Solved

Remote and silent uninstall of SAV 10.x and then cleanup with cleanwipe

Posted on 2009-04-03
1
2,111 Views
Last Modified: 2013-12-09
I need to remotely and quietly uninstall and cleanup all Symantec products on domain workstations.  I am wanting to combine the use of msiexec to perform a remote uninstall of SAV 10.x, and then followup with cleanwipe so that LiveUpdate gets uninstalled along with all virus definitions and related Symantec items.  I want to do everything using psexec from an admin workstation.

Here is what I am trying to work with... (workstations are running low level users)

1.  I need to remotely edit the workstation registry to turn off the  SAV password requirement before I can uninstall anything.  I have this reg code ready and tested, but need to push it out using psexec.

REGEDIT4

[HKEY_LOCAL_MACHINE\SOFTWARE\INTEL\LANDESK\VirusProtect6\CurrentVersion\AdministratorOnly\Security]
"LockUnloadServices"=dword:00000000

[HKEY_LOCAL_MACHINE\SOFTWARE\INTEL\LANDESK\VirusProtect6\CurrentVersion\AdministratorOnly\Security]
"UseVPUninstallPassword"=dword:00000000

2.  I need to then uninstall SAV 10.x using this statement, which seems to work okay.

psexec \\192.168.0.148 MsiExec.exe /norestart /q/x {5A633ED0-E5D7-4D65-AB8D-53ED43510284} REMOVE=ALL

3.  I then need to execute cleanwipe on all the same computers to remove LiveUpdate and related Symantec items.  I cannot seem to get this nailed down.  Cleanwipe is a folder that contains files and a batch file that calls those files.

I want to combine all 3 of these steps into one error free batch file and run it against just one computer for testing, then against all domain computers.  Thanks for the help.
0
Comment
Question by:murryc
1 Comment
 
LVL 5

Accepted Solution

by:
bRvO earned 500 total points
ID: 24079806
You want to use the following registry add commands in the batch file ...

REG ADD "\\192.168.0.148\SOFTWARE\INTEL\LANDESK\VirusProtect6\CurrentVersion\AdministratorOnly\Security" /v LockUnloadServices /t REG_BINARY /d 00000000

REG ADD "\\192.168.0.148\SOFTWARE\INTEL\LANDESK\VirusProtect6\CurrentVersion\AdministratorOnly\Security" /v UseVPUninstallPassword /t REG_BINARY /d 00000000

This should add the values to the remote machines registry.

Then

psexec \\192.168.0.148 MsiExec.exe /norestart /q/x {5A633ED0-E5D7-4D65-AB8D-53ED43510284} REMOVE=ALL



Then psexec \\<location of cleanwipefile batch>

or something similar. You'll want to have pauses in there tho as I'd imagine that uninstalling SAV will take a few minutes.

If you combine these commands into 1 batch file and place it in the netlogon shares and then ammend the logon scripts to call this file it should work. I'm not sure how you'd get these to run from the administrator console for every machine without calling each computername from a text file and in that case it would be easier using VBScript.
0

Featured Post

DevOps Toolchain Recommendations

Read this Gartner Research Note and discover how your IT organization can automate and optimize DevOps processes using a toolchain architecture.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

For those of you actively in the Malware fightling business, we now have available an amazing new tool in the malware wars (first recommended to me by rpggamergirl (http://www.experts-exchange.com/M_3598771.html), the Zone Advisor for the Virus and …
Ransomware continues to be a growing problem for both personal and business users alike and Antivirus companies are still struggling to find a reliable way to protect you from this dangerous threat.
Established in 1997, Technology Architects has become one of the most reputable technology solutions companies in the country. TA have been providing businesses with cost effective state-of-the-art solutions and unparalleled service that is designed…
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…

785 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question