Hi all,
We have a software package that requires SEP to be disabled at installation. Is there a way i can generate a report through the SEP management console that will tell me if any workstations services REMAIN disabled?

Dear ALL,

I'm using SEP Manager 11.0.5. My problem is SEP client cannot update from the server (policy, definitions).
I've checked Communication between Server and client, it seems OK.
On SEP Manager, some clients display computer icon with green dot, others are not. But from the client (which display computer icon with green dot), SEP icon dont have green dot.
When I go to Troubleshooting..., the server status is Offline, and it belongs to wrong group (even i already update Sylink.xml with SylinkDrop tool).
I dont know what happened.

Thanks

4459161 1283931603

Hello, 

I am active duty AF and there we were authorized to install SEP 11 on our home computer through the home use agreement. I am having issues installing it on my computer.

HP Pavilion Notebook
AMD Turion II Dual-core M500 2.20GHz
4.00 GB RAM
228 of 284 GB remaining
Window 7 Home Premium (64-bit)

I have attempted to install it 7 or 8 times with no luck. I have tried to install Live Update, restart and then install SEP...still no luck. See attachment for more info.

MSI (s) (04:60) [22:01:04:261]: Executing op: ActionStart(Name=InstallLiveUpdate_RB.479D9157_6569_48B2_97C9_6F35A45064AC,,)

Action 22:01:04: InstallLiveUpdate_RB.479D9157_6569_48B2_97C9_6F35A45064AC.  MSI (s) (04:60) [22:01:04:266]: Executing op: CustomActionSchedule(Action=InstallLiveUpdate_RB.479D9157_6569_48B2_97C9_6F35A45064AC,ActionType=3329,Source=BinaryData,Target=UnInstallLiveUpdate,CustomActionData=C:\Users\Shanna\AppData\Local\Temp\IWEGYTAJ\LiveUpdate\lucheck.exe) MSI (s) (04:60) [22:01:04:270]: Executing op: ActionStart(Name=InstallLiveUpdate.479D9157_6569_48B2_97C9_6F35A45064AC,,) Action 22:01:04: InstallLiveUpdate.479D9157_6569_48B2_97C9_6F35A45064AC.  MSI (s) (04:60) [22:01:04:274]: Executing op: CustomActionSchedule(Action=InstallLiveUpdate.479D9157_6569_48B2_97C9_6F35A45064AC,ActionType=3073,Source=BinaryData,Target=InstallLiveUpdate,CustomActionData=C:\Users\Shanna\AppData\Local\Temp\IWEGYTAJ\LiveUpdate\lucheck.exe) MSI (s) (04:5C) [22:01:04:278]: Invoking remote custom action. DLL: C:\Windows\Installer\MSIA189.tmp, Entrypoint: InstallLiveUpdate LUCA: InstallLiveUpdate enter. LUCA: C:\Users\Shanna\AppData\Local\Temp\IWEGYTAJ\LiveUpdate\lucheck.exe LUCA: InstallLiveUpdate : CreateProcessAndWait( LUCHECK.EXE ) returned 206 CustomAction InstallLiveUpdate.479D9157_6569_48B2_97C9_6F35A45064AC returned actual error code 1603 (note this may not be 100% accurate if translation happened inside sandbox) Action ended 22:01:35: InstallFinalize. Return value 3.

We have few Mac OSX 10.6.4 clients on which we installed SEP 11 RU6 managed client. Installation goes without any issue but client is never registered in MC and if I check under "Management" in SEP client, it says it's disconnected even though the server name is correct.

We don't have much experience with SEP on MACs and there's no SYLINK.XML to check, like on Windows boxes, so any pointers are much appreciated. I don't know if this is an issue or known no-no with SEP on MACs, but our SEPM listens on non-standard port; Windows boxes have no problem but I figured I'd mention it in case MACs do.
Thanks in advance!

Perhaps I don't have it set correctly - but I've had a reoccuring problem with one of my users with the Zefarch virus.  It's listed as an easy infection to cure but it kept reoccuring on this workstation and recreating Registry entrys and loaded xtene2.dll in the startup menu.  I've run Symantec virus scans repeatedly and it dissapears for a day or two then pops back up.

I've also run AVG, Malwarebytes,  Avast (both boot and safemode) without success - I happened to run an old version of Advanced System Protector with an updated malware/adware engine and it found several problems including registry entries and an .exe file.  Here are outtakes from the quarantine log.

RogueProgram.WinAntiVirus-Pro-2006 (Rogue Antispyware Program)
Status : Quarantined

Infected registry keys/values detected

hkey_classes_root\*\shellex\contextmenuhandlers\shellextension hkey_classes_root\directory\shellex\contextmenuhandlers\shellextension hkey_classes_root\drive\shellex\contextmenuhandlers\shellextension hkey_local_machine\software\classes\*\shellex\contextmenuhandlers\shellextension hkey_local_machine\software\classes\directory\shellex\contextmenuhandlers\shellextension hkey_local_machine\software\classes\drive\shellex\contextmenuhandlers\shellextension

RogueProgram.MS-Antispyware-2009 (Rogue Antispyware Program)
Status : Quarantined

Infected registry keys/values detected

hkey_current_user\software\microsoft\windows\currentversion\drivers hkey_current_user\software\microsoft\windows\currentversion\drivers\video hkey_current_user\software\microsoft\windows\currentversion\drivers\video\options   Malware (General Components) (Generic Malware )
Status : Quarantined

Infected registry keys/values detected

hkey_current_user\software\microsoft\security center\antivirusdisablenotify hkey_current_user\software\microsoft\security center\updatesdisablenotify hkey_current_user\software\wget   pup.mcgruff-safeguard.3-19-1 (Potentially Unwanted Application)
Status : Ignored

Infected files detected

FileName: c:\windows\$ntservicepackuninstall$\dhcpcsvc.dll
MD5: ef545e1a4b043da4c84e230dd471c55f (111616 Bytes)
Signature: be944b1f73437950593346c408e48737   Trojan-Downloader.murlo.dlu (Trojan-Downloader)
Status : Quarantined

Infected files detected

FileName: c:\windows\system32\spool\drivers\w32x86\3\zuninst.exe
MD5: 195b6c9b8d0bf96181e69ce053219f24 (147456 Bytes)
Signature: FileName: c:\windows\system32\spool\drivers\w32x86\hewlett_packardhp_lad566\zuninst.exe
MD5: 195b6c9b8d0bf96181e69ce053219f24 (147456 Bytes)

Am I missing something?