: "C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\livetri.zip" HR: 0x0      
9/7/2010, 10:14:05 GMT -> Progress Update: DOWNLOAD_BATCH_FINISH: HR: 0x0       , Num Successful: 1
9/7/2010, 10:14:07 GMT -> Progress Update: HOST_SELECTED: Host IP: "172.30.70.6" URL: "ftp://172.30.70.6/Symantec" HostNumber: 0
9/7/2010, 10:14:07 GMT -> EVENT - SERVER SELECTION SUCCESSFUL EVENT - LiveUpdate connected to server 172.30.70.6 at path /Symantec via a FTP connection. The server connection connected with a return code of 200, Le téléchargement du fichier TRI a réussi
9/7/2010, 10:14:07 GMT -> Progress Update: UNZIP_FILE_START: Zip File: "C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\livetri.zip", Dest Folder: "C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads"
9/7/2010, 10:14:07 GMT -> Progress Update: UNZIP_FILE_PROGRESS: Extracting file: "liveupdt.grd"
9/7/2010, 10:14:07 GMT -> Progress Update: UNZIP_FILE_PROGRESS: Extracting file: "liveupdt.sig"
9/7/2010, 10:14:07 GMT -> Progress Update: SECURITY_SIGNATURE_MATCHED: GuardFile: "C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\liveupdt.grd"
9/7/2010, 10:14:07 GMT -> Progress Update: UNZIP_FILE_FINISH: Zip File: "C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\livetri.zip", Dest Folder: "C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads", HR: 0x0      
9/7/2010, 10:14:07 GMT -> Progress Update: UNZIP_FILE_START: Zip File: "C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\livetri.zip", Dest Folder: "C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads"
9/7/2010, 10:14:08 GMT -> Progress Update: UNZIP_FILE_PROGRESS: Extracting file: "liveupdt.tri"
9/7/2010, 10:14:08 GMT -> Progress Update: UNZIP_FILE_FINISH: Zip File: "C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\livetri.zip", Dest Folder: "C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads", HR: 0x0      
9/7/2010, 10:14:08 GMT -> Progress Update: TRIFILE_DOWNLOAD_END: Number of TRI files: "1"
9/7/2010, 10:14:08 GMT -> ********* Finished Finding Available tri files for Updates ********* 9/7/2010, 10:14:08 GMT -> LiveUpdate did not find any new updates for the given products.
9/7/2010, 10:14:08 GMT -> EVENT - SESSION END SUCCESSFUL EVENT - The LiveUpdate session ran in Interactive Mode. LiveUpdate found 0 updates available, of which 0 were installed and 0 failed to install.  The LiveUpdate session exited with a return code of 100, La session LiveUpdate s'est exécutée avec succès. Aucune nouvelle mise à jour n'est disponible pour vos produits.
9/7/2010, 10:18:03 GMT -> LiveUpdate released 2 of 2 progress callback(s).

Thanks in advance!

During scaning Norton Pc check was scannig a file "c:/users/..../local/temp/e-card.exe"   this file pass the antivirus scan. But after searchnig for this file manualy, I could not find it.
I looked in the folder. also, I used search from windows and finally I used command line "dir" and "find". But none was able to find the file. How come Norton can see a file that I can not locate after the scan? I'm a;lmost sure it is a virus but it pass norton scan.

Anyone else having issues with DAT files getting backed up (read not processed) in the data\inbox\agentinfo directory?  We've had it happen a couple of times and restarting the SEPM service seems to remedy the situation at least temporarily.  We are running version 11.6a

We have a case open with Symantec in regards to this but are being told that this is a known issue, yet there is no public documentation that states that this issue exists in 6a (It is documented in the release notes for MR4 MP2)

Slow process of DAT files in the Inbox\Agentinfo folder on the Manager
Fix ID: 1513330
Symptom: Large numbers of files in the Inbox\Agentinfo folder. The number of files continually increases.
Solution: Updates to Avman and Agentinfo processing along with SQL batching of statements, and configurable multi-threading to the Agentinfo processing.

Has anyone seen before the Symantec server Requesting continues scans from the clients attached to it.

Is it good idea to implement Symantec Central Quarantine for 2000+ PC? Because i got some branch office with 200+ PC, Just wondering if branch office pc starts sending Quarantine file to SEMP there will be a lode on WAN Link

Can any body explain the differences between the two products?

Is  Critical System Protection is supported by 98?

Because we have some NT systems and also other system where we want to implement SEP.As SEP is not supported on NT and 98 so we want to check with Critical System Protection.But in Critical system protection can we protection from virus attacks and we cant use two products for this purpose if SCS supports stopping virus out breaks in the same Environment.

Can any one suggest so that we can use a single product for both windows 2000 and above as well as for windows 98 and NT.Eventhough support is not there for NT and 98,we want to see if we can find some product...

Thanks in Advance.....

I have different version of virus definition files between my clients (2010-09-03) and my SEPM console (2010-08-10).
My client get thir update by my SEPM. Can you help me troubleshoot this issue ?

Hi,
 
On my SEPM Server Version 11.0.6 (Server 2008 R2) I have a problem with the SEP Client, respectively with the LiveUpdate 3.3 (not the LU Administrator)
The Client is managed (by himself), connected and gets the Policy’s.
But LiveUpdate always tries to load Updates form the Symantec Server and not as configured in the Location respectively in the LiveUpdate Policy.
 
What I also want to know is, where safes the client the policy´s which came from the management Server.
 
Thank´s a lot

Hi All,

After installing SEPM 11 with client on windows server 2003 r2 32 bit, Server Network access is very slow. to copy a 130 MB file it is taking 135 min?
please provide solution 

Hi all,   1. location for embedded database file. 2. I need to move embedded database from system drive to diffrent drive on same system.   best regards imran mogal

Hi,
 I have Windows 7 x64 (SP1 beta) with SEP 11.0.6100.645

 I'd like to run the firewall component only of SEP, so I uninstalled the 2 firewall related components. At the moment I also want to run SEP unmanaged, so just for basic AV with scheduled liveupdate. (I had some strange issues with the firewall, possibly relating to a large number of miniport adapters I have for virtualization & vpn)

 However I noticed "SMC.exe" was still running and taking a small amount of CPU (a few %). I therefore disabled
 - Symantec Network Access Control
 - Symantec Management Client

Having done this I observe
 - The tray icon is no longer present
 - If I manually start the gui & get a warning NAP id not running
 - The test virus EICAR is still correctly picked up.

Am I right in thinking this configuration is
 - giving full virus protection
 - running unmanaged
 - offering no firewall/network protection

Thanks
Nigel.

Hi all,

I have problem about virus definition updating of SEPM ( ru5 & ru6) via Liveupdate administrator.  The Liveupdate administrator v.2.2.2.9 could download & distribution processing virus definition up-to-date. Then I update virus from SEPM, the log show completed update with definition up-to-date when I saw at "Show Liveupdate Downloads" , the virus definition still out-of-date.

I do several solution
1. I tried to reinstall Liveupdate  & delete folder LiveUpdate in "Documents and Settings\All Users\Application Data\Symantec\LiveUpdate" , then I use command to LuCatalog -cleanup & -update too.
2. follow step int the Article "How to clear corrupt virus definition from SEPM"

Have any idea, Pls help me :c

Why few computers on network not updating proactive threat protection.?

Hi

When I login to Endpoint Protection manager's Management console , the home page is appears as in the attached picture. And there are no responses when I click the " preferences" and "more details" too.I just restarted the Services and IAS . Then restarted the Server too. But the problem is still the same. My version is " MR6MP1"

Please help

4459141 1283941900

Hello

Several times I sent the virus file to check starting in August (# 17018189, # 17168960, # 17305095), but until now Symantec SEP can not detect this virus. We have to interrupt the process while using the rules created manually.

1) Why is this virus is still not detected antivirus?
2) How to see the current online status tracking # 17168960 (and another) than received automated emails.

http://www.virustotal.com/file-scan/report.html?id...

Hi all,
We have a software package that requires SEP to be disabled at installation. Is there a way i can generate a report through the SEP management console that will tell me if any workstations services REMAIN disabled?

Dear ALL,

I'm using SEP Manager 11.0.5. My problem is SEP client cannot update from the server (policy, definitions).
I've checked Communication between Server and client, it seems OK.
On SEP Manager, some clients display computer icon with green dot, others are not. But from the client (which display computer icon with green dot), SEP icon dont have green dot.
When I go to Troubleshooting..., the server status is Offline, and it belongs to wrong group (even i already update Sylink.xml with SylinkDrop tool).
I dont know what happened.

Thanks

4459161 1283931603

Hello, 

I am active duty AF and there we were authorized to install SEP 11 on our home computer through the home use agreement. I am having issues installing it on my computer.

HP Pavilion Notebook
AMD Turion II Dual-core M500 2.20GHz
4.00 GB RAM
228 of 284 GB remaining
Window 7 Home Premium (64-bit)

I have attempted to install it 7 or 8 times with no luck. I have tried to install Live Update, restart and then install SEP...still no luck. See attachment for more info.

MSI (s) (04:60) [22:01:04:261]: Executing op: ActionStart(Name=InstallLiveUpdate_RB.479D9157_6569_48B2_97C9_6F35A45064AC,,)

Action 22:01:04: InstallLiveUpdate_RB.479D9157_6569_48B2_97C9_6F35A45064AC.  MSI (s) (04:60) [22:01:04:266]: Executing op: CustomActionSchedule(Action=InstallLiveUpdate_RB.479D9157_6569_48B2_97C9_6F35A45064AC,ActionType=3329,Source=BinaryData,Target=UnInstallLiveUpdate,CustomActionData=C:\Users\Shanna\AppData\Local\Temp\IWEGYTAJ\LiveUpdate\lucheck.exe) MSI (s) (04:60) [22:01:04:270]: Executing op: ActionStart(Name=InstallLiveUpdate.479D9157_6569_48B2_97C9_6F35A45064AC,,) Action 22:01:04: InstallLiveUpdate.479D9157_6569_48B2_97C9_6F35A45064AC.  MSI (s) (04:60) [22:01:04:274]: Executing op: CustomActionSchedule(Action=InstallLiveUpdate.479D9157_6569_48B2_97C9_6F35A45064AC,ActionType=3073,Source=BinaryData,Target=InstallLiveUpdate,CustomActionData=C:\Users\Shanna\AppData\Local\Temp\IWEGYTAJ\LiveUpdate\lucheck.exe) MSI (s) (04:5C) [22:01:04:278]: Invoking remote custom action. DLL: C:\Windows\Installer\MSIA189.tmp, Entrypoint: InstallLiveUpdate LUCA: InstallLiveUpdate enter. LUCA: C:\Users\Shanna\AppData\Local\Temp\IWEGYTAJ\LiveUpdate\lucheck.exe LUCA: InstallLiveUpdate : CreateProcessAndWait( LUCHECK.EXE ) returned 206 CustomAction InstallLiveUpdate.479D9157_6569_48B2_97C9_6F35A45064AC returned actual error code 1603 (note this may not be 100% accurate if translation happened inside sandbox) Action ended 22:01:35: InstallFinalize. Return value 3.

We have few Mac OSX 10.6.4 clients on which we installed SEP 11 RU6 managed client. Installation goes without any issue but client is never registered in MC and if I check under "Management" in SEP client, it says it's disconnected even though the server name is correct.

We don't have much experience with SEP on MACs and there's no SYLINK.XML to check, like on Windows boxes, so any pointers are much appreciated. I don't know if this is an issue or known no-no with SEP on MACs, but our SEPM listens on non-standard port; Windows boxes have no problem but I figured I'd mention it in case MACs do.
Thanks in advance!