04/02 14:29:24 [2132] ~~~Sylink log started. (SEP Product Version in registry: 11.0.6300.803, Sylink File Version: 11.0.6300.552) 04/02 14:29:24 [2132] Stored HostGUID=0EF258130A2405070143073A8BFFFD51; outlen=16 04/02 14:29:24 [2132] Stored UserGuid=0; outlen=2 04/02 14:29:24 [2132] Sygate-SSN=36153 04/02 14:29:24 [2132] Read CSN=36154 04/02 14:29:24 [2132] Sygate-SSN=210 04/02 14:29:24 [2132] Read CSN=211 04/02 14:29:24 [2132] Product Type=1,Major Ver=5,Minor Ver=1,Platform ID=2,OSType=17105154 04/02 14:29:24 [2132] OS=Windows XP Professional ; number=5.1.2600 04/02 14:29:24 [2132] SyLinkCreateInstance => Instance created: 01D0FC20 Registry path: SOFTWARE\Symantec\Symantec Endpoint Protection\SMC\SYLINK 04/02 14:29:24 [2132] :Netport Count=1 04/02 14:29:24 [2132] :NicInfo 04/02 14:29:24 [2132] SyLinkCreateConfig => Created instance: 01D2F420 04/02 14:29:24 [2132] UseNewConfig => Created m_hNewConfig: 01D2F420 04/02 14:29:24 [2132] Importing ConfigObject: 01D0E978 into: 01D2F420 04/02 14:29:24 [2132] Importing ConfigObject: 01D0E978 into: 01D2D170 04/02 14:29:24 [2132] stopping...ignore event ID=EVENT_SYLINK_CONFIG_SETTING_CHANGED 04/02 14:29:24 [2132] SSA packageType is set as 105 04/02 14:29:24 [2132] SyLinkDeleteConfig => Deleting instance: 01D0E978 04/02 14:29:24 [2132] HI status is changed to=3; reason=105; rule=Host Integrity check is disabled. Host Integrity policy has been disabled by the administrator. 04/02 14:29:25 [2132] SyLinkCreateConfig => Created instance: 0380AEF8 04/02 14:29:25 [2132] SetCurLocationName: Name is set to - Default 04/02 14:29:25 [2132] SetCurLocationID: ID is set to - 81BD20610A276A05003DC250CEBE6220 04/02 14:29:25 [2132] SyLinkCreateConfig => Created instance: 038C8008 04/02 14:29:25 [2132] RemeberCurrentGroup=0,RememberCurrentPolicyMode=0 04/02 14:29:25 [2132] Importing ConfigObject: 038C8008 into: 01D2F420 04/02 14:29:25 [2132] Importing ConfigObject: 038C8008 into: 01D2D170 04/02 14:29:25 [2132] stopping...ignore event ID=EVENT_SYLINK_CONFIG_SETTING_CHANGED 04/02 14:29:25 [2132] SyLinkDeleteConfig => Deleting instance: 038C8008 04/02 14:29:26 [2132] SyLinkDeleteConfig => Deleting instance: 0380AEF8 04/02 14:29:26 [828] Manually assigned heartbeat=1 seconds 04/02 14:29:26 [2148] Manually assigned heartbeat=1 seconds 04/02 14:29:26 [2132] 04/02 14:29:26 [2132] 04/02 14:29:26 [2132] The last server used was 'Adresse du Serveur SEPM' 04/02 14:29:26 [2132] 04/02 14:29:26 [2132] CUpdateConfig::Dump 04/02 14:29:26 [2132] 04/02 14:29:26 [2132] msz_DomainName is taken from szDomainName 04/02 14:29:26 [2132] DomainName (Final)=avl.dz 04/02 14:29:26 [2808] Manually assigned heartbeat=285 seconds 04/02 14:29:26 [2600] Thread is about to begin.. 04/02 14:29:26 [2808] Successfully created the heartbeat thread 04/02 14:29:26 [2132] Started, contact SMS every 300 seconds 04/02 14:29:26 [2132] going to post event=EVENT_SYLINK_CONFIG_SETTING_CHANGED 04/02 14:29:26 [2132] done post event=EVENT_SYLINK_CONFIG_SETTING_CHANGED, return=0 04/02 14:29:26 [2132] 04/02 14:29:27 [2600] 04/02 14:29:27 [2600] going to post event=EVENT_LU_REQUIRE_STATUS 04/02 14:29:27 [2132] Received new User/Domain from SMC.. User: admingl1z User Domain: ALEM 04/02 14:29:27 [2132] Getting FQDN from XP or later OS. 04/02 14:29:27 [2132] user_name's length is: 10 04/02 14:29:27 [2132] domain_name's length is: 5 04/02 14:29:27 [2132] The sessions' total amount we get:6 04/02 14:29:27 [2132] Checking if the new user domain name is the same as Local Host .. 04/02 14:29:27 [2132] HostName=alem 04/02 14:29:27 [2132] New User DomainName=alem 04/02 14:29:27 [2132] User Domain name is same as Host name .. Setting 'Login Domain' to =LocalComputer 04/02 14:29:27 [2132] Logged in user info set to: LocalComputer/admingl1z 04/02 14:29:27 [2132] Marking User Change Notify to redo registration.. 04/02 14:29:27 [2600] done post event=EVENT_LU_REQUIRE_STATUS, return=0 04/02 14:29:27 [2600] Adding LU Info to LU Download File List: {C60DC234-65F9-4674-94AE-62158EFCA433}130401016 04/02 14:29:27 [2600] ====== Heartbeat loop starts at 14:29:27 ====== 04/02 14:29:28 [2600] :Netport Count=1 04/02 14:29:28 [2600] :NicInfo 04/02 14:29:28 [2600] Get Hardware ID 04/02 14:29:28 [828] SyLinkCreateConfig => Created instance: 01C57938 04/02 14:29:28 [828] Importing ConfigObject: 01D2D170 into: 01C57938 04/02 14:29:28 [828] SyLinkDeleteConfig => Deleting instance: 01C57938 04/02 14:29:29 [2600] Hardware ID assigned: C92B3B3E177D73DF8B6C5F1FDEC54B66 04/02 14:29:29 [2600] :CH=E45279550A24050C018346A6E662F63D1alemavl.dzC92B3B3E177D73DF8B6C5F1FDEC54B66 04/02 14:29:29 [2600] :CHKey=212E18DA591F13B8E64BB09D80780514 04/02 14:29:29 [2600] :C=E45279550A24050C018346A6E662F63D1alemavl.dz 04/02 14:29:29 [2600] :CKey=1B0A8E4DC8EFB8DBFE601F00A3D1FFB7 04/02 14:29:29 [2600] :UCH=E45279550A24050C018346A6E662F63D0admingl1zLocalComputeralemavl.dzC92B3B3E177D73DF8B6C5F1FDEC54B66 04/02 14:29:29 [2600] :UCHKey=9EB109E7A5B6D636782FF59E753AF8BB 04/02 14:29:29 [2600] :UC=E45279550A24050C018346A6E662F63D0admingl1zLocalComputeralemavl.dz 04/02 14:29:29 [2600] :UCKey=1D3238C3BADF4E42B0C19C9ADF0E7D7A 04/02 14:29:29 [2600] HardwareID=C92B3B3E177D73DF8B6C5F1FDEC54B66 04/02 14:29:29 [2600] CHKey=212E18DA591F13B8E64BB09D80780514 04/02 14:29:29 [2600] CKey=1B0A8E4DC8EFB8DBFE601F00A3D1FFB7 04/02 14:29:29 [2600] UCHKey=9EB109E7A5B6D636782FF59E753AF8BB 04/02 14:29:29 [2600] UCKey=1D3238C3BADF4E42B0C19C9ADF0E7D7A 04/02 14:29:29 [2600] Set heartbeat event 04/02 14:29:29 [2600] Use new configuration 04/02 14:29:29 [2600] ====== Reg Heartbeat loop starts at 14:29:29 ====== 04/02 14:29:30 [2600] HEARTBEAT: Check Point 1 04/02 14:29:30 [2600] HEARTBEAT: Check Point 2 04/02 14:29:30 [2600] going to post event=EVENT_SERVER_CONNECTING 04/02 14:29:30 [2600] done post event=EVENT_SERVER_CONNECTING, return=0 04/02 14:29:30 [2600] HEARTBEAT: Check Point 3 04/02 14:29:30 [2600] Setting the session timeout on Profile Session (Registration) to 30000 04/02 14:29:30 [2600] HEARTBEAT: Check Point 4 04/02 14:29:30 [2600] ===Registration STAGE=== 04/02 14:29:30 [2600] logon id (domain/user)=LocalComputer/admingl1z 04/02 14:29:30 [2600] Loading current group:My Company\Groupe de la machine 04/02 14:29:30 [2600] Loading current mode:1 04/02 14:29:30 [2600] Loading preferred group:My Company\Default Group 04/02 14:29:30 [2600] Loading preferred mode:1 04/02 14:29:30 [2600] It will remember nothing, PreferredGroup is My Company\Default Group, PreferredMode is 1 04/02 14:29:30 [2600] XML data: 04/02 14:29:30 [2600] [MakeRegisterData] registration Hardware Key=C92B3B3E177D73DF8B6C5F1FDEC54B66 04/02 14:29:30 [2600] ************Reg CSN=212 04/02 14:29:30 [2600] Request is: s_origin_length: 1257 s_session_id: C92B3B3E177D73DF8B6C5F1FDEC54B66 Sygate-SSN: 212 04/02 14:29:30 [2600] http://@ IP du serveur SEPM:8014 [encrypted data] 04/02 14:29:30 [2600] 14:29:30=>Send HTTP REQUEST 04/02 14:29:30 [2600] 14:29:30=>HTTP REQUEST sent 04/02 14:29:30 [2600] 14:29:30=>QUERY return code 04/02 14:29:30 [2600] 14:29:30=>QUERY return code completed 04/02 14:29:30 [2600] SMS return=200 04/02 14:29:30 [2600] 200=>200 OK 04/02 14:29:30 [2600] Content Lenght => 350 04/02 14:29:30 [2600] HTTP returns status code=200 04/02 14:29:30 [2600] RECEIVE STAGE COMPLETED 04/02 14:29:30 [2600] COMPLETED, returned 0 04/02 14:29:30 [2600] NextHop Not equal @ IP du serveur SEPM,return FALSE 04/02 14:29:30 [2600] NextHop is OnLink with @ IP de la machine ,return TRUE 04/02 14:29:30 [2600] Next Hop IP is a local IP or ONLINK:@ IP de la machine 04/02 14:29:30 [2600] HEARTBEAT: Check Point 5.1 04/02 14:29:30 [2600] Manually assigned heartbeat=3 seconds 04/02 14:29:30 [2600] going to post event=EVENT_SERVER_ONLINE 04/02 14:29:30 [2600] done post event=EVENT_SERVER_ONLINE, return=0 04/02 14:29:30 [2600] HEARTBEAT: Check Point 8 04/02 14:29:30 [2600] going to post event=EVENT_SERVER_DISCONNECTED 04/02 14:29:30 [2600] done post event=EVENT_SERVER_DISCONNECTED, return=0 04/02 14:29:30 [2600] ====== Registration Procedure stops at 14:29:30 ====== 04/02 14:29:30 [2600] HEARTBEAT: Check Point 10 04/02 14:29:30 [2600] HEARTBEAT: Check Point Complete 04/02 14:29:30 [2600] Done, Heartbeat=3seconds 04/02 14:29:30 [2600] ====== Heartbeat loop stops at 14:29:30 ====== 04/02 14:29:34 [2600] ====== Heartbeat loop starts at 14:29:34 ====== 04/02 14:29:35 [2600] :Netport Count=1 04/02 14:29:35 [2600] :NicInfo 04/02 14:29:35 [2600] :CH=E45279550A24050C018346A6E662F63D1alemavl.dzC92B3B3E177D73DF8B6C5F1FDEC54B66 04/02 14:29:35 [2600] :CHKey=212E18DA591F13B8E64BB09D80780514 04/02 14:29:35 [2600] :C=E45279550A24050C018346A6E662F63D1alemavl.** 04/02 14:29:35 [2600] :CKey=1B0A8E4DC8EFB8DBFE601F00A3D1FFB7 04/02 14:29:35 [2600] :UCH=E45279550A24050C018346A6E662F63D0admingl1zLocalComputeralemavl.dzC92B3B3E177D73DF8B6C5F1FDEC54B66 04/02 14:29:35 [2600] :UCHKey=9EB109E7A5B6D636782FF59E753AF8BB 04/02 14:29:35 [2600] :UC=E45279550A24050C018346A6E662F63D0admingl1zLocalComputeralemavl.** 04/02 14:29:35 [2600] :UCKey=1D3238C3BADF4E42B0C19C9ADF0E7D7A 04/02 14:29:35 [2600] HardwareID=C92B3B3E177D73DF8B6C5F1FDEC54B66 04/02 14:29:35 [2600] CHKey=212E18DA591F13B8E64BB09D80780514 04/02 14:29:35 [2600] CKey=1B0A8E4DC8EFB8DBFE601F00A3D1FFB7 04/02 14:29:35 [2600] UCHKey=9EB109E7A5B6D636782FF59E753AF8BB 04/02 14:29:35 [2600] UCKey=1D3238C3BADF4E42B0C19C9ADF0E7D7A 04/02 14:29:35 [2600] Set heartbeat event 04/02 14:29:35 [2600] Use new configuration 04/02 14:29:35 [2600] 04/02 14:29:35 [2600] Got ConfigObject to proceed the operation.. pSylinkConfig: 01D2D170 04/02 14:29:35 [2600] ====== Reg Heartbeat loop starts at 14:29:35 ====== 04/02 14:29:35 [2600] HEARTBEAT: Check Point 1 04/02 14:29:35 [2600] Get First Server! 04/02 14:29:35 [2600] HEARTBEAT: Check Point 2 04/02 14:29:35 [2600] going to post event=EVENT_SERVER_CONNECTING 04/02 14:29:35 [2600] done post event=EVENT_SERVER_CONNECTING, return=0 04/02 14:29:35 [2600] HEARTBEAT: Check Point 3 04/02 14:29:35 [2600] Setting the session timeout on Profile Session to 30000 04/02 14:29:35 [2600] HEARTBEAT: Check Point 4 04/02 14:29:35 [2600] ===Get Index STAGE=== 04/02 14:29:35 [2600] ************CSN=36155 04/02 14:29:35 [2600] Request is: action=12&hostid=0EF258130A2405070143073A8BFFFD51&chk=212E18DA591F13B8E64BB09D80780514&ck=1B0A8E4DC8EFB8DBFE601F00A3D1FFB7&uchk=9EB109E7A5B6D636782FF59E753AF8BB&uck=1D3238C3BADF4E42B0C19C9ADF0E7D7A&hid=C92B3B3E177D73DF8B6C5F1FDEC54B66&groupid=E45279550A24050C018346A6E662F63D&mode=0&hbt=300&as=36155&cn=[hex]616C656D&lun=[hex]61646D696E676C317A&udn=[hex]4C6F63616C436F6D7075746572 04/02 14:29:35 [2600] http://@ IP du serveur SEPM:8014/secars/secars.dll?h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end HTTP REQUEST 04/02 14:29:35 [2600] 14:29:35=>HTTP REQUEST sent 04/02 14:29:35 [2600] SMS return=200 04/02 14:29:35 [2600] 200=>200 OK 04/02 14:29:35 [2600] Sem-HashKey:=>212E18DA591F13B8E64BB09D80780514 04/02 14:29:35 [2600] Loading the current mode:1 04/02 14:29:35 [2600] Sem-LANSensor:=>0 04/02 14:29:35 [2600] Sem-Signatue:=>76EE1CA52803D4BB9617E91C31EA5A8815272421FFCE7915AE1F988B3DA835FB562A4DBF0288E0995BAF44788B230977EAF36EA53E78AD139E4D5F03FA067433FCD0964B15487A126F7923E980254B93FDE21E7F8E28AEBABE122226F6014D80B23866397E365A5FA0D0D11D18585F14FE5B4BBD61CCFFC60AFF75D13D55B7C8 04/02 14:29:35 [2600] Content Lenght => 1372 04/02 14:29:35 [2600] SignIf::VerifySignature(data, dataLen, sig, sigLen) => Verification Successful.. 04/02 14:29:35 [2600] Index File: 04/02 14:29:35 [2600] Parser Index File! 04/02 14:29:35 [2600] RECEIVE STAGE COMPLETED 04/02 14:29:35 [2600] COMPLETED 04/02 14:29:35 [2600] GetIndexFile handling status: 0 04/02 14:29:35 [2600] Switch Server flag=0 04/02 14:29:35 [2600] HEARTBEAT: Check Point 5.1 04/02 14:29:35 [2600] NextHop Not equal @ IP du serveur SEPM,return FALSE 04/02 14:29:35 [2600] NextHop is OnLink with **@ IP de la machine** ,return TRUE 04/02 14:29:35 [2600] Next Hop IP is a local IP or ONLINK:**@ Ip de la machine** 04/02 14:29:35 [2600] Saved IP Address: 10.36.5.7 04/02 14:29:35 [2600] going to post event=EVENT_LU_REQUIRE_STATUS 04/02 14:29:36 [2600] done post event=EVENT_LU_REQUIRE_STATUS, return=0 04/02 14:29:36 [2600] Agent returned closest matching seq: 130310007 04/02 14:29:36 [2600] Adding LU Info to LU Download File List: {C60DC234-65F9-4674-94AE-62158EFCA433}130401016 04/02 14:29:36 [2600] File Info already exists, hence updating: {C60DC234-65F9-4674-94AE-62158EFCA433}130401016 04/02 14:29:36 [2600] going to post event=EVENT_LU_REQUIRE_STATUS 04/02 14:29:36 [2600] done post event=EVENT_LU_REQUIRE_STATUS, return=1 04/02 14:29:36 [2600] EVENT_LU_REQUIRE_STATUS returned ERROR_SYSTEM_UNKNOWN - Ignore LU content. Moniker: {1CD85198-26C6-4bac-8C72-5D34B025DE35} Seq:130401016 04/02 14:29:36 [2600] going to post event=EVENT_LU_REQUIRE_STATUS 04/02 14:29:36 [2600] done post event=EVENT_LU_REQUIRE_STATUS, return=1 04/02 14:29:36 [2600] EVENT_LU_REQUIRE_STATUS returned ERROR_SYSTEM_UNKNOWN - Ignore LU content. Moniker: {42B17E5E-4E9D-4157-88CB-966FB4985928} Seq:130329001 04/02 14:29:36 [2600] going to post event=EVENT_LU_REQUIRE_STATUS 04/02 14:29:36 [2600] done post event=EVENT_LU_REQUIRE_STATUS, return=20 04/02 14:29:36 [2600] going to post event=EVENT_LU_REQUIRE_STATUS 04/02 14:29:36 [2600] done post event=EVENT_LU_REQUIRE_STATUS, return=20 04/02 14:29:36 [2600] going to post event=EVENT_LU_REQUIRE_STATUS 04/02 14:29:36 [2600] done post event=EVENT_LU_REQUIRE_STATUS, return=20 04/02 14:29:36 [2600] going to post event=EVENT_LU_REQUIRE_STATUS 04/02 14:29:36 [2600] done post event=EVENT_LU_REQUIRE_STATUS, return=20 04/02 14:29:36 [2600] going to post event=EVENT_LU_REQUIRE_STATUS 04/02 14:29:36 [2600] done post event=EVENT_LU_REQUIRE_STATUS, return=1 04/02 14:29:36 [2600] EVENT_LU_REQUIRE_STATUS returned ERROR_SYSTEM_UNKNOWN - Ignore LU content. Moniker: {DB206823-FFD2-440a-9B89-CCFD45F3F1CD} Seq:80820001 04/02 14:29:36 [2600] going to post event=EVENT_LU_REQUIRE_STATUS 04/02 14:29:36 [2600] done post event=EVENT_LU_REQUIRE_STATUS, return=20 04/02 14:29:36 [2600] going to post event=EVENT_LU_REQUIRE_STATUS 04/02 14:29:36 [2600] done post event=EVENT_LU_REQUIRE_STATUS, return=20 04/02 14:29:36 [2600] going to post event=EVENT_LU_REQUIRE_STATUS 04/02 14:29:36 [2600] done post event=EVENT_LU_REQUIRE_STATUS, return=1 04/02 14:29:36 [2600] EVENT_LU_REQUIRE_STATUS returned ERROR_SYSTEM_UNKNOWN - Ignore LU content. Moniker: {CC40C428-1830-44ef-B8B2-920A0B761793} Seq:130401002 04/02 14:29:36 [2600] going to post event=EVENT_LU_REQUIRE_STATUS 04/02 14:29:36 [2600] done post event=EVENT_LU_REQUIRE_STATUS, return=20 04/02 14:29:36 [2600] going to post event=EVENT_LU_REQUIRE_STATUS 04/02 14:29:36 [2600] done post event=EVENT_LU_REQUIRE_STATUS, return=1 04/02 14:29:36 [2600] EVENT_LU_REQUIRE_STATUS returned ERROR_SYSTEM_UNKNOWN - Ignore LU content. Moniker: {E1A6B4FF-6873-4200-B6F6-04C13BF38CF3} Seq:130401002 04/02 14:29:36 [2600] going to post event=EVENT_LU_REQUIRE_STATUS 04/02 14:29:36 [2600] done post event=EVENT_LU_REQUIRE_STATUS, return=20 04/02 14:29:36 [2600] Free the upgrade package information. 04/02 14:29:36 [2600] going to post event=EVENT_SERVER_ONLINE 04/02 14:29:36 [2600] done post event=EVENT_SERVER_ONLINE, return=0 04/02 14:29:36 [2600] Reset Heartbeat factor index, hearbeat=300 seconds 04/02 14:29:36 [2600] HEARTBEAT: Check Point 6 04/02 14:29:36 [2600] ===REQUESTING PLUG-IN OP-STATE: AVMan 04/02 14:29:51 [2600] ===REQUESTING PLUG-IN OP-STATE: GUP 04/02 14:29:51 [2600] ===REQUESTING PLUG-IN OP-STATE: LUMan 04/02 14:29:51 [2600] ===REQUESTING CMC OP-STATE === 04/02 14:29:51 [2600] going to post event=EVENT_SERVER_REQUIRES_CLIENT_SESTATE 04/02 14:29:51 [2600] done post event=EVENT_SERVER_REQUIRES_CLIENT_SESTATE, return=0 04/02 14:29:51 [2600] ReasonDescForFailure*** = Host Integrity check is disabled. 04/02 14:29:51 [2600] ReasonDescForFailure*** = Host Integrity check is disabled. 04/02 14:29:51 [2600] *** =