Solved

sysfer.dll not found and LiveUpdate Stops

Posted on 2011-09-11
5
1,748 Views
Last Modified: 2012-06-27
We have a Windows Server 2003 server which is running SEPM.  In the past few weeks, Liveupdate stops working and clients show that the antivirus definitions are out of date.
To maintain the server we access it via remote desktop, which fails with the message "The application failed to start c:\windows\system32\sysfer.dll was not found....."

If we restart the server, Liveupdate runs successfully, and similarly remote desktop also works without the above error.
The server then runs successfully for a random time (1-3 days) and then the above symptoms repeat. (ie liveupdate stops, no RDP).

We have ran a full Symantec scan, and Malwarebytes scan over the server, and no errors/malware is detected.
Searching the internet reveals a number of "product" for fixing missing sysfer.dll errors - we are reluctant to randomly choose one of these.

What would you suggest?
0
Comment
Question by:Cantatech
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
5 Comments
 
LVL 5

Expert Comment

by:Paul Smart
ID: 36521916
c:\windows\system32\sysfer.dll is the main file of NTP that goes in with the LAN Drivers and monitors the traffic.
This is associated with failed logon attempts on the computers that were blocking logons

Do you have by any chance a sysfer.dll.bak file in the main SEP install folder??
0
 
LVL 5

Expert Comment

by:Paul Smart
ID: 36521934
The only other solution would be to uninstall the NTP (Network Threat Protection) part of SEP.
This is down to you and only IF you believe it's not required.

But to do this;

1.Click Start> Settings> Control Panel.
2.Double-click Add or Remove Programs.
3.In the list of installed programs, click Symantec Endpoint Protection.
4.Click Change.
5.Click Next.
6.Click Modify.
7.Click Next.
8.Click on the Network Threat Protection icon
9.Click This feature will not be available.
10.Click Next.
11.Click Install to apply the changes.
12.Click Finish once the installation is complete.
13.Restart the computer.

Job Done!
0
 

Author Comment

by:Cantatech
ID: 36526250
Thanks for your response - I have checked folder c:\program files\symantec\symantec endpoint protection\12.1.671.4971.105\bin and there is no sysfer.dll.bak file - sysfer.dll is present as expected.
For the moment the server is running correctly, and the next time it fails, I'll remove NTP.
0
 

Accepted Solution

by:
Cantatech earned 0 total points
ID: 36563999
I've now removed NTP as per your instructions - unfortunately the symptoms of the original problem continue.
At this is a member server, my next move is to rebuild the server.
0
 

Author Closing Comment

by:Cantatech
ID: 36591856
Thanks for the suggestions but the ongoing issue can be more efficiently resolved in a somewhat more heavy handed fashion
0

Featured Post

Free Tool: IP Lookup

Get more info about an IP address or domain name, such as organization, abuse contacts and geolocation.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Event ID: 5719 / Source: NETLOGON 9 167
Computer software inventory 5 120
User profile Size Report 3 91
Domain Controller FSMO 7 73
by Batuhan Cetin In this article I will be guiding through the process of removing a failed DC metadata from Active Directory (hereafter, AD) using the ntdsutil tool in a Windows Server 2003 environment. These steps are not necessary in a Win…
On July 14th 2015, Windows Server 2003 will become End of Support, leaving hundreds of thousands of servers around the world that still run this 12 year old operating system vulnerable and potentially out of compliance in many organisations around t…
Attackers love to prey on accounts that have privileges. Reducing privileged accounts and protecting privileged accounts therefore is paramount. Users, groups, and service accounts need to be protected to help protect the entire Active Directory …

726 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question