Endpoint Protection

I recently uploaded v5i32 IntelligentUpdater v5.1.0.9 on one of my staging servers that purposefully does not have internet access nor communicates with LiveUpdate server.  I would like to know if the IntelligentUpdater did update all the applicable antivirus for symantec.  Upon completion, the Intelligent Updater popped up stating: Intelligent Updater session complete.  A symantec Product was found and successfully updated.  For more details about the processing, please check the log file "Log.IntelligentUpdater.txt" created in the user's temporary directory. 

Upon opening the file, the first 75% of the log shows all successes, then the last 25% starts to show a lot of FAILURES:

Wed Mar 30 20:35:01 2011 : ******************************************************************
Wed Mar 30 20:35:02 2011 :         Starting Intelligent Updater - Version 5.1.0.9
Wed Mar 30 20:35:02 2011 : ******************************************************************
Wed Mar 30 20:35:02 2011 : AUTH SYMSIGNED BEGIN: Started.
Wed Mar 30 20:35:02 2011 : AUTH SYMSIGNED CLASS3 BEGIN: Entering CriticalSection Initialization .
Wed Mar 30 20:35:02 2011 : AUTH SYMSIGNED CLASS3: Succeeded find the class 3 ID, returning TRUE.
Wed Mar 30 20:35:02 2011 : AUTH SYMSIGNED END: Finished processing. Returns TRUE
Wed Mar 30 20:35:02 2011 : IU RES SYMSIGNED SUCCESS: Successfully verified Symantec Signature for the iuResource.dll
Wed Mar 30 20:35:02 2011 : IU RES LOAD: Successfully loaded the resource file..
Wed Mar 30 20:35:02 2011 : IU MODE: IU is running is FULL mode.
Wed Mar 30 20:35:15 2011 : CONFIG LOAD SUCCESS: Successfully loaded the configuration file: iuConfig.xml.
Wed Mar 30 20:35:15 2011 :     IU INFO: File-name : 20110330-003-v5i32.EXE
Wed Mar 30 20:35:15 2011 :     IU INFO: Creation-date : 20110330
Wed Mar 30 20:35:15 2011 : PROCESSING ENTRY: VIRSCAN.zip - Virus Definitions
Wed Mar 30 20:35:15 2011 : Entry details:
Wed Mar 30 20:35:15 2011 :     Update-File:             VIRSCAN.zip
Wed Mar 30 20:35:15 2011 :     Update-Desc:             Virus Definitions
Wed Mar 30 20:35:15 2011 :     Auth DLL Name:             SAVIUAuth
Wed Mar 30 20:35:15 2011 :     Auth DLL Location:         local
Wed Mar 30 20:35:15 2011 :     Auth Content-Type:         virus definitions x32
Wed Mar 30 20:35:15 2011 :     Deploy Content-Type:         virus definitions x32
Wed Mar 30 20:35:15 2011 :     Deplo DLL Name:         SAVIUDeploy
Wed Mar 30 20:35:15 2011 :     Deploy DLL Location:         local
Wed Mar 30 20:35:15 2011 : AUTH DLL LOCATION: IU will read the DLL location from registry - SAVIUAuth
Wed Mar 30 20:35:15 2011 : REG SUCCESS: Success while opening key
Wed Mar 30 20:35:15 2011 : REG SUCCESS: Success while fetching the path for DLL : C:\Program Files\Symantec\Symantec Endpoint Protection\IU\LuAuth.dll
Wed Mar 30 20:35:15 2011 : DEPLOY DLL LOCATION: IU will read the DLL location from registry - SAVIUDeploy
Wed Mar 30 20:35:15 2011 : REG SUCCESS: Success while opening key
Wed Mar 30 20:35:15 2011 : REG SUCCESS: Success while fetching the path for DLL : C:\Program Files\Symantec\Symantec Endpoint Protection\IU\DefUDply.dll
Wed Mar 30 20:35:15 2011 : AUTH SYMSIGNED BEGIN: Started.
Wed Mar 30 20:35:15 2011 : AUTH SYMSIGNED CLASS3 BEGIN: Entering CriticalSection Initialization .
Wed Mar 30 20:35:15 2011 : AUTH SYMSIGNED CLASS3: Succeeded find the class 3 ID, returning TRUE.
Wed Mar 30 20:35:15 2011 : AUTH SYMSIGNED END: Finished processing. Returns TRUE
Wed Mar 30 20:35:15 2011 : AUTH SYMSIGNED SUCCESS: Successfully verified Symantec Signature for the authorization dll C:\Program Files\Symantec\Symantec Endpoint Protection\IU\LuAuth.dll
Wed Mar 30 20:35:15 2011 : AUTH LOAD SUCCESS: Successfully loaded the authorization dll - C:\Program Files\Symantec\Symantec Endpoint Protection\IU\LuAuth.dll
Wed Mar 30 20:35:15 2011 : AUTH SYMSIGNED BEGIN: Started.
Wed Mar 30 20:35:15 2011 : AUTH SYMSIGNED CLASS3 BEGIN: Entering CriticalSection Initialization .
Wed Mar 30 20:35:15 2011 : AUTH SYMSIGNED CLASS3: Succeeded find the class 3 ID, returning TRUE.
Wed Mar 30 20:35:15 2011 : AUTH SYMSIGNED END: Finished processing. Returns TRUE
Wed Mar 30 20:35:15 2011 : DEPLOY SYMSIGNED SUCCESS: Successfully verified Symantec Signature for the deployment dll C:\Program Files\Symantec\Symantec Endpoint Protection\IU\DefUDply.dll
Wed Mar 30 20:35:15 2011 : DEPLOY LOAD SUCCESS: Successfully loaded the deployment dll - C:\Program Files\Symantec\Symantec Endpoint Protection\IU\DefUDply.dll
Wed Mar 30 20:35:15 2011 : AUTHORIZATION SUCCESSFUL: VIRSCAN.zip is successfully authorized for deployment.
Wed Mar 30 20:35:15 2011 : DEPLOY PATH SUCCESS: VIRSCAN.zip will be deployed at location C:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\tmp6c5.tmp
Wed Mar 30 20:35:15 2011 : AUTH SYMSIGNED BEGIN: Started.
Wed Mar 30 20:35:15 2011 : AUTH SYMSIGNED CLASS3 BEGIN: Entering CriticalSection Initialization .
Wed Mar 30 20:35:15 2011 : AUTH SYMSIGNED CLASS3: Succeeded find the class 3 ID, returning TRUE.
Wed Mar 30 20:35:15 2011 : AUTH SYMSIGNED END: Finished processing. Returns TRUE
Wed Mar 30 20:35:15 2011 : UNRAR LOAD SUCCESS: Successfully loaded the UNRAR DLL.
Wed Mar 30 20:35:15 2011 : UNRAR OPEN SUCCESS: Success opening RAR file VIRSCAN.zip
Wed Mar 30 20:35:23 2011 : UNRAR EXTRACT SUCCESS: Succesfully extracted VIRSCAN.zip to C:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\tmp6c5.tmp
Wed Mar 30 20:35:32 2011 : POST PROCESS SUCCESS: Successfully performed post processing for VIRSCAN.zip
Wed Mar 30 20:35:32 2011 : PROCESSING ENTRY: VIRSCAN.zip - Virus Definitions
Wed Mar 30 20:35:32 2011 : Entry details:
Wed Mar 30 20:35:32 2011 :     Update-File:             VIRSCAN.zip
Wed Mar 30 20:35:32 2011 :     Update-Desc:             Virus Definitions
Wed Mar 30 20:35:32 2011 :     Auth DLL Name:             ISAuthDLL
Wed Mar 30 20:35:32 2011 :     Auth DLL Location:         local
Wed Mar 30 20:35:32 2011 :     Auth Content-Type:         virus definitions x32
Wed Mar 30 20:35:32 2011 :     Deploy Content-Type:         virus definitions x32
Wed Mar 30 20:35:32 2011 :     Deplo DLL Name:         ISDeployDLL
Wed Mar 30 20:35:32 2011 :     Deploy DLL Location:         local
Wed Mar 30 20:35:32 2011 : AUTH DLL LOCATION: IU will read the DLL location from registry - ISAuthDLL
Wed Mar 30 20:35:32 2011 : REG SUCCESS: Success while opening key
Wed Mar 30 20:35:32 2011 : REG FAILURE: Failed while reading the value for key named
Wed Mar 30 20:35:32 2011 : DEPLOY DLL LOCATION: IU will read the DLL location from registry - ISDeployDLL
Wed Mar 30 20:35:32 2011 : REG SUCCESS: Success while opening key
Wed Mar 30 20:35:32 2011 : REG FAILURE: Failed while reading the value for key named
Wed Mar 30 20:35:32 2011 : IGNORE ENTRY: Ignoring entry for VIRSCAN.zip because of registry read failure. Error occurred while reading the path for the Authorization DLL from the registry.
Wed Mar 30 20:35:32 2011 : IU failed while deploying V because a compatible product could not be found on the system. Please make sure that a compatible Symantec product is installed on the system.
Wed Mar 30 20:35:32 2011 : PROCESSING ENTRY: VIRSCAN.zip - Virus Definitions
Wed Mar 30 20:35:32 2011 : Entry details:
Wed Mar 30 20:35:32 2011 :     Update-File:             VIRSCAN.zip
Wed Mar 30 20:35:32 2011 :     Update-Desc:             Virus Definitions
Wed Mar 30 20:35:32 2011 :     Auth DLL Name:             Norton X32 AuthDLL
Wed Mar 30 20:35:32 2011 :     Auth DLL Location:         local
Wed Mar 30 20:35:32 2011 :     Auth Content-Type:         VirusDefs
Wed Mar 30 20:35:32 2011 :     Deploy Content-Type:         VirusDefs
Wed Mar 30 20:35:32 2011 :     Deplo DLL Name:         Norton X32 DeployDLL
Wed Mar 30 20:35:32 2011 :     Deploy DLL Location:         local
Wed Mar 30 20:35:32 2011 : AUTH DLL LOCATION: IU will read the DLL location from registry - Norton X32 AuthDLL
Wed Mar 30 20:35:32 2011 : REG SUCCESS: Success while opening key
Wed Mar 30 20:35:32 2011 : REG FAILURE: Failed while reading the value for key named
Wed Mar 30 20:35:32 2011 : DEPLOY DLL LOCATION: IU will read the DLL location from registry - Norton X32 DeployDLL
Wed Mar 30 20:35:32 2011 : REG SUCCESS: Success while opening key
Wed Mar 30 20:35:32 2011 : REG FAILURE: Failed while reading the value for key named
Wed Mar 30 20:35:32 2011 : IGNORE ENTRY: Ignoring entry for VIRSCAN.zip because of registry read failure. Error occurred while reading the path for the Authorization DLL from the registry.
Wed Mar 30 20:35:32 2011 : IU failed while deploying V because a compatible product could not be found on the system. Please make sure that a compatible Symantec product is installed on the system.

Are the failures due to the non-communication with the LIveUpdate server?  Did the Anti-virus get updated?

Thanks

you can open the sep interface to know if that got updated or not

sometimes when the intelligent updater does not have enough permissions on registry...u can ignore those if that got updated.I think it ill create the log only when it fails, does that say it updated u should be able to see in the sep interface upon success

Hey Rafeeq,

Thanks for the quick reply.  I opened the SEP interface and it does indeed state that Definitions:  Thursday, March31, 2011 r48

So, I'm good?

Thanks again!

Yes u r :)

seems like u have hardened your servers registry, thats the reason for those errors.

Hi Rafeeq,

Thanks again for your assistance. 
 

I'm moving forward with our Production server.  It currently has McAfee installed.  I'm going to proceed with uninstalling McAfee and deploying Symantec via SEP Manangement Console.  I'll have it setup to do LIve updates daily. 

Any advice before proceeding?  It seems pretty straight forward.  I verified that SEP Management Console was able to communicate the Production server.

Thanks.

Nope, that seems good :)