Thank you, Vikram Kumar-SAV to SEP, for your quick answer!
To your questions:
* Did this happen while un-install/Repair/upgrade of SEP ?
No, it´s a normal running system since May. Shortly after Symantec published the german version of RU5, I upgraded from MR4MP2.
The only issue I had was, that this SEP-Client had difficulties in updating definitions, three weeks after the upgrade. So, I decided to remove that client through add/remove programs and re-install it by pushing my package to that machine. Oh, I forgot to mention that I run into the "two instances of SEP under add/remove progams", so I run both installers to remove both instances, before re-installing.
According to my customer, they had the first BSOD last week and two today. Nothing before!
* Was there anything in the eventviewer what happened before BSOD ?
Unfortunately, I can´t give a definite answer, because I wasn´t on-site today. I asked my customer for the minidump to analyse. I visited my customer yesterday for regular maintanace and - therefore - I looked at that machine. As I can say, there was nothing in the eventlog that marked a problem. Now, we retired that machine till January, so I can´t make a RDP session to look in the eventlogs again.
greetings from Hamburg,
Rolf