In Symantec Endpoint Protection, the Proactive Threat Protection is shown as disabled because it is waiting for updates.
However when I run LiveUpdate Express, the update fails as follows:
Installing Submission Control signatures (1 of 1), failed.
LU1812: A program that was part of this update failed when it ran. This update was not applied.
Checking the logs (Log.LiveUpdate file), I notice these related errors:
2010/1/4, 23:02:31 GMT -> Progress Update: UNZIP_FILE_START: Zip File: "C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\Updt100\1257995028jtun_the_scd.zip.full.zip", Dest Folder: "C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\Updt100"
2010/1/4, 23:02:31 GMT -> 1257995028jtun_the_scd.zip.full.zip is in RAR format.
2010/1/4, 23:02:31 GMT -> Progress Update: UNZIP_FILE_FINISH: Zip File: "C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\Updt100\1257995028jtun_the_scd.zip.full.zip", Dest Folder: "C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\Updt100", HR: 0x0
2010/1/4, 23:02:31 GMT -> Added package to cache...
2010/1/4, 23:02:31 GMT -> Before expansion, the commandLine is [SavSubmissionEngineData]\scd.xml
2010/1/4, 23:02:31 GMT -> After expansion, the commandLine is C:\Documents and Settings\All Users\Application Data\Symantec\SAVSUB~1\\scd.xml
2010/1/4, 23:02:31 GMT -> DIS - UPDATE("C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\Updt100\scd.xml", "C:\Documents and Settings\All Users\Application Data\Symantec\SAVSUB~1\") <BEGIN>
2010/1/4, 23:02:31 GMT -> DIS - UPDATE(0x0) <END>
2010/1/4, 23:02:31 GMT -> DIS - LAUNCHEX2("C:\Program Files\Common Files\Symantec Shared\SAVSubmissionEngine\", "subupdt.exe", "C:\Documents and Settings\All Users\Application Data\Symantec\SAVSUB~1\\scd.xml", 0) <BEGIN>
2010/1/4, 23:02:31 GMT -> Launching commandline C:\Program Files\Common Files\SYMANT~1\SAVSUB~1\subupdt.exe C:\Documents and Settings\All Users\Application Data\Symantec\SAVSUB~1\\scd.xml.
2010/1/4, 23:02:32 GMT -> Executable returned error code -2147024773.
2010/1/4, 23:02:32 GMT -> DIS - LAUNCHEX(0x802A0023) <END>
2010/1/4, 23:02:32 GMT -> Progress Update: PATCH_ERROR: Patch File: "C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\Updt100\1257995028jtun_the_scd.zip.full.zip", Script File: "C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\Updt100\SavScd.dis", HR: 0x802A0023
2010/1/4, 23:02:32 GMT -> HR 0x802A0023 DECODE: E_DIS_LAUNCHEX_FAILED_PROCESS_EXIT_CODE
2010/1/4, 23:02:32 GMT -> Progress Update: PATCH_FINISH: Patch File: "C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\Updt100\1257995028jtun_the_scd.zip.full.zip", Script File: "C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\Updt100\SavScd.dis", HR: 0x802A0023
2010/1/4, 23:02:32 GMT -> HR 0x802A0023 DECODE: E_DIS_LAUNCHEX_FAILED_PROCESS_EXIT_CODE
2010/1/4, 23:02:32 GMT -> EVENT - PRODUCT UPDATE FAILED EVENT - Update available for Submission Control signatures - 11.0 - SymAllLanguages. Update for Submission Control Data takes product from update 0 to 91111048. Server name - liveupdate.symantecliveupdate.com, Update file - 1257995028jtun_the_scd.zip, Signer - cn=Symantec Corporation,ou=Usage - Prod02SigningToken,ou=Locality - Arizona,ou=Product Group - LiveUpdate,ou=SymSignature,o=Symantec Corporation, package install code 0. The Update executed with a result code of 1812, => The install script for this update was unable to launch a file it needed. LiveUpdate aborted the update install.
All the files referenced are present (scd.xml is there, and of course, the executable subupdt.exe is there too)
So somehow the subupdt.exe application is failing to run properly. However, I have no idea how to fix it. Any suggestions would be appreciated thanks!